Yasna | Cybersecurity news, filtered

The Hacker News 1 month, 2 weeks ago

ShowDoc RCE Flaw CVE-2025-0520 Actively Exploited on Unpatched Servers

A critical security vulnerability impacting ShowDoc, a document management and collaboration service popular in China, has come under active exploitation in the wild

More from The Hacker News 14 Apr 2026, 5:50 p.m. CVE-2025-0520 CVE China Critical Flaw Remote Code Execution Vulnerability

Bleeping Computer 3 months, 4 weeks ago

New Amaranth Dragon cyberespionage group exploits WinRAR flaw

A new threat actor called Amaranth Dragon, linked to APT41 state-sponsored Chinese operations, exploited the CVE-2025-8088 vulnerability in WinRAR in espionage attacks on government and law enforcement agencies. [...]

More from Bleeping Computer 5 Feb 2026, 3:00 a.m. Actively exploited CVE-2025-8088 CVE China Exploit Flaw Government Nation State Threat Actor Vulnerability

The Hacker News 4 months ago

Google Warns of Active Exploitation of WinRAR Vulnerability CVE-2025-8088

Google on Tuesday revealed that multiple threat actors, including nation-state adversaries and financially motivated groups, are exploiting a now-patched critical security flaw in RARLAB WinRAR to establish initial access and deploy a diverse array of payloads

More from The Hacker News 28 Jan 2026, 10:46 p.m. Actively exploited CVE-2025-8088 CVE China Critical Flaw Google Government Initial Access Nation State Patch Russia Threat Actor Vulnerability Warning

Bleeping Computer 5 months, 4 weeks ago

React2Shell critical flaw actively exploited in China-linked attacks

Multiple China-linked threat actors began exploiting the React2Shell vulnerability (CVE-2025-55182) affecting React and Next.js just hours after the max-severity issue was disclosed. [...]

More from Bleeping Computer 6 Dec 2025, 12:26 a.m. Actively exploited CVE-2025-55182 CVE China Critical Disclosure Flaw Threat Actor Vulnerability

The Hacker News 10 months, 1 week ago

CISA Orders Urgent Patching After Chinese Hackers Exploit SharePoint Flaws in Live Attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA), on July 22, 2025, added two Microsoft SharePoint flaws, CVE-2025-49704 and CVE-2025-49706, to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation

More from The Hacker News 23 Jul 2025, 4:40 p.m. Actively exploited CVE-2025-49704 CVE-2025-49706 America CISA CVE China Exploit Flaw Microsoft Vulnerability

The Hacker News 1 year ago

China-Linked APTs Exploit SAP CVE-2025-31324 to Breach 581 Critical Systems Worldwide

A recently disclosed critical security flaw impacting SAP NetWeaver is being exploited by multiple China-nexus nation-state actors to target critical infrastructure networks

More from The Hacker News 14 May 2025, 3:13 a.m. Actively exploited CVE-2025-31324 Advanced Persistent Threat Breach CVE China Critical Critical Infrastructure Disclosure Exploit Flaw Nation State Remote Code Execution Unauthenticated Vulnerability

The Hacker News 1 year ago

Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell

A China-linked unnamed threat actor dubbed Chaya_004 has been observed exploiting a recently disclosed security flaw in SAP NetWeaver

More from The Hacker News 9 May 2025, 4:29 p.m. Actively exploited CVE-2025-31324 CVE China Critical Disclosure Exploit Flaw Hacking Remote Code Execution Report Threat Actor

The Hacker News 1 year, 3 months ago

Cisco Confirms Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks

Cisco has confirmed that a Chinese threat actor known as Salt Typhoon gained access by likely abusing a known security flaw tracked as CVE-2018-0171, and by obtaining legitimate victim login credentials as part of a targeted campaign aimed at major U.S. telecommunications companies

More from The Hacker News 21 Feb 2025, 8:38 p.m. Actively exploited CVE-2018-0171 America CVE China Cisco Confirmation Credentials Flaw Threat Actor Victims

Bleeping Computer 1 year, 11 months ago

Hackers exploit 2018 ThinkPHP flaws to install ‘Dama’ web shells

Chinese threat actors are targeting ThinkPHP applications vulnerable to CVE-2018-20062 and CVE-2019-9082 to install a persistent web shell named Dama. [...]

More from Bleeping Computer 7 Jun 2024, 9:26 a.m. Actively exploited CVE-2018-20062 CVE-2019-9082 CVE China Exploit Flaw Threat Actor Vulnerability

The Hacker News 2 years, 1 month ago

Researchers Identify Multiple China Hacker Groups Exploiting Ivanti Security Flaws

Multiple China-nexus threat actors have been linked to the zero-day exploitation of three security flaws impacting Ivanti appliances (CVE-2023-46805, CVE-2024-21887, and CVE-2024-21893)

More from The Hacker News 5 Apr 2024, 8:15 p.m. Actively exploited CVE-2023-46805 CVE-2024-21887 CVE-2024-21893 0-Day CVE China Cloud Flaw Google Research Threat Actor

Info Security Magazine 3 years, 9 months ago

Chinese Hackers May Be Behind Attacks Targeting Eastern Europe and Afghanistan

The phishing emails contained Microsoft Word documents that exploited the CVE-2017-11882 flaw

More from Info Security Magazine 9 Aug 2022, 3:00 a.m. Actively exploited CVE-2017-11882 CVE China Europe Flaw Microsoft Phishing

Latest cybersecurity reporting from selected sources.

Refine the feed

Volume over time

Fresh headlines available