The Hacker News

SolarWinds Fixes Four Critical Web Help Desk Flaws With Unauthenticated RCE and Auth Bypass

SolarWinds fixed six Web Help Desk vulnerabilities, including four critical flaws that allow unauthenticated remote code execution.

WinRAR under attack by state-level hackers, according to Google

A flaw that was patched six months ago is still being used by hackers aligned with Russia and China, among others.

Seattle’s data privacy chief falls victim to identity theft, and shares tips for how to recover

Ginger Armbruster found herself on the other side of a breach when she discovered a fraudster had used her leaked information ...
The Hacker News

Fake Moltbot AI Coding Assistant on VS Code Marketplace Drops Malware

A fake VS Code extension posing as a Moltbot AI assistant installed ScreenConnect malware, giving attackers persistent remote ...