The Hacker News

Hackers Exploit WordPress Themes to Power Next-Gen ClickFix Phishing Attacks

Researchers expose new WordPress malware and ClickFix phishing kits exploiting cache smuggling for stealth attacks.
Cyber Daily

CISA adds Zimbra Collaboration Suite bug to Known Exploited Vulnerability Catalog

The new vulnerability is CVE-2025-27915 is a cross-site scripting (XSS) vulnerability in the classic web client of the Zimbra Collaboration Suite thanks to insufficient sanitization of HTML content in ...