Hackvolt — IT Security News, Cybersecurity & Research & Security Audits

TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign

NEWSMarch 28, 202606 mins

Proofpoint has disclosed details of a targeted email campaign in which threat actors with ties to Russia are leveraging the…

CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation

NEWSMarch 28, 202606 mins

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Friday added a critical security flaw impacting F5 BIG-IP Access Policy…

AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile Evasion

NEWSMarch 27, 202604 mins

Threat actors are using adversary-in-the-middle (AitM) phishing pages to seize control of TikTok for Business accounts in a new campaign,…

We Are At War

NEWSMarch 27, 2026028 mins

Rising geopolitical tensions are reflected (or in some cases preceded) by cyber operations, while technology itself has become politicized. Let’s…

Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware

NEWSMarch 27, 202605 mins

A pro-Ukrainian group called Bearlyfy has been attributed to more than 70 cyber attacks targeting Russian companies since it first…

LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks

NEWSMarch 27, 202605 mins

Cybersecurity researchers have disclosed three security vulnerabilities impacting LangChain and LangGraph that, if successfully exploited, could expose filesystem data, environment…

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

NEWSMarch 26, 202604 mins

Cybersecurity researchers have disclosed a vulnerability in Anthropic’s Claude Google Chrome Extension that could have been exploited to trigger malicious…

[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks

NEWSMarch 26, 202603 mins

Most teams have security tools in place. Alerts are firing, dashboards look clean, threat intel is flowing in. On the…

[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks

NEWSMarch 26, 202603 mins

Most teams have security tools in place. Alerts are firing, dashboards look clean, threat intel is flowing in. On the…

Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in New Mass Attacks

NEWSMarch 26, 202606 mins

The kernel exploit for two security vulnerabilities used in the recently uncovered Apple iOS exploit kit known as Coruna is…

Hackvolt — IT Security News

TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign

CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation

AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile Evasion

We Are At War

Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware

LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks

TA446 Deploys Leaked DarkSword iOS Exploit Kit in Targeted Spear-Phishing Campaign

CISA Adds CVE-2025-53521 to KEV After Active F5 BIG-IP APM Exploitation

AitM Phishing Targets TikTok Business Accounts Using Cloudflare Turnstile Evasion

We Are At War

Bearlyfy Hits 70+ Russian Firms with Custom GenieLocker Ransomware

LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks

[Webinar] Stop Guessing. Learn to Validate Your Defenses Against Real Attacks

Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in New Mass Attacks

Urgent: Cisco ASA Zero-Day Duo Under Attack; CISA Triggers Emergency Mitigation Directive

Grandstream GXP1600 VoIP Phones Exposed to Unauthenticated Remote Code Execution

APT41-Linked Silver Dragon Targets Governments Using Cobalt Strike and Google Drive C2

New Win-DDoS Flaws Let Attackers Turn Public Domain Controllers into DDoS Botnet via RPC, LDAP

CISA Warns of Two Malware Strains Exploiting Ivanti EPMM CVE-2025-4427 and CVE-2025-4428

MixShell Malware Delivered via Contact Forms Targets U.S. Supply Chain Manufacturers

North Korea-Linked Hackers Target Developers via Malicious VS Code Projects

Malicious Nx Packages in ‘s1ngularity’ Attack Leaked 2,349 GitHub, Cloud, and AI Credentials

You May Have Missed