The Hacker News

Webinar: How Attackers Exploit Cloud Misconfigurations Across AWS, AI Models, and Kubernetes

Live briefing shows how attackers exploit AWS identity errors, AI model masking, and Kubernetes privileges—and how teams can ...

OpenAI user data was breached, but changing your password won't help - here's why

Revealed on Thanksgiving Eve, the incident serves as a reminder that we're all responsible for exploring additional security options.
SecurityWeek

Google Sees 5 Chinese Groups Exploiting React2Shell for Malware Delivery

UNC6588 exploited CVE-2025-55182 to download a backdoor named Compood, which has typically been used by Chinese hackers in ...

Hackers exploit unpatched Gogs zero-day to breach 700 servers

An unpatched zero-day vulnerability in Gogs, a popular self-hosted Git service, has enabled attackers to gain remote code ...

Fortinet warns of critical FortiCloud SSO login auth bypass flaws

Fortinet has released security updates to address two critical vulnerabilities in FortiOS, FortiWeb, FortiProxy, and FortiSwitchManager that could allow attackers to bypass FortiCloud SSO ...