The Hacker News

CISA Flags Actively Exploited GeoServer XXE Flaw in Updated KEV Catalog

CISA reports active exploitation of GeoServer XXE flaw CVE-2025-58360 and directs immediate updates to secure affected ...
CSO Online

SAML authentication broken almost beyond repair

Multiple hacking techniques allow researchers to bypass XML signature validation while still presenting valid SAML ...
news-daily.com

Bill would restore $30M in tax revenue to Clayton County

Thursday, U.S. District 13 Rep. David Scott, D-Ga., introduced the Airport Revenue Clarity Act, a bill that will return $30 ...

Aadhaar misuse? mAadhaar's new tools help you see and selectively share

For most individuals, Aadhaar is used frequently, banking, EPFO updates, mobile SIM verification, e-KYC for investments, ...
KMA Radio

Women's College Basketball (12/10): Iowa State hands Iowa first loss

Iowa State handed Iowa their first loss while Iowa Western was an overtime winner and UNI, SWCC, Mizzou and K-State were also ...

‘We look ridiculous’: US government website removes fossil fuels as cause of global warming

The US Environmental Protection Agency (EPA) has removed any mention of fossil fuels – the main driver of global warming – ...
News8000

EPA eliminates mention of fossil fuels in website on warming's causes

The Environmental Protection Agency removed any mention of fossil fuels — the main driver of global warming — from its ...

Notepad++ updater installed malware

The updater for the open-source editor Notepad++ has installed malware on PCs. An update to Notepad++ v8.8.9 corrects this.
CSO Online

Hidden .NET HTTP proxy behavior can open RCE flaws in apps — a security issue Microsoft won’t fix

Researcher warns that many .NET applications might be vulnerable to arbitrary file writes because .NET’s HTTP client proxy ...
InfoWorld

Apache Tika hit by critical vulnerability thought to be patched months ago

CVE-2025-54988 is a weakness in the tika-parser-pdf-module used to process PDFs in Apache Tika from version 1.13 to and ...