Author Archives: The Hacker News

Cybersecurity researchers have discovered a critical “by design” weakness in the Model Context Protocol’s (MCP) architecture that could pave the way for remote code execution and have a cascading effect on the artificial intelligence (AI) supply chain…. Continue reading Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain→

Cybersecurity researchers have flagged a new malware called ZionSiphon that appears to be specifically designed to target Israeli water treatment and desalination systems.
The malware has been codenamed ZionSiphon by Darktrace, highlighting its ability… Continue reading Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems→

Web infrastructure provider Vercel has disclosed a security breach that allows bad actors to gain unauthorized access to “certain” internal Vercel systems.
The incident stemmed from the compromise of Context.ai, a third-party artificial intelligence (A… Continue reading Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials→

Grinex, a Kyrgyzstan-incorporated cryptocurrency exchange sanctioned by the U.K. and the U.S. last year, said it’s suspending operations after it blamed Western intelligence agencies for a $13.74 million hack.
The exchange said it fell victim to what i… Continue reading $13.74M Hack Shuts Down Sanctioned Grinex Exchange After Intelligence Claims→

Threat actors are exploiting security flaws in TBK DVR and end‑of‑life (EoL) TP-Link Wi-Fi routers to deploy Mirai-botnet variants on compromised devices, according to findings from Fortinet FortiGuard Labs and Palo Alto Networks Unit 42.
The attack ta… Continue reading Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet→

Huntress is warning that threat actors are exploiting three recently disclosed security flaws in Microsoft Defender to gain elevated privileges in compromised systems.
The activity involves the exploitation of three vulnerabilities that are codena… Continue reading Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched→

Google this week announced a new set of Play policy updates to strengthen user privacy and protect businesses against fraud, even as it revealed it blocked or removed over 8.3 billion ads globally and suspended 24.9 million accounts in 2025.
The new po… Continue reading Google Blocks 8.3B Policy-Violating Ads in 2025, Launches Android 17 Privacy Overhaul→

The National Institute of Standards and Technology (NIST) has announced changes to the way it handles cybersecurity vulnerabilities and exposures (CVEs) listed in its National Vulnerability Database (NVD), stating it will only enrich those that fulfil … Continue reading NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions→

An international law enforcement operation has taken down 53 domains and arrested four people in connection with commercial distributed denial-of-service (DDoS) operations that were used by more than 75,000 cybercriminals.
The ongoing effort, dubbed Op… Continue reading Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts→

A recently disclosed high-severity security flaw in Apache ActiveMQ Classic has come under active exploitation in the wild, per the U.S. Cybersecurity and Infrastructure Security Agency (CISA).
To that end, the agency has added the vulne… Continue reading Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation→