Firsthackersnews

  • Home
  • Firsthackersnews

Firsthackersnews We are here to bring Latest Cyber Security News to Everyone at the earliest

CrushFTP and Next.js face critical vulnerabilities, raising security concerns. Rapid7 warns these flaws could lead to da...
26/03/2025

CrushFTP and Next.js face critical vulnerabilities, raising security concerns. Rapid7 warns these flaws could lead to data breaches and unauthorized access.

Read more :

CrushFTP and Next.js face critical vulnerabilities, raising security concerns. Rapid7 warns these flaws could lead to data breaches .

In 2024, mobile banking malware affected nearly 248,000 users, a 3.6x jump from 69,000 the previous year.Read more about...
26/03/2025

In 2024, mobile banking malware affected nearly 248,000 users, a 3.6x jump from 69,000 the previous year.

Read more about it :

In 2024, mobile banking malware hit 248,000 users, a 3.6x rise from 69,000 last year, with most attacks in the second half.

Sygnia uncovered a cyber espionage operation by a China-linked group, “Weaver Ant.” The group targeted a major Asian tel...
26/03/2025

Sygnia uncovered a cyber espionage operation by a China-linked group, “Weaver Ant.” The group targeted a major Asian telecom company, using web shells and tunnels for persistent access and espionage.

Read more :

Sygnia uncovered “Weaver Ant,” a China-linked group hacking an Asian telecom with web shells and tunnels.

Flashpoint's 2024 report reveals a sharp rise in cyber threats, with 3.2 billion stolen credentials — a 33% increase fro...
19/03/2025

Flashpoint's 2024 report reveals a sharp rise in cyber threats, with 3.2 billion stolen credentials — a 33% increase from last year — driving ransomware and data breaches.

Read more :

Flashpoint's 2024 report shows a 33% rise in stolen credentials, with 3.2 billion credentials fueling ransomware and data breaches.

VPN vulnerabilities have become a major threat to organizations worldwide. Cybercriminals and state-sponsored hackers ar...
19/03/2025

VPN vulnerabilities have become a major threat to organizations worldwide. Cybercriminals and state-sponsored hackers are increasingly exploiting these flaws to access sensitive networks.

Read more at :

VPN vulnerabilities are now a major threat to organizations, with cybercriminals and state-backed hackers actively exploiting them to access sensitive networks.

A recent study revealed a major vulnerability in RSA keys, especially in IoT devices. Researchers found that about 1 in ...
17/03/2025

A recent study revealed a major vulnerability in RSA keys, especially in IoT devices. Researchers found that about 1 in 172 keys share a factor with another, making them vulnerable to attack.

Read more : https://firsthackersnews.com/rsa-keys/

A recent study found a major RSA key vulnerability in IoT devices, with 1 in 172 keys sharing a factor, making them vulnerable to attack.

Threat actors behind SocGholish are now using hacked websites to spread RansomHub ransomware.Read more about this at :
17/03/2025

Threat actors behind SocGholish are now using hacked websites to spread RansomHub ransomware.

Read more about this at :

SocGholish actors now use hacked sites to spread RansomHub ransomware, starting with malicious JavaScript delivery.

In 2025, a new wave of DCRat backdoor attacks has emerged, using the Malware-as-a-Service (MaaS) model. Read more :
17/03/2025

In 2025, a new wave of DCRat backdoor attacks has emerged, using the Malware-as-a-Service (MaaS) model.

Read more :

In 2025, DCRat backdoor attacks resurfaced, leveraging the Malware-as-a-Service (MaaS) model for distribution, support, and C2 server .

CISA has warned about a Junos OS vulnerability (CVE-2025-21590) in Juniper Networks.Read more about this :
17/03/2025

CISA has warned about a Junos OS vulnerability (CVE-2025-21590) in Juniper Networks.

Read more about this :

Juniper Networks released advisories JSA93446 and JSA5385 to address the CVE-2025-21590 vulnerability.

