- New PS1Bot Malware Campaign Uses Malvertising to Deploy Multi-Stage In-Memory Attacksby info@thehackernews.com (The Hacker News) on 13/08/2025 at 15:46
Cybersecurity researchers have discovered a new malvertising campaign that's designed to infect victims with a multi-stage malware framework called PS1Bot. "PS1Bot features a modular design, with several modules delivered used to perform a variety of malicious activities on infected systems, including information theft, keylogging, reconnaissance, and the establishment of persistent system
- Zoom and Xerox Release Critical Security Updates Fixing Privilege Escalation and RCE Flawsby info@thehackernews.com (The Hacker News) on 13/08/2025 at 13:19
Zoom and Xerox have addressed critical security flaws in Zoom Clients for Windows and FreeFlow Core that could allow privilege escalation and remote code execution. The vulnerability impacting Zoom Clients for Windows, tracked as CVE-2025-49457 (CVSS score: 9.6), relates to a case of an untrusted search path that could pave the way for privilege escalation. "Untrusted search path in
- Fortinet Warns About FortiSIEM Vulnerability (CVE-2025-25256) With In-the-Wild Exploit Codeby info@thehackernews.com (The Hacker News) on 13/08/2025 at 11:37
Fortinet is alerting customers of a critical security flaw in FortiSIEM for which it said there exists an exploit in the wild. The vulnerability, tracked as CVE-2025-25256, carries a CVSS score of 9.8 out of a maximum of 10.0. "An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in FortiSIEM may allow an unauthenticated attacker to
- AI SOC 101: Key Capabilities Security Leaders Need to Knowby info@thehackernews.com (The Hacker News) on 13/08/2025 at 11:25
Security operations have never been a 9-to-5 job. For SOC analysts, the day often starts and ends deep in a queue of alerts, chasing down what turns out to be false positives, or switching between half a dozen tools to piece together context. The work is repetitive, time-consuming, and high-stakes, leaving SOCs under constant pressure to keep up, yet often struggling to stay ahead of emerging
- Webinar: What the Next Wave of AI Cyberattacks Will Look Like — And How to Surviveby info@thehackernews.com (The Hacker News) on 13/08/2025 at 09:30
The AI revolution isn’t coming. It’s already here. From copilots that write our emails to autonomous agents that can take action without us lifting a finger, AI is transforming how we work. But here’s the uncomfortable truth: Attackers are evolving just as fast. Every leap forward in AI gives bad actors new tools — deepfake scams so real they trick your CFO, bots that can bypass human review,