🔓 Thousands of leaked secrets are still valid—years later.
GitGuardian’s 2025 report reveals a growing crisis: exposed cloud & DB credentials in public repos aren’t being revoked. Not even after discovery.
The problem? Detection ≠ protection.
Why are orgs ignoring this risk? What’s keeping secrets live in production?
👀 The answers are alarming. Read the full report: https://thehackernews.com/2025/05/the-persistence-problem-why-exposed.html
GitGuardian’s 2025 report reveals a growing crisis: exposed cloud & DB credentials in public repos aren’t being revoked. Not even after discovery.
The problem? Detection ≠ protection.
Why are orgs ignoring this risk? What’s keeping secrets live in production?
👀 The answers are alarming. Read the full report: https://thehackernews.com/2025/05/the-persistence-problem-why-exposed.html
👍10🤯3
💣 No phishing. No pop-ups. Just silent backdoors inside tools you already trust.
IoT botnets, spyware rulings, and supply chain threats made headlines this week.
⚡ Read the recap CISOs are watching: https://thehackernews.com/2025/05/weekly-recap-zero-day-exploits.html
IoT botnets, spyware rulings, and supply chain threats made headlines this week.
⚡ Read the recap CISOs are watching: https://thehackernews.com/2025/05/weekly-recap-zero-day-exploits.html
👍11😁6🤔1
🚨 One Click. Full Control.
Two critical flaws (CVE-2025-3462 & CVE-2025-3463) in ASUS DriverHub exposed users to remote code execution—just by clicking a malicious link.
Patch released on May 9—but have you updated yet?
🔗 Read the full details → https://thehackernews.com/2025/05/asus-patches-driverhub-rce-flaws.html
Two critical flaws (CVE-2025-3462 & CVE-2025-3463) in ASUS DriverHub exposed users to remote code execution—just by clicking a malicious link.
Patch released on May 9—but have you updated yet?
🔗 Read the full details → https://thehackernews.com/2025/05/asus-patches-driverhub-rce-flaws.html
👍15🔥4👏1
🔥 Zero Trust is the hottest buzzword in security—
But most teams are still getting it wrong.
Why?
Because you can’t protect what you can’t see.
And you can’t manage what your tools can’t reach.
🎤 Join John Kindervag (yes, the creator of Zero Trust) for a live session on what’s actually working—and where most teams fall short.
✅ Where to start—without ripping your stack
⚠️ Common pitfalls
🚫 Secure what your identity tools miss
📅 May 22 | 10 AM PT
🔗 Register here: https://thn.news/zero-trust-practice
But most teams are still getting it wrong.
Why?
Because you can’t protect what you can’t see.
And you can’t manage what your tools can’t reach.
🎤 Join John Kindervag (yes, the creator of Zero Trust) for a live session on what’s actually working—and where most teams fall short.
✅ Where to start—without ripping your stack
⚠️ Common pitfalls
🚫 Secure what your identity tools miss
📅 May 22 | 10 AM PT
🔗 Register here: https://thn.news/zero-trust-practice
👍19😁6🤯2
🚨 A zero-day exploit, a chat app, and a silent cyberwar.
A Türkiye-linked hacker group Marbled Dust exploited CVE-2025-27920 in India's Output Messenger—targeting Kurdish military users in Iraq via a stealthy backdoor.
Read details ➡️ https://thehackernews.com/2025/05/turkiye-hackers-exploited-output.html
A Türkiye-linked hacker group Marbled Dust exploited CVE-2025-27920 in India's Output Messenger—targeting Kurdish military users in Iraq via a stealthy backdoor.
Read details ➡️ https://thehackernews.com/2025/05/turkiye-hackers-exploited-output.html
👍12😱6🔥5😁5🤔1
👀 Busted.
A 45-year-old man has been arrested in Moldova for a €4.5M DoppelPaymer ransomware attack on Dutch institutions—including the Netherlands' top science agency (NWO) in 2021.
Read the full story ➝ https://thehackernews.com/2025/05/moldovan-police-arrest-suspect-in-45m.html
A 45-year-old man has been arrested in Moldova for a €4.5M DoppelPaymer ransomware attack on Dutch institutions—including the Netherlands' top science agency (NWO) in 2021.
Read the full story ➝ https://thehackernews.com/2025/05/moldovan-police-arrest-suspect-in-45m.html
👍18👏5😁5🔥3
🛑 One breach at Tier 0… and it’s game over.
Active Directory runs in 90% of Fortune 1000. That’s why it’s the #1 target.
Microsoft's fix:
🔐 Tier 0 = Control Plane (AD, domain controllers, identity tools)
✅ Just-in-Time access
🚫 No standing admin privileges
🧱 Isolate it from lower tiers
One breach here = full network compromise.
🔗 Learn how to secure it right: https://thehackernews.com/expert-insights/2025/05/securing-tier-0-history-of-escalating.html
Active Directory runs in 90% of Fortune 1000. That’s why it’s the #1 target.
