HPE Issues Security Patch for StoreOnce Bug Allowing Remote Authentication Bypass

Fake DocuSign, Gitcode Sites Spread NetSupport RAT via Multi-Stage PowerShell Attack

Critical 10-Year-Old Roundcube Webmail Bug Allows Authenticated Users Run Malicious Code

Scattered Spider: Understanding Help Desk Scams and How to Defend Your Organization

Android Trojan Crocodilus Now Active in 8 Countries, Targeting Banks and Crypto Wallets

Qualcomm has shipped security updates to address three zero-day vulnerabilities that it said have been exploited in limited, targeted attacks in the wild.
The flaws in question, which were responsibly disclosed to the company by the Google Android Security team, are listed below -

CVE-2025-21479 and CVE-2025-21480 (CVSS score: 8.6) - Two incorrect authorization vulnerabilities in the Graphics

Headline

Qualcomm Fixes 3 Zero-Days Used in Targeted Android Attacks via Adreno GPU

The Hacker News: Latest News