GreyNoise has reported a coordinated wave of attacks exploiting Server-Side Request Forgery (SSRF) vulnerabilities acros...
17/03/2025

GreyNoise has reported a coordinated wave of attacks exploiting Server-Side Request Forgery (SSRF) vulnerabilities across various platforms.

Read more : https://firsthackersnews.com/ssrf-vulnerability/

GreyNoise has reported a coordinated wave of attacks exploiting Server-Side Request Forgery (SSRF) vulnerabilities across various platforms.

A critical vulnerability, CVE-2025-24016, has been found in the Wazuh SIEM platform, affecting versions 4.4.0 to 4.9.0. ...
17/03/2025

A critical vulnerability, CVE-2025-24016, has been found in the Wazuh SIEM platform, affecting versions 4.4.0 to 4.9.0.

Read more : https://firsthackersnews.com/wazuh-siem/

A critical vulnerability, CVE-2025-24016, has been found in the Wazuh SIEM platform, affecting versions 4.4.0 to 4.9.0.

Google and Mandiant warn of rising phishing attacks on U.S. higher education, exploiting academic schedules and institut...
26/02/2025

Google and Mandiant warn of rising phishing attacks on U.S. higher education, exploiting academic schedules and institutional trust since August 2024.

Read more : https://firsthackersnews.com/phishing-attack/

Google and Mandiant warn of rising phishing attacks on U.S. higher education, exploiting academic schedules and institutional since August 2024.

A critical vulnerability has been found in the UpdraftPlus: WP Backup & Migration Plugin, affecting over 3 million WordP...
06/01/2025

A critical vulnerability has been found in the UpdraftPlus: WP Backup & Migration Plugin, affecting over 3 million WordPress sites.

Read more : https://firsthackersnews.com/wordpress-plugin-flaw/

A critical vulnerability has been found in the UpdraftPlus: WP Backup & Migration Plugin, affecting over 3 million WordPress sites.

ASUS warns of critical router flaws (CVE-2024-12912, CVE-2024-13062) allowing arbitrary command ex*****on. Users are urg...
03/01/2025

ASUS warns of critical router flaws (CVE-2024-12912, CVE-2024-13062) allowing arbitrary command ex*****on. Users are urged to update their devices immediately.

Read more :

ASUS warns of critical router flaws (CVE-2024-12912, CVE-2024-13062) allowing arbitrary command ex*****on. Users are urged to update.

Researchers observed increased activity from the "FICORA" and "CAPSAICIN" variants, which exploit vulnerabilities in out...
31/12/2024

Researchers observed increased activity from the "FICORA" and "CAPSAICIN" variants, which exploit vulnerabilities in outdated D-Link routers like DIR-645, DIR-806, GO-RT-AC750, and DIR-845L.

Read more :

Researchers observed increased activity from the "FICORA" and "CAPSAICIN" variants, which exploit vulnerabilities in outdated D-Link routers.

Recent cyberattacks by Akira and Fog threat actors have targeted various industries by exploiting CVE-2024-40766 in Soni...
29/10/2024

Recent cyberattacks by Akira and Fog threat actors have targeted various industries by exploiting CVE-2024-40766 in SonicWall VPN.

Read more :

Recent cyberattacks by Akira and Fog threat actors have targeted various industries by exploiting CVE-2024-40766 in SonicWall VPN.

WrnRAT is a new malware that cybercriminals deploy by disguising it as popular gambling games like Badugi, Go-Stop, and ...
29/10/2024

WrnRAT is a new malware that cybercriminals deploy by disguising it as popular gambling games like Badugi, Go-Stop, and Hold'em.

Read more :

WrnRAT is a new malware that cybercriminals deploy by disguising it as popular gambling games like Badugi, Go-Stop, and Hold'em.

Address


Website

Alerts

Be the first to know and let us send you an email when Firsthackersnews posts news and promotions. Your email address will not be used for any other purpose, and you can unsubscribe at any time.

Contact The Business

Send a message to Firsthackersnews:

Shortcuts

  • Address
  • Alerts
  • Contact The Business
  • Claim ownership or report listing

  • Want your business to be the top-listed Media Company?

Share