The Hacker News

ThreatsDay Bulletin: Pre-Auth Chains, Android Rootkits, CloudTrail Evasion & 10 More Stories

The U.S. State Department has officially launched the Bureau of Emerging Threats, a new unit tasked with protecting U.S.
Android Authority

Qualcomm responds to GBL exploit used on latest Snapdragon flagships

Qualcomm confirmed that fixes for the GBL exploit were provided to Android device makers earlier this month. The exploit, discovered by Xiaomi ShadowBlade Security Lab, was a key component in ...
Android Authority

New Qualcomm exploit chain brings bootloader unlocking freedom to Android flagships ...

A vulnerability in Qualcomm’s Android Bootloader implementation allows unsigned code to run via the “efisp” partition on Android 16 devices. This is paired with a “fastboot” command oversight to ...
Invezz

Google uncovers iPhone exploit kit targeting crypto wallet seed phrases

Google finds iPhone exploit kit targeting crypto wallet seed phrases. Coruna toolkit attacks older iOS devices via fake crypto sites. Exploit linked to espionage and crypto theft campaigns. Security ...
PC Magazine

This iOS 'Exploit' Kit Can Hack Vulnerable iPhones Using 23 Different Attacks

This iOS 'Exploit' Kit Can Hack Vulnerable iPhones Using 23 Different Attacks Security researchers discover the 'Coruna' exploit kit running on malicious Chinese websites that were able to secretly ...
9to5Mac

Google and iVerify reveal government-grade iPhone exploit kit spreading to hackers

Google’s Threat Intelligence Group and security company iVerify have shared details about Coruna, an exploit kit that chains multiple vulnerabilities to target iPhones running older iOS versions. Here ...
Forbes

‘ARC Raiders’ Confirms Its Coin Dupe Exploit Use Punishments

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. Did you take advantage of a recent coin exploit in ARC Raiders? Well, you may be about to be ...
Business Wire

RPC, Inc. Invests in Topcon Solutions Stores

LIVERMORE, Calif.--(BUSINESS WIRE)--Topcon Positioning Systems has announced a significant strategic investment in its U.S. retail network — Topcon Solutions Stores (TSS) — by RPC, Inc. The agreement ...
HotHardware

Millions At Risk As Attackers Exploit This Alarming WinRAR Security Flaw

Remember the WinRAR path handling exploit we reported on back in August? According to Google, that same flaw, officially dubbed CVE-2025-8088, is still being actively exploited, even though versions ...
Kotaku

Steam Game Devs Call Exploit Allegations ‘Clickbait Exaggeration’ And ‘Malicious ...

The developers behind a popular “open source MMO RTS sandbox game for programming enthusiasts” on Steam, named Screeps: World, have been forced to update their game “in order to protect both players” ...
decrypt

Ethereum DeFi Platform Makina Hit by Flash Loan Exploit, Loses $4M in ETH

Add Decrypt as your preferred source to see more of our stories on Google. Ethereum-based DeFi platform Makina Finance has lost over $4 million in ETH following a flash loan exploit. Most of the funds ...
SecurityWeek

Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure

Fresh attacks targeted three VMware ESXi vulnerabilities that were disclosed in March 2025 as zero-days. A Chinese threat actor built an exploit for three VMware ESXi vulnerabilities that were patched ...