TheHackerNews - Blogs Grocliq

Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper

By TheHackerNews March 23, 2026

Ravie LakshmananMar 23, 2026Cloud Security / DevOps Cybersecurity researchers have uncovered malicious artifacts distributed via Docker Hub following the Trivy…

Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems

By TheHackerNews March 23, 2026

Ravie LakshmananMar 23, 2026Vulnerability / Endpoint Security Threat actors are suspected to be exploiting a maximum-severity security flaw impacting Quest…

FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks

By TheHackerNews March 21, 2026

Ravie LakshmananMar 21, 2026Cyber Espionage / Threat Intelligence Threat actors affiliated with Russian Intelligence Services are conducting phishing campaigns to…

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

By TheHackerNews March 21, 2026

Ravie LakshmananMar 21, 2026Vulnerability / Threat Intelligence Oracle has released security updates to address a critical security flaw impacting Identity…

CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026

By TheHackerNews March 21, 2026

Ravie LakshmananMar 21, 2026Vulnerability / Threat Intelligence The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added five security…

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

By TheHackerNews March 21, 2026

Ravie LakshmananMar 21, 2026Malware / Threat Intelligence The threat actors behind the supply chain attack targeting the popular Trivy scanner…

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

By TheHackerNews March 20, 2026

Trivy, a popular open-source vulnerability scanner maintained by Aqua Security, was compromised a second time within the span of a…

Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover

By TheHackerNews March 20, 2026

Ravie LakshmananMar 20, 2026Web Security / Vulnerability Sansec is warning of a critical security flaw in Magento’s REST API that…

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

By TheHackerNews March 20, 2026

A critical security flaw impacting Langflow has come under active exploitation within 20 hours of public disclosure, highlighting the speed…

Google Adds 24-Hour Wait for Unverified App Sideloading to Reduce Malware and Scams

By TheHackerNews March 20, 2026

Ravie LakshmananMar 20, 2026Data Privacy / Mobile Security Google on Thursday announced a new “advanced flow” for Android sideloading that…

Previous Page 42 of 173 Next

Trivy Hack Spreads Infostealer via Docker, Triggers Worm and Kubernetes Wiper

Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems

FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

CISA Flags Apple, Craft CMS, Laravel Bugs in KEV, Orders Patching by April 3, 2026

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Google Adds 24-Hour Wait for Unverified App Sideloading to Reduce Malware and Scams

US lawmakers propose ‘Great American Act’ to block state AI rules

Why PhysicsWallah is taking a U-turn on student lending

Press ESC to close