CISA Flags 2-Year-Old Oracle WebLogic Vulnerability as Actively Exploited

CISA added Oracle WebLogic flaw CVE-2024-21182 to its KEV catalog, giving federal agencies until June 4 to patch exposed ...
The Hacker News

⚡ Weekly Recap: New Linux Flaw, PAN-OS Exploit, AI-Powered Attacks, OAuth Phishing and More

Your Monday cybersecurity recap covers the latest digital threats, exposed weaknesses, active attacks, and security stories ...
The Hindu

In call with PM Modi, Iran President proposes West Asia security framework; seeks India’s role as BRICS chair to halt hostilities

Mr. Pezeshkian told Mr. Modi that there should be ‌guarantees to prevent a recurrence of such “aggression” in the future. He also called on the ‌BRICS bloc of major emerging economies to play an ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...