Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

4 headlines in this view

Refine the feed

Search across headline titles and summaries.

Volume over time

Weekly headline count for the current query.

Showing 4 most recent headlines Filtered view

Google on Tuesday revealed that multiple threat actors, including nation-state adversaries and financially motivated groups, are exploiting a now-patched critical security flaw in RARLAB WinRAR to establish initial access and deploy a diverse array of payloads

More from The Hacker News 28 Jan 2026, 10:46 p.m. Actively exploited CVE-2025-8088 CVE China Critical Flaw Google Government Initial Access Nation State Patch Russia Threat Actor Vulnerability Warning

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning government agencies to patch an Oracle Identity Manager tracked as CVE-2025-61757 that has been exploited in attacks, potentially as a zero-day. [...]

More from Bleeping Computer 22 Nov 2025, 12:50 p.m. Actively exploited CVE-2025-61757 0-Day America CISA CVE Flaw Government Oracle Patch Remote Code Execution Warning

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning about hackers actively exploiting a critical vulnerability in Adobe ColdFusion identified as CVE-2023-26360 to gain initial access to government servers. [...]

More from Bleeping Computer 6 Dec 2023, 6:07 a.m. Actively exploited CVE-2023-26360 Adobe America Breach CISA CVE Critical Exploit Government Initial Access Vulnerability Warning

The US government is warning that threat actors breached the network of a U.S. organization in the critical infrastructure sector after exploiting a zero-day RCE vulnerability currently identified as CVE-2023-3519, a critical-severity issue in NetScaler ADC and Gateway that Citrix patched this week. [...]

More from Bleeping Computer 22 Jul 2023, 12:51 a.m. Actively exploited CVE-2023-3519 0-Day America Breach CVE Critical Critical Infrastructure Government Patch Remote Code Execution Threat Actor Vulnerability Warning