The Hacker News

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching cycles.
Hackaday

This Week In Security: Linux Flaws, Python Ownage, And A Botnet Shutdown

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...
Infosecurity Magazine

Hackers Exploit Critical Langflow Bug in Just 20 Hours

Sysdig cited figures from the Zero Day Clock initiative which revealed that median time-to-exploit (TTE) collapsed from 771 ...

Google report: AI is accelerating cloud cyberattacks, and one weak link stands out

Cloud attacks are getting faster and deadlier - here's your best defense plan ...
Microsoft

Contagious Interview: Malware delivered through fake developer job interviews

The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

Google: Cloud attacks exploit flaws more than weak credentials

Hackers are increasingly exploiting newly disclosed vulnerabilities in third-party software to gain initial access to cloud environments, with the window for attacks shrinking from weeks to just days.
Ars Technica

Feds take notice of iOS vulnerabilities exploited under mysterious circumstances

The Cybersecurity and Infrastructure Security Agency has ordered federal agencies to patch three critical iOS vulnerabilities that were exploited over a 10-month span in hacking campaigns conducted by ...
Invezz

Google uncovers iPhone exploit kit targeting crypto wallet seed phrases

Google finds iPhone exploit kit targeting crypto wallet seed phrases. Coruna toolkit attacks older iOS devices via fake crypto sites. Exploit linked to espionage and crypto theft campaigns. Security ...

AI helps novice threat actor compromise FortiGate devices in dozens of countries

Generative AI tools analyzed target networks and wrote exploit code, enabling an opportunistic attacker to have an outsized ...
IGN

Arc Raiders Dev Says Players Who Used 'Recent Exploits' Will Face Warnings and Suspensions Starting This Week

Embark Studios is keeping its promise to take action against players who took advantage of duplication exploits and other glitches in Arc Raiders by issuing warnings and suspensions. The developer ...