The Hacker News

Russian APT28 Runs Credential-Stealing Campaign Targeting Energy and Policy Organizations

Russian-linked APT28 ran credential-harvesting attacks in 2025 using fake Microsoft, Google, and VPN login pages, PDF lures, ...
SecurityWeek

Critical Vulnerability Patched in jsPDF

A jsPDF vulnerability tracked as CVE-2025-68428 could allow attackers to read arbitrary files, exposing configurations and ...
IEEE

Automated Penetration Testing Architecture Using Metasploit and OWASP ZAP for Web Applications

Abstract: This research study introduces an innovative approach to fortify web application security through the utilization of automated penetration testing architecture. While leveraging the robust ...