Microsoft's fix:
🔐 Tier 0 = Control Plane (AD, domain controllers, identity tools)
✅ Just-in-Time access
🚫 No standing admin privileges
🧱 Isolate it from lower tiers
One breach here = full network compromise.
🔗 Learn how to secure it right: https://thehackernews.com/expert-insights/2025/05/securing-tier-0-history-of-escalating.html
👍8😁6
🚨 The person you're speaking to on Zoom might be AI.
Voice phishing surged 442% in 2024. Deepfakes now impersonate CEOs, job candidates—even your coworkers.
🔐 Detection isn’t enough. Trust must be proven—cryptographically.
👀 See how (demo) → https://thehackernews.com/2025/05/deepfake-defense-in-age-of-ai.html
Voice phishing surged 442% in 2024. Deepfakes now impersonate CEOs, job candidates—even your coworkers.
🔐 Detection isn’t enough. Trust must be proven—cryptographically.
👀 See how (demo) → https://thehackernews.com/2025/05/deepfake-defense-in-age-of-ai.html
🤯9😁7😱4👍3
🚨 North Korea’s Konni APT is targeting Ukraine.
Phishing, fake think tanks, malware-laced files—this isn’t your usual intel op.
The goal? Not battlefield data—but something far more strategic.
🔗 Full story → https://thehackernews.com/2025/05/north-korean-konni-apt-targets-ukraine.html
Phishing, fake think tanks, malware-laced files—this isn’t your usual intel op.
The goal? Not battlefield data—but something far more strategic.
🔗 Full story → https://thehackernews.com/2025/05/north-korean-konni-apt-targets-ukraine.html
👍13🤯8🔥6😁3
🚨 Crypto devs, beware!
A fake solana-token package on PyPI was caught stealing source code and secrets from developer machines — disguised as a legit blockchain tool.
— 761 installs before takedown
— Audit every dependency
Read: https://thehackernews.com/2025/05/malicious-pypi-package-posing-as-solana.html
A fake solana-token package on PyPI was caught stealing source code and secrets from developer machines — disguised as a legit blockchain tool.
— 761 installs before takedown
— Audit every dependency
Read: https://thehackernews.com/2025/05/malicious-pypi-package-posing-as-solana.html
👍8🤔4😁2
🚨 581 SAP servers BREACHED.
China-linked APTs are exploiting CVE-2025-31324 to backdoor critical infrastructure—gas, water, and gov sectors across the 🇺🇸 🇬🇧 🇸🇦
3 active hacking groups, persistent access.
🔗 Details here: https://thehackernews.com/2025/05/china-linked-apts-exploit-sap-cve-2025.html
China-linked APTs are exploiting CVE-2025-31324 to backdoor critical infrastructure—gas, water, and gov sectors across the 🇺🇸 🇬🇧 🇸🇦
3 active hacking groups, persistent access.
🔗 Details here: https://thehackernews.com/2025/05/china-linked-apts-exploit-sap-cve-2025.html
🤯15😱8👍5🤔4👏1
🚨 Another Ivanti exploit ALERT!
Attackers are chaining two new flaws (CVE-2025-4427, 4428) for remote code execution on vulnerable EPMM versions.
— Risk: Auth bypass ➕ RCE
— Exploited: Yes (limited cases)
⚠️ Act fast—patch now / read more: https://thehackernews.com/2025/05/ivanti-patches-epmm-vulnerabilities.html
Attackers are chaining two new flaws (CVE-2025-4427, 4428) for remote code execution on vulnerable EPMM versions.
— Risk: Auth bypass ➕ RCE
— Exploited: Yes (limited cases)
⚠️ Act fast—patch now / read more: https://thehackernews.com/2025/05/ivanti-patches-epmm-vulnerabilities.html
👍5👏3🤯2🤔1
🚨 Critical Fortinet 0-Day Exploited in Attacks!
Hackers are hitting FortiVoice systems in the wild—logging creds, wiping crash logs, scanning networks.
CVE-2025-32756 (CVSS 9.6) affects:
—FortiVoice, FortiMail, FortiNDR
—FortiRecorder, FortiCamera
Exploitable without login via crafted HTTP requests.
🔗 Details: https://thehackernews.com/2025/05/fortinet-patches-cve-2025-32756-zero.html
Hackers are hitting FortiVoice systems in the wild—logging creds, wiping crash logs, scanning networks.
CVE-2025-32756 (CVSS 9.6) affects:
—FortiVoice, FortiMail, FortiNDR
—FortiRecorder, FortiCamera
Exploitable without login via crafted HTTP requests.
🔗 Details: https://thehackernews.com/2025/05/fortinet-patches-cve-2025-32756-zero.html
😁9👍6👏3
🛑 5 Microsoft zero-days exploited in the wild!
One flaw lets attackers hijack full system control—just by visiting a webpage.
◆ 78 flaws fixed — 11 critical
◆ CVE-2025-30397 to 32709 now in CISA’s KEV list
◆ 10.0 CVSS bug in Azure DevOps Server
🔗 Details here: https://thehackernews.com/2025/05/microsoft-fixes-78-flaws-5-zero-days.html
🛡️ Don’t wait. Patch now.
