The Hacker News

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

CISA reports active exploitation of GeoServer XXE flaw CVE-2025-58360 and directs immediate updates to secure affected ...

MITRE shares 2025's top 25 most dangerous software weaknesses

MITRE has shared this year's top 25 list of the most dangerous software weaknesses behind over 39,000 security ...

GeminiJack Zero-Click Flaw Exposed Millions of Users in Google Workspace AI

Noma Labs uncovers GeminiJack, a zero-click flaw where hidden instructions in shared Workspace files could steer Gemini Enterprise and leak corporate data.