Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

2 headlines in this view

Showing 2 most recent headlines Filtered view

The Hacker News 1 year, 1 month ago

CVE-2025-24054 Under Active Attack—Steals NTLM Credentials on File Download

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added a medium-severity security flaw impacting Microsoft Windows to its Known Exploited Vulnerabilities (KEV) catalog, following reports of active exploitation in the wild

More from The Hacker News 18 Apr 2025, 4:29 p.m. Actively exploited CVE-2025-24054 America CISA CVE Credentials Disclosure Flaw Microsoft NTLM Vulnerability

The Hacker News 1 year, 3 months ago

Cisco Confirms Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks

Cisco has confirmed that a Chinese threat actor known as Salt Typhoon gained access by likely abusing a known security flaw tracked as CVE-2018-0171, and by obtaining legitimate victim login credentials as part of a targeted campaign aimed at major U.S. telecommunications companies

More from The Hacker News 21 Feb 2025, 8:38 p.m. Actively exploited CVE-2018-0171 America CVE China Cisco Confirmation Credentials Flaw Threat Actor Victims

Latest cybersecurity reporting from selected sources.

Refine the feed

Volume over time

Fresh headlines available

CVE-2025-24054 Under Active Attack—Steals NTLM Credentials on File Download

Cisco Confirms Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks