The Hacker News

Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access

Cisco patches critical CVSS 10.0 flaw in Secure Workload — unauthenticated attackers can steal data & escalate privileges ...
SDxCentral

AI, Machine Learning Are the New Battleground for API Exploits, According to New Wallarm Report

Findings uncover rapid acceleration in API vulnerabilities in new AI-related dev and infrastructure products like NVIDIA’s Triton Inference Server, and API incidents that impact major brands like ...

Exploit released for new PinTheft Arch Linux root escalation flaw

PinTheft, a recently patched Linux privilege escalation vulnerability, now has a publicly available proof-of-concept (PoC) ...
Threat Post

Cryptomining Attack Exploits Docker API Misconfiguration Since 2019

Campaign exploits misconfigured Docker APIs to gain network entry and ultimately sets up a backdoor on compromised hosts to mine cryptocurrency. Hackers behind a cryptomining campaign have managed to ...
Dark Reading

Researchers Pioneer PoC Exploit for NSA-Reported Bug in Windows CryptoAPI

Researchers have developed a proof-of-concept (PoC) exploit for a public x.509 certificate-spoofing vulnerability in the Windows CryptoAPI that the NSA and the National Cyber Security Center (NCSC) ...