The Hacker News

Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems

CVE-2025-32975 exploited since March 2026 on unpatched KACE SMA systems, enabling admin takeover and payload delivery.
Forbes

Microsoft Emergency Server Update Not Enough To Stop Attacks

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Every security team’s nightmare came true over the weekend: a ...
New York Post

Microsoft SharePoint server hack likely caused by single actor — and thousands of firms now vulnerable: researchers

A sweeping cyberespionage operation targeting Microsoft server software compromised about 100 different organizations as of the weekend, one of the researchers who helped uncover the campaign said ...
Computerworld

Exploit goes public for Windows DNS Server bug

A public exploit appeared just two days after Microsoft Corp. acknowledged a critical vulnerability in its server software, a change one security company said “greatly increases” the chances of a ...
Network World

How to block Microsoft DNS exploit; When the printer doesn’t print

A: Those running Windows DNS Server services should check whether the service is configured to accept Remote Procedure Call requests and disable them if possible. The SANS Institute Internet Storm ...
The Hacker News

CISA Flags Actively Exploited Wing FTP Vulnerability Leaking Server Paths

CISA adds Wing FTP CVE-2025-47813 to KEV after active exploitation, exposing server paths and aiding attacks; patch by March ...
Bleeping Computer

Hackers exploit VMware ESXi, Microsoft SharePoint zero-days at Pwn2Own

During the second day of Pwn2Own Berlin 2025, competitors earned $435,000 after exploiting zero-day bugs in multiple products, including Microsoft SharePoint, VMware ESXi, Oracle VirtualBox, Red Hat ...
Comicbook.com

Minecraft Exploit Lets Hackers Use Mods to Infect Servers and Home PCs

Now, it’s important to note that just because you use mods or play on a multiplayer server, you’re not necessarily at risk. That said, the list of mods that have been affected by BleedingPipe is large ...
Android

New Microsoft Exchange exploit being used to breach servers

Play ransomware has been a major threat to businesses and organizations for some time now, and the threat actors behind it are constantly finding new ways to infiltrate and compromise systems. In a ...
Android

New remote access exploit targets Windows Servers in Healthcare

A recent incident has pushed the widely used remote access tool, ScreenConnect, into the spotlight. The healthcare sector, a commonly targeted field, found itself facing a significant threat. Threat ...

Someone has publicly leaked an exploit kit that can hack millions of iPhones

Leaked "DarkSword" exploits published to GitHub allow hackers and cybercriminals to target iPhone users running old versions ...
Ars Technica

Hundreds of SugarCRM servers infected with critical in-the-wild exploit

Attackers are using the exploit to infect on-premises servers with web shell backdoors. which looks very much like a test user that is included by default in production code. Which is such a serious ...