The Hacker News

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching ...

"CanisterWorm" supply chain malware attacks npm

A threat actor who stole credentials from a legitimate node package manager (npm) publisher has spread a persistent, ...

New Apple Hack: Up to 270M iPhones Vulnerable to ‘DarkSword’ Exploit

Researchers uncover “DarkSword,” a powerful iPhone exploit targeting millions via compromised websites. Learn how it works ...

Someone has publicly leaked an exploit kit that can hack millions of iPhones

Leaked "DarkSword" exploits published to GitHub allow hackers and cybercriminals to target iPhone users running old versions ...

Millions Of ‘Anonymous’ Crime Tips Exposed in Crime Stoppers Hack: 8.3 Million Records Leaked

Anonymous crime tip platform P3 Global leaked 8.3 million records from 1987-2024, exposing tipster identities and proving ...
Hackaday

This Week In Security: Linux Flaws, Python Ownage, And A Botnet Shutdown

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...