Critical n8n Flaw CVE-2026-25049 Enables System Command Execution via Malicious Workflows
Ravie LakshmananFeb 05, 2026Workflow Automation / Vulnerability A new, critical security vulnerability…
Proxy Botnet, Office Zero-Day, MongoDB Ransoms, AI Hijacks & New Threats
Ravie LakshmananFeb 02, 2026Hacking News / Cybersecurity Every week brings new discoveries,…
Mandiant Finds ShinyHunters-Style Vishing Attacks Stealing MFA to Breach SaaS Platforms
Ravie LakshmananJan 31, 2026Social Engineering / SaaS Security Google-owned Mandiant on Friday…
Microsoft Flags Multi-Stage AitM Phishing and BEC Attacks Targeting Energy Firms
Microsoft has warned of a multi‑stage adversary‑in‑the‑middle (AitM) phishing and business email…
Russia-Linked Hackers Use Microsoft 365 Device Code Phishing for Account Takeovers
Dec 19, 2025Ravie LakshmananCybersecurity / Cloud Security A suspected Russia-aligned group has…
Your First and Last Line of Defense
Oct 17, 2025The Hacker NewsArtificial Intelligence / Identity Security The danger isn't…
CyberArk and HashiCorp Flaws Enable Remote Vault Takeover Without Credentials
Cybersecurity researchers have discovered over a dozen vulnerabilities in enterprise secure vaults…
Cisco Confirms Active Exploits Targeting ISE Flaws Enabling Unauthenticated Root Access
Jul 22, 2025Ravie LakshmananNetwork Security / Vulnerability Cisco on Monday updated its…
Explosive Growth of Non-Human Identities Creating Massive Security Blind Spots
Apr 09, 2025The Hacker NewsSecrets Management / DevOps GitGuardian's State of Secrets…