News

WinRAR Zero-Day Exploited by Russian-Linked Hackers RomCom and Paper Werewolf

Older WinRAR versions let malicious archives override the user-specified path via crafted archives, enabling stealthy system ...
PCMag on MSN4d

Your SSN Is on the Web, AI Is Leaking Data, and Buses Are Getting Hacked: Another Week in Cybersecurity Hell

Microsoft and OpenAI claim the model is highly secure, but that they’re always improving and adding security features and ...
The Hacker News1d

PyPI Blocks 1,800 Expired-Domain Emails to Prevent Account Takeovers and Supply Chain Attacks

PyPI unverified 1,800 emails since June 2025 to block expired-domain attacks, strengthening open-source supply chain security ...
The Hacker News1d

Noodlophile Malware Campaign Expands Global Reach with Copyright Phishing Lures

Noodlophile stealer targets enterprises via copyright phishing since 2024, using Gmail, Dropbox, and Telegram for evasion.

Microsoft’s Patch Tuesday: 100+ Updates Including Azure OpenAI Service, Memory Corruption Flaw

Microsoft patched CVE-2025-50165, an “extremely high-risk” memory corruption flaw in its graphics component that could let ...
PCMag on MSN3d

Warning: Watch Out for This Japanese Character in Your Booking.com Email

Unusual file names and links are common signs of phishing attacks. But hackers are now using visually similar characters from foreign alphabets to trick even tech-savvy users into clicking.
SecurityWeek2d

Hundreds of N-able N-central Instances Affected by Exploited Vulnerabilities

More than 870 N-able N-central instances have not been patched against CVE-2025-8875 and CVE-2025-8876, two exploited vulnerabilities.