The Hacker News

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

CVE-2024-3721 and CVE-2023-33538 exploited in TBK DVRs and EoL TP-Link routers, enabling Mirai variants and DDoS risk.

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...

Hackers exploit React2Shell in automated credential theft campaign

Hackers are running a large-scale campaign to steal credentials in an automated way after exploiting React2Shell ...
Infosecurity-magazine.com

Hackers Exploit Critical Langflow Bug in Just 20 Hours

Threat actors have demonstrated just how quickly they operate today after exploiting a critical open source vulnerability within 20 hours, working only from the advisory description. The bug, CVE-2026 ...
Dark Reading

Every Old Vulnerability Is Now an AI Vulnerability

AI's danger isn't that it's creating new bugs, it's that it's amplifying old ones. On March 10, 2026, Microsoft patched ...
CSO Online

Hackers exploit a critical Flowise flaw affecting thousands of AI workflows

The design flaw in Flowise’s Custom MCP node has allowed attackers to execute arbitrary JavaScript through unvalidated ...

2.3 Million Users Affected by New Android Malware Hid in 50 Google Play Apps

The post 2.3 Million Users Affected by New Android Malware Hid in 50 Google Play Apps appeared first on Android Headlines.

Bullet holes and scam scripts: Inside the global fraud centres on frontline of deadly conflict

What began as a small-time fraud operation run illegally from apartments have now expanded into a massive industry in ...
moneycontrol.com

Iran says US 'detached from reality' after winning claims as Middle East war rages: 'Same script, different stage'

Iran's Foreign Minister Seyed Abbas Araghchi on Friday launched a sharp critique of the United States’ narrative around the ongoing regional conflict, drawing parallels with the Vietnam War-era ...
CSOonline

The espionage reality: Your infrastructure is already in the collection path

Shared services, shared identity layers, shared connectivity providers — criminal and state affiliated actors move through the dependencies modern enterprises rely on. That overlap is a defining ...