The Hacker News

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching cycles.
Cybernews

BuddyBoss platform compromised, hundreds of websites already hacked

BuddyBoss was compromised in an ongoing supply chain attack that deployed malicious updates to over 300 WordPress sites, stealing credentials and financial keys.

New ‘DarkSword’ Spyware Could Be Capable of Hacking Millions of iPhones, Researchers Find. Here’s What You Should Know

Among the websites researchers identified as being used in DarkSword attacks was one with a gov.ua address, according to ...

This Massive Data Breach Leaked 2.7 Million Social Security Numbers

Another massive data breach has compromised millions of Americans' healthcare data and sensitive information. Navia Benefit ...
CNET on MSN

There's an Easy Way to Stay Safe From the New 'DarkSword' iPhone Hackers

There's an Easy Way to Stay Safe From the New 'DarkSword' iPhone Hackers ...
WeLiveSecurity

Move fast and save things: A quick guide to recovering a hacked account

When an online account is compromised, the first few minutes may determine how bad the incident ultimately gets.

Sinister DarkSword hack steals iPhone messages and passwords in seconds

'Think of it like someone buying a military‑grade lock‑picking robot.' ...