The Hacker News

⚡ Weekly Recap: Firewall Flaws, AI-Built Malware, Browser Traps, Critical CVEs & More

Weekly cybersecurity recap covering emerging threats, fast-moving attacks, critical flaws, and key security developments you ...
The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.
Bleeping Computer

CISA orders feds to patch MongoBleed flaw exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to secure their systems against a high-severity MongoDB flaw that is actively being exploited in attacks.
Bleeping Computer

New Veeam vulnerabilities expose backup servers to RCE attacks

Veeam released security updates to patch multiple security flaws in its Backup & Replication software, including a critical remote code execution (RCE) vulnerability. Tracked as CVE-2025-59470, this ...
Hosted on MSN

One UI 8.5 beta 3 lands on Galaxy S25 with bug fixes and January security patch

One UI 8.5 Beta 3 is a 1.2GB update that fixes a bunch of annoyances, including lock screen glitches, gallery lag, widget bugs, and inconsistent UI behavior. Samsung has also tackled excessive power ...
Hosted on MSN

Omaha scam victims warn others about fake security calls using verification codes

OMAHA, Neb. (WOWT) - A lesson tonight about scammers pretending to be security for a company or a bank. Who better to teach us than two victims who each lost thousands of dollars? They agreed to help ...