The Hacker News

Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems

CVE-2025-32975 exploited since March 2026 on unpatched KACE SMA systems, enabling admin takeover and payload delivery.
TechJuice

Hackers Exploit npm Supply Chain to Gain AWS Admin Access

Hackers exploited a compromised npm package to breach cloud systems and gain full AWS administrator access within 72 hours.
The Hacker News

Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper

Trivy supply chain attack pushed malicious Docker images on March 22, enabling credential theft and worm spread, impacting ...
Yehey.com

Yehey.com - Rogue AI Agents Exploit Vulnerabilities, Leak Passwords, and Disable Antivirus

Image courtesy by QUE.com Autonomous AI agents are quickly moving from experimental demos to real operational tools. They can ...

Stryker Attack Prompts CISA Warning On Endpoint Management Security

After a cyberattack wiped 200,000 Stryker devices with no malware involved, CISA is urging U.S. organizations to lock down ...

CISA urges IT to harden endpoint management systems after cyberattack by pro-Iranian group

While the US has, at least temporarily, curtailed some of this group’s activities, the risk to misconfigured endpoint ...

Rogue AI agents can work together to hack systems and steal secrets

Prompt like a hard-ass boss who won't tolerate failure and bots will find ways to breach policy AI agents work together to ...
GovInfoSecurity

AI Agents Hack Systems Without Being Asked

Be careful telling AI agents how to act, since they might end up hacking their way to an end goal. Agents assigned routine ...
Healthcare IT News

FBI shuts down hacktivist websites following Stryker cyberattack

The U.S. government seized two websites run by an Iran-linked group following a cyberattack on the global medical device ...

Hospital cyberattacks threaten patient safety

Medical data breaches expose patient records and Social Security numbers that cannot be replaced. Security expert Ricardo ...

Hosted.com Examines Prompt Injection Threats Affecting Websites Using AI

Hosted.com examines the growing risk of prompt injection attacks to businesses using AI tools, including their ...
CSO OnlineOpinion

The cyber perimeter was never dead. We just abandoned it.

By treating edge device lifecycles as an IT preference rather than a strategic requirement, organizations have ceded valuable ...