News

The Hacker News14h
TikTok Slammed With €530 Million GDPR Fine for Sending E.U. Data to China
"TikTok infringed the GDPR regarding its transfers of EEA [European Economic Area] User Data to China and its transparency ...
The Hacker News18h
MintsLoader Drops GhostWeaver via Phishing, ClickFix — Uses DGA, TLS for Stealth Attacks
Stealth malware MintsLoader delivers GhostWeaver RAT + Evades sandboxes using DGA + Powers data theft via encrypted C2 ...
The Hacker News21h
Fake Security Plugin on WordPress Enables Remote Admin Access for Attackers
Backdoor plugin hijacks WordPress sites with admin access, stealth reinfection, and JS ad fraud—active since Jan 2025.
The Hacker News21h
Claude AI Exploited to Operate 100+ Fake Political Personas in Global Influence Campaign
Claude AI orchestrated 100 fake personas in global influence campaigns + enabled malware, scams, and brute-force attacks.
The Hacker News21h
SonicWall Confirms Active Exploitation of Flaws Affecting Multiple Appliance Models
SonicWall confirms wild exploitation of CVE-2023-44221 and CVE-2024-38475 in SMA100 devices, risking file access and session ...
The Hacker News20h
Microsoft Sets Passkeys Default for New Accounts; 15 Billion Users Gain Passwordless Support
"Brand new Microsoft accounts will now be 'passwordless by default,'" Microsoft's Joy Chik and Vasu Jakkal said. "New users ...
The Hacker News18h
Researchers Demonstrate How MCP Prompt Injection Can Be Used for Both Attack and Defense
Prompt injection flaws in Anthropic’s MCP and Google’s A2A protocols enable covert data exfiltration and AI manipulation.
The Hacker News16h
How to Automate CVE and Vulnerability Advisory Response with Tines
From the credentials page, select New credential, scroll down to the relevant credential and complete the required fields.