Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

6 headlines in this view

Showing 6 most recent headlines Filtered view

The Hacker News 1 month, 2 weeks ago

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

Threat actors are exploiting security flaws in TBK DVR and end‑of‑life (EoL) TP-Link Wi-Fi routers to deploy Mirai-botnet variants on compromised devices, according to findings from Fortinet FortiGuard Labs and Palo Alto Networks Unit 42

More from The Hacker News 18 Apr 2026, 6:01 p.m. Incident · 5 stories CVE-2024-3721 Botnet CVE Compromise DoS Exploit Flaw Fortinet Palo Alto Networks Routers Threat Actor Vulnerability Wireless

The Hacker News 8 months, 4 weeks ago

CISA Flags TP-Link Router Flaws CVE-2023-50224 and CVE-2025-9377 as Actively Exploited

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Wednesday added two security flaws impacting TP-Link wireless routers to its Known Exploited Vulnerabilities (KEV) catalog, noting that there is evidence of them being exploited in the wild

More from The Hacker News 4 Sep 2025, 10:03 p.m. Actively exploited CVE-2023-50224 CVE-2025-9377 America Authentication Bypass CISA CVE Flaw Routers Spoofing Vulnerability Wireless

The Hacker News 11 months, 2 weeks ago

TP-Link Router Flaw CVE-2023-33538 Under Active Exploit, CISA Issues Immediate Alert

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity security flaw in TP-Link wireless routers to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability in question is CVE-2023-33538 (CVSS score: 8.8), a command injection bug that could result in the execution of arbitrary system commands when

More from The Hacker News 17 Jun 2025, 8:12 p.m. Actively exploited CVE-2023-33538 America CISA CVE Exploit Flaw Routers Vulnerability Wireless

The Hacker News 1 year ago

Cisco Patches CVE-2025-20188 (10.0 CVSS) in IOS XE That Enables Root Exploits via JWT

Cisco has released software fixes to address a maximum-severity security flaw in its IOS XE Wireless Controller that could enable an unauthenticated, remote attacker to upload arbitrary files to a susceptible system

More from The Hacker News 8 May 2025, 4:57 p.m. CVE-2025-20188 Apple CVE Cisco Exploit Flaw Patch Root Unauthenticated Vulnerability Wireless

Bleeping Computer 3 years, 1 month ago

TP-Link Archer WiFi router flaw exploited by Mirai malware

The Mirai malware botnet is actively exploiting a TP-Link Archer A21 (AX1800) WiFi router vulnerability tracked as CVE-2023-1389 to incorporate devices into DDoS (distributed denial of service) swarms. [...]

More from Bleeping Computer 25 Apr 2023, 11:45 p.m. Actively exploited CVE-2023-1389 Botnet CVE DoS Flaw Malware Routers Vulnerability Wireless

Bleeping Computer 4 years, 1 month ago

Cisco vulnerability lets hackers craft their own login credentials

Cisco has released a security advisory to warn about a critical vulnerability (CVSS v3 score: 10.0), tracked as CVE-2022-20695, impacting the Wireless LAN Controller (WLC) software. [...]

More from Bleeping Computer 16 Apr 2022, 5:54 a.m. CVE-2022-20695 CVE Cisco Credentials Critical Vulnerability Wireless