One flaw lets attackers hijack full system control—just by visiting a webpage.
◆ 78 flaws fixed — 11 critical
◆ CVE-2025-30397 to 32709 now in CISA’s KEV list
◆ 10.0 CVSS bug in Azure DevOps Server
🔗 Details here: https://thehackernews.com/2025/05/microsoft-fixes-78-flaws-5-zero-days.html
🛡️ Don’t wait. Patch now.
🤯10👍6🔥4😁2
🚨 URGENT UPDATE: Another SAP flaw under active exploitation!
CVE-2025-42999 (CVSS 9.1) is now confirmed actively exploited — allows attackers to execute commands via insecure deserialization in NetWeaver.
🛠 Patch now: SAP Note 3604119
Read: https://thehackernews.com/2025/05/china-linked-apts-exploit-sap-cve-2025.html
CVE-2025-42999 (CVSS 9.1) is now confirmed actively exploited — allows attackers to execute commands via insecure deserialization in NetWeaver.
🛠 Patch now: SAP Note 3604119
Read: https://thehackernews.com/2025/05/china-linked-apts-exploit-sap-cve-2025.html
👍7😁6
👀 UPDATE: Android just got its own Lockdown Mode.
• Tamper-proof Intrusion Logging
• Scam alerts during banking calls
• Lock screen OTP protection
• Upgraded app threat detection
🔒 Rolling out on Android 11+ | Full launch this summer.
📲 What’s new & how it protects you: https://thehackernews.com/2025/05/google-rolls-out-on-device-ai.html
• Tamper-proof Intrusion Logging
• Scam alerts during banking calls
• Lock screen OTP protection
• Upgraded app threat detection
🔒 Rolling out on Android 11+ | Full launch this summer.
📲 What’s new & how it protects you: https://thehackernews.com/2025/05/google-rolls-out-on-device-ai.html
👍19⚡4👏3🤔1
🚨 Invoice Email? Think Twice.
A stealthy phishing campaign is hitting Windows users in Latin America—disguised as financial docs, but dropping Horabot malware instead.
👀 Hijacks inboxes
📩 Spreads via Outlook
💰 Targets banking data
🔗 Full details here → https://thehackernews.com/2025/05/horabot-malware-targets-6-latin.html
A stealthy phishing campaign is hitting Windows users in Latin America—disguised as financial docs, but dropping Horabot malware instead.
👀 Hijacks inboxes
📩 Spreads via Outlook
💰 Targets banking data
🔗 Full details here → https://thehackernews.com/2025/05/horabot-malware-targets-6-latin.html
👍10🤔2
🚨 Drone supply chains under attack!
Earth Ammit, a likely China-linked group, ran two stealthy ops—VENOM & TIDRONE—to breach drone and defense industries in Taiwan & South Korea.
They’re not hitting targets directly. They’re hijacking the software vendors you trust.
🔗 Read: https://thehackernews.com/2025/05/earth-ammit-breached-drone-supply.html
Earth Ammit, a likely China-linked group, ran two stealthy ops—VENOM & TIDRONE—to breach drone and defense industries in Taiwan & South Korea.
They’re not hitting targets directly. They’re hijacking the software vendors you trust.
🔗 Read: https://thehackernews.com/2025/05/earth-ammit-breached-drone-supply.html
👍15😁3
🔥 Cyber attacks are up. Skills still lag.
Verizon’s 2025 DBIR reports an 18% jump in breaches, with vuln exploitation up 34% YoY. Yet most orgs rely too much on tools.
Want real defense? Train every team to think like an attacker.
From new analysts to execs—offensive training builds sharper instincts, faster response, and better strategy.
🔗 Learn how: https://thehackernews.com/2025/05/learning-how-to-hack-why-offensive.html
SANS Offensive Ops East → Jun 8–14 | San Antonio → Aug 4–9
Verizon’s 2025 DBIR reports an 18% jump in breaches, with vuln exploitation up 34% YoY. Yet most orgs rely too much on tools.
Want real defense? Train every team to think like an attacker.
From new analysts to execs—offensive training builds sharper instincts, faster response, and better strategy.
🔗 Learn how: https://thehackernews.com/2025/05/learning-how-to-hack-why-offensive.html
SANS Offensive Ops East → Jun 8–14 | San Antonio → Aug 4–9
👍8🔥7🤯3👏1
⚡ Free AI Security Assessment from Vanta
Whether your company is using, building with, or developing AI, Vanta’s AI Security Assessment outlines the most critical and common considerations across any AI program—from governance to risk, to data privacy, incident management, and more.
Download it for free here: https://thn.news/ai-security-assessment-template
Whether your company is using, building with, or developing AI, Vanta’s AI Security Assessment outlines the most critical and common considerations across any AI program—from governance to risk, to data privacy, incident management, and more.
Download it for free here: https://thn.news/ai-security-assessment-template
👍13