The Hacker News

Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API

Harvester deploys Linux GoGra via Microsoft Graph API in South Asia, targeting India and Afghanistan since 2021, enabling ...
The Hacker News

New PHP Composer Flaws Enable Arbitrary Command Execution — Patches Released

Two Composer flaws (CVE-2026-40176, CVE-2026-40261) allow command execution via Perforce configurations, prompting urgent ...
decrypt

US Charges Hacker Behind $53 Million Uranium Finance Exploit

Add Decrypt as your preferred source to see more of our stories on Google. U.S. authorities have charged Jonathan Spalletta with exploiting Uranium Finance, draining tens of millions of dollars from ...
IEEE

Exploit Security for Low-Altitude Economy: A SWIPT-Driven Strategy With UAV-Mounted MF-RIS

Abstract: The low-altitude economy (LAE) is emerging as a critical enabler for next-generation (6G) networks. In this correspondence, we propose a secure and energy-efficient simultaneous wireless ...
GitHub

v1cker/Attack_Defense_Framework

. ├── core │ ├── exploit │ │ ├── get_flag.py # Please rewrite the function : get_flag in this script │ │ ├── __init__.py │ │ └── submit_flag.py # Please rewrite the funtion : submit_fl ...
GitHub

zhangdebiao/Attack_Defense_Framework

. ├── core │ ├── exploit │ │ ├── get_flag.py # Please rewrite the function : get_flag in this script │ │ ├── __init__.py │ │ └── submit_flag.py # Please rewrite the funtion : submit_fl ...
UNESCO

Reporting a Cybersecurity Issue: UNESCO’s Security Vulnerability Disclosure policy

Missing best practices in SSL/TLS configuration. xmlrpc.php with no admin page exposed to the Internet. No automated fuzzing of forms or web scraping type of activities. Any activity that could lead ...