News

The Hacker News3h
WordPress Sites Turned Weapon: How VexTrio and Affiliates Run a Global Scam Network
Another notable component of these attacks is the compromise of WordPress websites to inject malicious code that's ...
The Hacker News6h
New TokenBreak Attack Bypasses AI Moderation with Single-Character Text Changes
New TokenBreak Attack Bypasses AI Moderation with Single-Character Text Changes | Read more hacking news on The Hacker News ...
The Hacker News8h
AI Agents Run on Secret Accounts — Learn How to Secure Them in This Webinar
This upcoming webinar, " Uncovering the Invisible Identities Behind AI Agents — and Securing Them ," led by Jonathan Sander, Field CTO at Astrix Security, is not another "AI hype" talk. It's a wake-up ...
The Hacker News10h
Zero-Click AI Vulnerability Exposes Microsoft 365 Copilot Data Without User Interaction
Critical zero-click AI vulnerability EchoLeak exposed sensitive Microsoft 365 Copilot data; Microsoft patched it to prevent data leaks.
The Hacker News10h
Non-Human Identities: How to Address the Expanding Security Risk
70% of secrets from 2022 remain active in 2025, putting enterprises’ machine identities at risk of breaches and compliance ...
The Hacker News14h
ConnectWise to Rotate ScreenConnect Code Signing Certificates Due to Security Risks
ConnectWise rotates ScreenConnect certificates by June 13 after config data concerns, impacting on-prem users to prevent ...
The Hacker News14h
Over 80,000 Microsoft Entra ID Accounts Targeted Using Open-Source TeamFiltration Tool
A new ATO campaign using TeamFiltration breached 80,000+ Microsoft Entra ID accounts via password spraying, impacting ...
The Hacker News16h
Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks
Black Basta affiliates use Teams phishing, Python scripts, and cURL to attack finance, insurance, and construction sectors.