The Hacker News

ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers

ShowDoc CVE-2025-0520 exploited due to unpatched versions before 2.8.7, enabling remote code execution on 2,000+ instances.

Adobe Attacks Underway—Windows And Mac Users Given 72 Hours To Update

Adobe Acrobat and Reader users are under attack from hackers using a zero-day vulnerability. Update within 72 hours, Adobe ...
Morning Overview on MSN

Anthropic’s Mythos flags widespread software flaws, raising cyber risks

A vulnerability-discovery tool built by Anthropic has identified a serious flaw in FreeBSD’s Network File System, a component ...
Hackaday

This Week In Security: Flatpak Fixes, Android Malware, And SCADA Was IOT Before IOT Was Cool

Rowhammer attacks have been around since 2014, and mitigations are in place in most modern systems, but the team at gddr6.fail has found ways to apply the attack to current-generation GPUs.

Claude Mythos can hack anything, Anthropic says. Should we believe them?

Antrophic says its newest model found vulnerabilities in every major operating system and browser—and wrote exploits for them ...
Crypto2Community

Circle Explains USDC Freeze Limits After Drift Protocol Hack

Circle explains USDC freeze limits after ZachBXT accused the stablecoin issuer of enabling the exploit on Drift Protocol.

Gimp: Unpatched vulnerability allows code injection with GIFs

Security vulnerabilities in Gimp allow code injection with manipulated files like GIFs. There is no update yet.

Agents hooked into GitHub can steal creds – but Anthropic, Google, and Microsoft haven't warned users

Exclusive: Researchers who found the flaws scored beer money bounties and warn the problem is probably pervasive ...