News

The Hacker News2d
Chinese Hackers Exploit SAP RCE Flaw CVE-2025-31324, Deploy Golang-Based SuperShell
China-based hackers exploited SAP flaw CVE-2025-31324 since April 29, impacting global industries via web shells.
23 Apple AirPlay Vulnerabilities ‘Could Have Far-Reaching Impacts’
The so-called “AirBorne” flaws enable zero-click attacks and device takeover on local networks.
Apache Parquet exploit tool detect servers vulnerable to critical flaw
A proof-of-concept exploit tool has been publicly released for a maximum severity Apache Parquet vulnerability, tracked as ...
The Hacker News5d
Wormable AirPlay Flaws Enable Zero-Click RCE on Apple Devices via Public Wi-Fi
The vulnerabilities, in a nutshell, could enable zero- or one-click remote code execution (RCE), access control list (ACL) ...
Hosted on MSN18d
Russian zero-day seller is offering up to $4 million for Telegram exploits
Zero-click exploits don’t require any interaction from the target, as opposed to a phishing attack, for example, making these bugs more valuable. A zero-click, RCE zero-day is essentially the ...
Bleeping Computer22d
Critical Erlang/OTP SSH RCE bug now has public exploits, patch now
Public exploits are now available for a critical ... are targeted by nation state APTs such as Volt and Salt Typhoon for example." Girnus refers to the Chinese state-sponsored hacking groups ...
Urgent Apple AirPlay Security Alert Sounds For Billions Of Devices
The AirBorne security vulnerabilities in Apple's AirPlay SDK and devices could let a hacker take total control.
Computing1y
VMware warns admins of public exploit for vRealize RCE flaw
Identified as CVE-2023-34051 in a recent advisory, the high-severity remote code execution (RCE) flaw (CVSS score ... along with a proof-of-concept (PoC) exploit and a list of indicators of ...