SecurityWeek

Critical N8n Vulnerabilities Allowed Server Takeover

Two critical-severity n8n vulnerabilities could have led to unauthenticated remote code execution, sandbox escape, and credential theft.
ABC7

Hacker accessed FBI server that included Epstein files in 2023, files suggest

A hacker in 2023 was able to access an FBI server that contained some files related to Jeffrey Epstein, according to documents released by the Department of Justice earlier this year. In a statement ...

A foreign hacker unknowingly breached FBI servers tied to the Epstein investigation

According to Department of Justice documents reviewed by Reuters, servers at the FBI's New York field office were compromised on February 12, 2023, by a foreign ...
The Hacker News

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

Your weekly cybersecurity roundup covering the latest threats, exploits, vulnerabilities, and security news you need to know.

Hackers exploiting WordPress membership plugin bug to create admin accounts

Security researchers at Defiant reported finding a bug in User Registration & Membership, a WordPress plugin which helps admins create subscription plans, control user access, and ...
IEEE

HSM-Based Architecture to Detect Insider Attacks on Server-Side Data

Abstract: In this paper, we propose an HSM-based architecture to detect insider attacks on server-side data. Our proposed architecture combines four cryptography-based defense mechanisms: Nonce-Based ...
Security Boulevard

Fake Huorong security site infects users with ValleyRAT

A convincing lookalike of the popular Huorong Security antivirus has been used to deliver ValleyRAT, a sophisticated Remote Access Trojan (RAT) built on the Winos4.0 framework, to users who believed ...

Socket Announces Support for PHP with Composer and Packagist Integration

Developers Can Now Search, Analyze, and Secure PHP Dependencies with AI-Powered Supply Chain Protection It would be ...