RVTools Official Site Hacked to Deliver Bumblebee Malware via Trojanized Installer

Ransomware Gangs Use Skitnet Malware for Stealthy Data Theft and Remote Access

Why CTEM is the Winning Bet for CISOs in 2025

Firefox Patches 2 Zero-Days Exploited at Pwn2Own Berlin with $100K in Rewards

⚡ Weekly Recap: Zero-Day Exploits, Insider Threats, APT Targeting, Botnets and More

A set of five critical security shortcomings have been disclosed in the Ingress NGINX Controller for Kubernetes that could result in unauthenticated remote code execution, putting over 6,500 clusters at immediate risk by exposing the component to the public internet.
The vulnerabilities (CVE-2025-24513, CVE-2025-24514, CVE-2025-1097, CVE-2025-1098, and CVE-2025-1974 ), assigned a CVSS score of

Headline

Critical Ingress NGINX Controller Vulnerability Allows RCE Without Authentication

The Hacker News: Latest News