The Hacker News

New MongoDB Flaw Lets Unauthenticated Attackers Read Uninitialized Memory

High-severity CVE-2025-14847 allows unauthenticated attackers to read uninitialized heap memory in MongoDB due to a zlib ...
Digital Trends

Hacker discovers a MacOS exploit that is able to access system passwords

Security researcher Linus Henze recently uncovered a vulnerability within MacOS Mojave that allows an unauthorized application to steal passwords from both your Mac’s ‘login’ and ‘system’ Keychains.
Courthouse News Service

Apple patches exploit attributed to hacker-for-hire firm

This photo shows the Apple logo displayed on a Mac Pro desktop computer in New York. (AP Photo/Mark Lennihan) BOSTON (AP) — Apple released an emergency software patch to fix a security vulnerability ...
CoinTelegraph

Arcadia Finance hacker used reentrancy exploit, team demands return of funds

In a post-mortem report, Arcadia Finance developers said an attacker stole funds by liquidating a vault before it could perform a health check, interrupting the app’s normal flow of operations. The ...
Yahoo Finance

Coinbase Exploit Hacker Swaps $5M DAI to USDC, Bridges Funds After 35-Minute Idle Window

The Coinbase threat actor behind the May breach has become active again, transferring $5 million DAI. The hacker then swapped DAI to USDC using Circle’s CCTP bridge. The stolen funds sat in a USDC ...
Android

Call of Duty anti-cheat exploit allowed hacker to ban players

Call of Duty owner Activision has been fairly open about its mitigation strategies to lessen the number of cheaters in the game using its Ricochet anti-cheat software, which a hacker reportedly says ...
PC World

Hacker publishes alleged zero-day exploit for older Plesk versions

A hacker released what he claims is a zero-day exploit for older versions of the Parallels Plesk Panel, a popular Web hosting administration software package, that could allow attackers to inject ...
CoinTelegraph

Seneca stablecoin hacker returns stolen funds after $6.4M exploit

The hacker who gained access to around $6.4 million in ETH from the Seneca stablecoin exploit has returned over $5 million to the project after accepting a 20% bounty. Update Feb. 29, 10:17 UTC: This ...
techtimes

‘Dark Souls 3’ PC Gamers Beware! Dangerous Exploit Allows Hackers to Hijack Computers

"Dark Souls 3"'s dangerous exploit could potentially welcome hackers to take control of the computers of its PC gamers, putting them at risk of a cyberattack. BERLIN, GERMANY - JANUARY 25: In this ...
Dark Reading

Hacker Bypasses Windows 7 Anti-Exploit Features In IE 8 Hack

A Dutch researcher won $10,000 in the Pwn2Own hacking contest this week for hacking Internet Explorer 8 on a Windows 7 machine -- bypassing built-in anti-exploit features in the operating system.
Honolulu Star-Advertiser

Apple issues emergency patch for exploit attributed to hacker-for-hire firm

BOSTON >> Apple released an emergency software patch to fix a security vulnerability that researchers said could allow hackers to directly infect iPhones and other Apple devices without any user ...
Los Angeles Times

Apple patches exploit attributed to hacker-for-hire firm

Apple released an emergency software patch to fix a security vulnerability that researchers said could allow hackers to directly infect iPhones and other Apple devices without any user action. The ...