The Hacker News

New n8n Vulnerability (9.9 CVSS) Lets Authenticated Users Execute System Commands

Critical n8n flaw CVE-2025-68668 allows authenticated users to run system commands via workflows; affects versions 1.0.0 to ...
The Hacker News

New VVS Stealer Malware Targets Discord Accounts via Obfuscated Python Code

VVS Stealer is a Python-based malware sold on Telegram that steals Discord tokens, browser data, and credentials using heavy ...

How generative AI accelerates identity attacks against Active Directory

Generative AI is accelerating password attacks against Active Directory, making credential abuse faster and more effective.

Historic LastPass breach enabling cryptocurrency theft, investigation reveals

The data breach incident at LastPass, which happened more than three years ago, is still enabling cryptocurrency theft. In ...