The Hacker News

Web Server Exploits and Mimikatz Used in Attacks Targeting Asian Critical Infrastructure

New hacking cluster exploits web servers and Mimikatz to infiltrate Asian infrastructure for long-term espionage in aviation, ...

SQLi flaw in Elementor Ally plugin impacts 250k+ WordPress sites

An SQL injection vulnerability in Ally, a WordPress plugin from Elementor for web accessibility and usability with more than 400,000 installations, could be exploited to steal sensitive data without ...
Security Boulevard

March 2026 Patch Tuesday fixes two zero-day vulnerabilities

Microsoft patched 79 security vulnerabilities this month, including bugs that could let attackers escalate privileges or crash critical services.
ITWire

FortiGate Edge Intrusions: Stolen Service Accounts Lead to Rogue Workstations and Deep AD Compromise

Throughout early 2026, SentinelOne’s Digital Forensics & Incident Response (DFIR) team has responded to several incidents where FortiGate Next-Generation Firewall (NGFW) appliances have been ...
The Hacker News

Critical n8n Flaws Allow Remote Code Execution and Exposure of Stored Credentials

Two critical n8n flaws (CVSS 9.4, 9.5) enable RCE via expression sandbox escape and public forms, risking credential exposure ...
eWeek

Adobe Launches AI Assistant in Photoshop Public Beta

Yesterday, Adobe's new AI Assistant for Photoshop entered public beta on the web and mobile apps (sorry, desktop loyalists, you'll ...
Redmondmag.com

Microsoft Pushes Copilot Into Action Mode With Cowork, Adds AI Security and Model Catalog Upgrades

Microsoft rolled out a trio of AI updates this week, spanning Microsoft 365 Copilot, Security Copilot and Microsoft Foundry.