Over 1,000 exposed ComfyUI instances exploited via unauthenticated code execution, enabling Monero mining and botnet expansion.

The financially motivated cybercriminal threat actor Storm-1175 operates high-velocity ransomware campaigns that weaponize ...

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

Threats actors pounced on the vulnerability within hours of its disclosure, demonstrating that organizations have little time ...

The ides of security March are upon us — Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and Kubernetes as an ...

The botnet has increased its activity, peaking at 15,000 exploitation attempts per day, and taking a more targeted approach. The RondoDox botnet’s developers have significantly increased their exploit ...

Emily Long is a freelance writer based in Salt Lake City. After graduating from Duke University, she spent several years reporting on the federal workforce for Government Executive, a publication of ...

Researchers say they have uncovered a takedown-resistant botnet of 14,000 routers and other network devices—primarily made by Asus—that have been conscripted into a proxy network that anonymously ...

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...

GitHub's Octoverse 2025 data shows TypeScript became the most-used language as 80% of new developers adopt Copilot within their first week. TypeScript has dethroned both Python and JavaScript to ...

A newly discovered botnet is compromising poorly-protected Linux servers by brute-forcing weak SSH password login authentication. Researchers at Canada-based Flare Systems, who discovered the botnet, ...