Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

2 headlines in this view

Showing 2 most recent headlines Filtered view

The Hacker News 1 year ago

Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell

A China-linked unnamed threat actor dubbed Chaya_004 has been observed exploiting a recently disclosed security flaw in SAP NetWeaver

More from The Hacker News 9 May 2025, 4:29 p.m. Actively exploited CVE-2025-31324 CVE China Critical Disclosure Exploit Flaw Hacking Remote Code Execution Report Threat Actor

The Hacker News 1 year, 1 month ago

SAP Confirms Critical NetWeaver Flaw Amid Suspected Zero-Day Exploitation by Hackers

Threat actors are likely exploiting a new vulnerability in SAP NetWeaver to upload JSP web shells with the goal of facilitating unauthorized file uploads and code execution. "The exploitation is likely tied to either a previously disclosed vulnerability like CVE-2017-9844 or an unreported remote file inclusion (RFI) issue," ReliaQuest said in a report published this week

More from The Hacker News 25 Apr 2025, 10:41 p.m. CVE-2017-9844 0-Day CVE Confirmation Critical Disclosure Flaw Report Threat Actor Vulnerability

Latest cybersecurity reporting from selected sources.

Refine the feed

Volume over time

Fresh headlines available

Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell

SAP Confirms Critical NetWeaver Flaw Amid Suspected Zero-Day Exploitation by Hackers