Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

5 headlines in this view

Showing 5 most recent headlines Filtered view

Bleeping Computer 1 month ago

Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks

A new disclosed cPanel flaw tracked as CVE-2026-41940 is being mass-exploited to breach websites and encrypt data in "Sorry" ransomware attacks. [...]

More from Bleeping Computer 3 May 2026, 9:54 a.m. Actively exploited CVE-2026-41940 Breach CVE Disclosure Flaw Ransomware

Dark Reading 8 months, 1 week ago

CISA: Attackers Breach Federal Agency via Critical GeoServer Flaw

Threat actors exploited CVE-2024-36401 less than two weeks after it was initially disclosed and used it to gain access to a large federal civilian executive branch (FCEB) agency that uses the geospatial mapping data.

More from Dark Reading 25 Sep 2025, 9:20 a.m. Actively exploited CVE-2024-36401 Breach CISA CVE Critical Disclosure Flaw Threat Actor

The Hacker News 9 months, 3 weeks ago

Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors

The Dutch National Cyber Security Centre (NCSC-NL) has warned of cyber attacks exploiting a recently disclosed critical security flaw impacting Citrix NetScaler ADC products to breach organizations in the country

More from The Hacker News 12 Aug 2025, 8:36 p.m. Actively exploited CVE-2025-6543 Breach CVE Citrix Confirmation Critical Disclosure Flaw Netherland

The Hacker News 1 year ago

China-Linked APTs Exploit SAP CVE-2025-31324 to Breach 581 Critical Systems Worldwide

A recently disclosed critical security flaw impacting SAP NetWeaver is being exploited by multiple China-nexus nation-state actors to target critical infrastructure networks

More from The Hacker News 14 May 2025, 3:13 a.m. Actively exploited CVE-2025-31324 Advanced Persistent Threat Breach CVE China Critical Critical Infrastructure Disclosure Exploit Flaw Nation State Remote Code Execution Unauthenticated Vulnerability

Bleeping Computer 1 year, 7 months ago

Microsoft SharePoint RCE bug exploited to breach corporate network

A recently disclosed Microsoft SharePoint remote code execution (RCE) vulnerability tracked as CVE-2024-38094 is being exploited to gain initial access to corporate networks. [...]

More from Bleeping Computer 3 Nov 2024, 4:19 a.m. Actively exploited CVE-2024-38094 Breach CVE Disclosure Initial Access Microsoft Remote Code Execution Vulnerability

Latest cybersecurity reporting from selected sources.

Refine the feed

Volume over time

Fresh headlines available

Critrical cPanel flaw mass-exploited in "Sorry" ransomware attacks

CISA: Attackers Breach Federal Agency via Critical GeoServer Flaw

Dutch NCSC Confirms Active Exploitation of Citrix NetScaler CVE-2025-6543 in Critical Sectors

China-Linked APTs Exploit SAP CVE-2025-31324 to Breach 581 Critical Systems Worldwide

Microsoft SharePoint RCE bug exploited to breach corporate network