- Google Requires Crypto App Licenses in 15 Regions as FBI Warns of $9.9M Scam Lossesby info@thehackernews.com (The Hacker News) on 14/08/2025 at 06:46
Google said it's implementing a new policy requiring developers of cryptocurrency exchanges and wallets to obtain government licenses before publishing apps in 15 jurisdictions in order to "ensure a safe and compliant ecosystem for users." The policy applies to markets like Bahrain, Canada, Hong Kong, Indonesia, Israel, Japan, the Philippines, South Africa, South Korea, Switzerland, Thailand,
- CISA Adds Two N-able N-central Flaws to Known Exploited Vulnerabilities Catalogby info@thehackernews.com (The Hacker News) on 14/08/2025 at 04:02
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws impacting N-able N-central to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. N-able N-central is a Remote Monitoring and Management (RMM) platform designed for Managed Service Providers (MSPs), allowing customers to efficiently manage and secure
- New PS1Bot Malware Campaign Uses Malvertising to Deploy Multi-Stage In-Memory Attacksby info@thehackernews.com (The Hacker News) on 13/08/2025 at 15:46
Cybersecurity researchers have discovered a new malvertising campaign that's designed to infect victims with a multi-stage malware framework called PS1Bot. "PS1Bot features a modular design, with several modules delivered used to perform a variety of malicious activities on infected systems, including information theft, keylogging, reconnaissance, and the establishment of persistent system
- Zoom and Xerox Release Critical Security Updates Fixing Privilege Escalation and RCE Flawsby info@thehackernews.com (The Hacker News) on 13/08/2025 at 13:19
Zoom and Xerox have addressed critical security flaws in Zoom Clients for Windows and FreeFlow Core that could allow privilege escalation and remote code execution. The vulnerability impacting Zoom Clients for Windows, tracked as CVE-2025-49457 (CVSS score: 9.6), relates to a case of an untrusted search path that could pave the way for privilege escalation. "Untrusted search path in
- Fortinet Warns About FortiSIEM Vulnerability (CVE-2025-25256) With In-the-Wild Exploit Codeby info@thehackernews.com (The Hacker News) on 13/08/2025 at 11:37
Fortinet is alerting customers of a critical security flaw in FortiSIEM for which it said there exists an exploit in the wild. The vulnerability, tracked as CVE-2025-25256, carries a CVSS score of 9.8 out of a maximum of 10.0. "An improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability [CWE-78] in FortiSIEM may allow an unauthenticated attacker to