Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

9 headlines in this view

Refine the feed

Search across headline titles and summaries.

Volume over time

Weekly headline count for the current query.

Showing 9 most recent headlines Filtered view

Interlock's post-exploit toolkit exposed Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, according to Amazon security boss CJ Moses.…

More from The Register 19 Mar 2026, 6:40 a.m. Actively exploited CVE-2026-20131 0-Day Amazon CVE Cisco Disclosure Exploit Exposure Firewalls Flaw Patch Ransomware Vulnerability

Cybersecurity researchers have discovered a new ransomware strain dubbed HybridPetya that resembles the notorious Petya/NotPetya malware, while also incorporating the ability to bypass the Secure Boot mechanism in Unified Extensible Firmware Interface (UEFI) systems using a now-patched vulnerability disclosed earlier this year

More from The Hacker News 12 Sep 2025, 11:50 p.m. CVE-2024-7344 Antivirus Bypass CVE Disclosure Exploit Firmware Malware Patch Ransomware Research Vulnerability
Bank Info Security 10 months, 2 weeks ago

Attackers Now 'Scanning Extensively' for Citrix Bleed 2

Ransomware Group Among Attackers Focused on Exploiting Citrix Netscaler FlawSecurity experts warn that attackers have ramped up their collective attempts to find and exploit Citrix NetScaler devices that remain unpatched. Cloud Security Group patched CVE-2025-5777, a flaw also known as "Citrix Bleed 2," nearly four weeks ago with a software update.

More from Bank Info Security 15 Jul 2025, 7:30 a.m. Actively exploited CVE-2025-5777 CVE Citrix Cloud Exploit Flaw Patch Ransomware

Threat actors with links to the Play ransomware family exploited a recently patched security flaw in Microsoft Windows as a zero-day as part of an attack targeting an unnamed organization in the United States

More from The Hacker News 7 May 2025, 10:44 p.m. Actively exploited CVE-2025-29824 0-Day America Antivirus Breach CVE Flaw Microsoft Patch Privilege Escalation Ransomware Symantec Threat Actor

Roses are red, violets are blue, CVE-2024-53704 is perfect for a ransomware crew Miscreants are actively abusing a high-severity authentication bypass bug in unpatched internet-facing SonicWall firewalls following the public release of proof-of-concept exploit code.…

More from The Register 15 Feb 2025, 11:53 a.m. Actively exploited CVE-2024-53704 Authentication Bypass CVE Exploit Firewalls Patch PoC Ransomware VPN