Microsoft has observed a surge in attacks using the ACR Stealer malware to steal browser-stored passwords, authentication ...
The Cybersecurity and Infrastructure Security Agency has issued an alert warning of four Microsoft SharePoint vulnerabilities ...
Threat actors are exploiting CVE-2026-58644, a Microsoft SharePoint RCE vulnerability patched on the July 2026 Patch Tuesday.
From late April 2026 to mid-June 2026, Microsoft Defender Experts observed increased ACR Stealer activity across customer ...
Microsoft is extending Dataverse into coding-agent marketplaces while expanding its MCP tools, certification program and governance controls.
A single misconfigured server has exposed the complete toolkit of an active a three-actor phishing ecosystem. According to ...
In other news, a DHS database was hacked, Adobe is releasing patches twice a month, and Canada has disrupted ransomware operations.
New Helix extortion group steals SharePoint data after compromising Microsoft 365 accounts through voice phishing and MFA ...
A new data-extortion group called Helix is using identity-focused tactics such as voice phishing (vishing), device code ...
Aaron Erickson explains how NVIDIA designs and tests purpose-built AI agent hierarchies. For senior developers and architects ...
JadePuffer exploited a vulnerable Langflow server, harvested credentials, moved laterally, and encrypted more than 1,300 ...
The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...