🚨 Critical NVIDIA GPU bug lets attackers hijack AI containers with just 3 lines of code (CVSS 9.0). Impacts 37% of cloud environments—risking full server takeover & model theft. Read the full report → thehackernews.com/2025/07/critic…

🚨 Google sues 25 China-based actors behind BADBOX 2.0 — a botnet infecting 10M+ devices with malware before they even reach users. The kicker? They used hacked TVs & apps to steal ad money from Google itself. Details here → thehackernews.com/2025/07/google…

🔥 China’s border police are using a secret tool called Massistant to extract everything—from GPS to Signal chats—off phones. It installs silently, pulls your data, then vanishes. iPhones may be next. Details here → thehackernews.com/2025/07/chinas…

🚨 Hackers hijacked popular npm packages using phishing emails that mimicked npm support. They published malware directly—no GitHub commits, no PRs. One version tries to run a DLL for remote code execution. Check if you’re affected ↓ thehackernews.com/2025/07/malwar…

⚠️ A critical UNPATCHED zero-day in Microsoft SharePoint (CVE-2025-53770) is being massively exploited right now. At least 75 orgs breached—including major companies and governments. Here’s what you need to know ↓ thehackernews.com/2025/07/critic…

🔥 ALERT ➟ Microsoft issues urgent security patches for critical SharePoint RCE flaw (CVE-2025-53770), now under active exploitation worldwide. Hackers are bypassing MFA, stealing keys, and targeting banks, government agencies, hospitals & more. Details →

🔄 UPDATE | Microsoft has expanded patches for the actively exploited SharePoint RCE flaw (CVE-2025-53770). 🔐 Now also covered: • SharePoint Enterprise Server 2016 • SharePoint Enterprise Server 2016 Language Pack 🛡️ Full guidance → thehackernews.com/2025/07/micros…

🚨 Google just launched OSS Rebuild—a powerful weapon against open-source supply chain attacks. It rebuilds & verifies packages independently, catching tampered code others miss. No extra work for maintainers. Full details ↓ thehackernews.com/2025/07/google…

🚨 This Windows trojan just became the first to weaponize Microsoft’s accessibility tools. The Coyote malware is stealing banking and crypto logins from 75+ institutions—by reading what’s on your screen. Here’s how it works → thehackernews.com/2025/07/new-co…

🚨 1 in 12 employees is quietly using Chinese GenAI tools at work—often to upload sensitive data. M&A docs, source code, customer records… all sent to platforms with opaque data policies. It’s already happening. Details + what to do about it ↓ thehackernews.com/2025/07/overco…

🦊 ICYMI — A new variant of Coyote malware is now abusing Windows accessibility features to steal banking and crypto credentials. It scans browser windows with UI Automation, targeting 75+ financial institutions—even offline. Details → thehackernews.com/2025/07/new-co…

🚨 120,000+ attacks in the wild. Hackers are exploiting a critical bug (CVSS 9.8) in a popular WordPress theme to hijack sites—no login needed. They’re planting PHP backdoors and rogue admin accounts. Details here → thehackernews.com/2025/07/hacker…

🔥 A hacker gang planted a 4G Raspberry Pi inside a bank’s ATM network—bypassing firewalls to install a rootkit called CAKETAP. It spoofed PIN checks, hid processes, and aimed to trigger fraudulent withdrawals. Details you should know ↓ thehackernews.com/2025/07/unc289…

🚨 Hackers are hijacking Proofpoint + Bitly to bypass email defenses and steal Microsoft 365 credentials. Phishing links look legit—wrapped, shortened, and sent from trusted accounts. Even “protected” emails are now weaponized. Details you need → thehackernews.com/2025/07/expert…

🚨 China-linked hackers just deployed two ransomware strains—Warlock and LockBit Black—using a custom C2 framework called AK47 C2. They’re hijacking legit tools, faking Microsoft domains, and disabling antivirus with a Chinese driver. Details here → thehackernews.com/2025/08/storm-…

🔐 "How much AI is too much in customer experiences?" Users are starting to push back. Join our new 📺 WEBINAR featuring an expert from @Okta as she reveals new research on how to balance innovation with trust—straight from the 2025 CIAM Trends Report. 👉 Watch the webinar now

🚨 An AI-generated npm package just stole crypto from devs. "kodane/patch-manager" posed as a legit Node.js tool — but hid a stealth wallet drainer that hit 1,500+ downloads before takedown. Here’s what to know ↓ thehackernews.com/2025/08/ai-gen…

🔒 UPDATE: Akira ransomware now uses legit Windows drivers (rwdrv.sys, hlpdrv.sys) in a BYOVD attack to disable Defender and gain kernel access—even in hardened environments. Tied to SonicWall SSL VPN zero-day—still under active investigation. Read → thehackernews.com/2025/08/sonicw…

Microsoft just built an AI that reverse-engineers malware by itself. No hints. No human help — and 90%+ accuracy. It could change how threats are found—before they even spread. Here’s what Project Ire can do ↓ thehackernews.com/2025/08/micros…

🚨 Microsoft just warned: CVE-2025-53786 lets hackers silently escalate privileges from on-prem Exchange to the cloud. No logs. No easy traces. Your hybrid setup could be a silent breach vector. Full details + fixes → thehackernews.com/2025/08/micros…