The Hacker News

👀 Still pip installing and praying? Supply chain attacks are everywhere in Python: → YOLO package hacked → Critical vulns in base images → Malicious packages live on PyPI 🔥 Join the free webinar to secure your Python stack → https://lnkd.in/gER2CUhd

🚨 Over a year after the XZ Utils backdoor was exposed, 35 infected Docker images are still live on Docker Hub — some built on top of each other, quietly spreading the malware. They can let attackers bypass SSH auth & run root commands. Full story → https://lnkd.in/g_m86wY3

🚨 780+ malicious IPs just launched a coordinated brute-force attack on Fortinet SSL VPNs — shifting mid-campaign to hit FortiManager. Researchers warn this pattern often precedes a new CVE disclosure within weeks. Read → https://lnkd.in/gP6QV6bQ

⚠️ Two of the most dangerous hacker groups — ShinyHunters & Scattered Spider — are joining forces. They’ve hit Salesforce users worldwide, and signs show their next big target: banks & financial firms. Here’s why this alliance is bad news ↓ https://lnkd.in/gVqNuGuQ

🚨 Critical flaw in Erlang/OTP’s SSH (CVE-2025-32433) is being actively exploited — no credentials needed, full remote code execution possible. Targets? Mostly OT networks — healthcare, agriculture, media, and high-tech sectors hit hardest. Here’s why it’s a global threat ↓ https://lnkd.in/dJsS8sZy

🚨 Your browser is now your biggest insider threat. 🤖 GenAI prompts ⚠️ Risky extensions 💻 Unmanaged devices All leaking data in-session. 🥊 Enterprise Browser vs. Secure Extension — 9 brutal rounds. Who wins? → https://lnkd.in/gihP4FiA

Identity attacks are evolving, but are your IR playbooks keeping up? Join Push Security's Josh Gideon on August 13th & 14th as he dives into the new challenges facing incident responders in the world of cloud and SaaS identity attacks. Don't miss out on this step-by-step walkthrough of common identity investigation scenarios and how security teams are using browser telemetry to supercharge their security investigations. Register now: https://lnkd.in/g6VePV-4

🇷🇺 New Threat: Curly COMrades hacked govt & energy networks in Georgia & Moldova — stealing credentials & hiding for months. Their secret weapon? Hijacking Windows’ own components to run commands as SYSTEM… and no one notices. Find details here → https://lnkd.in/gPRt8Azf

New research by Pentera builds on Wiz’s IngressNightmare and reveals critical injection vulnerabilities in the widely used ingress-nginx Kubernetes controller. Pentera’s team uncovered additional attack vectors that exploit common configuration oversights - going beyond the four originally disclosed CVEs. These newly discovered injection points can allow attackers to bypass security controls, execute arbitrary code, and pivot deeper into Kubernetes clusters. Join experts live on August 20 at AM ET for a technical deep dive into the full scope of these vulnerabilities and their real-world impact 👉 https://lnkd.in/gwrFNekD Read the full research report 👉 https://lnkd.in/gH6tsVYg

🚨 WARNING: Dutch cyber watchdog confirms: a Citrix zero-day (CVE-2025-6543) was exploited for months before disclosure—hitting critical orgs, leaving hidden web shells, and erasing traces. Patches are out. If you run NetScaler, act now. Full story → https://lnkd.in/gHj8sibU