The Hacker News

Hackers Exploit Pandoc CVE-2025-51591 to Target AWS IMDS and Steal EC2 IAM Credentials

The vulnerability in question is CVE-2025-51591 (CVSS score: 6.5), which refers to a case of Server-Side Request Forgery ...
CRM Buyer

AppOmni’s Zero Trust Bridge Closes SaaS CRM Security Blind Spots

A growing wave of attacks on SaaS CRM platforms is overwhelming outdated cybersecurity defenses. AppOmni’s Zero Trust Bridge ...
American Banker

New framework aims to reduce SaaS security risk

A new industry standard from the Cloud Security Alliance aims to solve major security challenges for companies that rely ...
GovInfoSecurity

Hackers Obfuscated Malware With Verbose AI Code

Hackers behind a phishing campaign appear to have used artificial intelligence-generated code to hide malware behind a wall ...
Cybernews

CISA, GitHub take action after massive NPM supply chain compromise

CISA and GitHub have responded to a widespread supply chain attack involving the Shai-Hulud worm compromising over 500 NPM packages.