ALERT - WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately

THN Daily Updates WEBINAR -- AI's New Attack Surface: Why Identity Is the Last Line of Defense Attacks are evolving, but your defenses can too--learn how to mitigate risk and optimize identity security with Okta. Download Now Sponsored LATEST NEWS Aug 11, 2025 6 Lessons Learned: Focusing Security Where Business Value Lives The Evolution of Exposure Management Most security teams have a good sense of what's critical in their environment. What's harder to pin down is what's business-critical. These are the assets that support the processes ... Read More WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately The maintainers of the WinRAR file archiving utility have released an update to address an actively exploited zero-day vulnerability. Tracked as CVE-2025-8088 (CVSS score: 8.8), the issue has been described as a case of... Read More Security from Code to Cloud: IaC Best Practices Cloud misconfigurations don't wait. Neither should you. Fix IaC misconfigurations at the source with this best practices guide. Read More New Win-DDoS Flaws Let Attackers Turn Public Domain Controllers into DDoS Botnet via RPC, LDAP A novel attack technique could be weaponized to rope thousands of public domain controllers (DCs) around the world to create a malicious botnet and use it to conduct powerful distributed denial-of-service (DDoS) att... Read More Researchers Detail Windows EPM Poisoning Exploit Chain Leading to Domain Privilege Escalation Cybersecurity researchers have presented new findings related to a now-patched security issue in Microsoft's Windows Remote Procedure Call (RPC) communication protocol that could be abused by an attacker to conduct spoo... Read More The Second Layer of Salesforce Security Many Teams Miss Automated tools give you visibility. Adversarial testing gives you clarity. In Salesforce environments, you need both. Read More Linux-Based Lenovo Webcams' Flaw Can Be Remotely Exploited for BadUSB Attacks Cybersecurity researchers have disclosed vulnerabilities in select model webcams from Lenovo that could turn them into BadUSB attack devices. "This allows remote attackers to inject keystrokes covertly and launch attack... Read More Researchers Reveal ReVault Attack Targeting Dell ControlVault3 Firmware in 100+ Laptop Models Cybersecurity researchers have uncovered multiple security flaws in Dell's ControlVault3 firmware and its associated Windows APIs that could have been abused by attackers to bypass Windows login, extract cryptographic k... Read More WEBINAR -- AI's New Attack Surface: Why Identity Is the Last Line of Defense Attacks are evolving, but your defenses can too--learn how to mitigate risk and optimize identity security with Okta. Download Now Sponsored This email was sent to sikubaycom.s3cr3tz@blogger.com. You are receiving this newsletter because you opted-in to receive relevant communications from THN. To manage your email newsletter preferences, please click here. Contact THN: info@thehackernews.com Unsubscribe THN | K.P BLock, Pitampura, Delhi