Latest Hacking News

Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses LHN offers the latest hacking news, penetration testing tools and cyber security courses for ethical hackers, penetration testers, IT security experts and essentially anyone interested in the cyber security world

  • libssh2 CVE-2026-55200 Shows Why Outbound SSH Is an Attack Surface
    by Rebecca Sutton on June 30, 2026 at 4:00 pm

    The critical libssh2 CVE-2026-55200 flaw inverts SSH security: the remote server attacks the connecting client, no credentials needed. A public PoC is out and the official patched release has not shipped. libssh2 CVE-2026-55200 Shows Why Outbound SSH Is an Attack Surface on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

  • Amazon Q’s MCP Flaw Is an Industry Warning: AI Tools Still Lack Workspace Trust Standards
    by Rebecca Sutton on June 30, 2026 at 7:35 am

    CVE-2026-12957 in Amazon Q is the third MCP auto-execution vulnerability in three AI coding tools. The pattern reveals a shared design failure, not just a single vendor mistake. Amazon Q’s MCP Flaw Is an Industry Warning: AI Tools Still Lack Workspace Trust Standards on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

  • Programming Languages for Cyber Security: What the Tools Actually Use
    by Rebecca Sutton on June 28, 2026 at 7:07 am

    Security tooling is not written in a single language. Python powers most automation. C sits at the exploit layer. PowerShell dominates Windows incident response. This guide traces back from the tools to the languages, so you learn what is actually needed. Programming Languages for Cyber Security: What the Tools Actually Use on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

  • What Is a Buffer Overflow? The Bug That Keeps Driving Critical CVEs
    by Rebecca Sutton on June 28, 2026 at 7:00 am

    Buffer overflow vulnerabilities have driven remote code execution for decades and keep appearing in critical network infrastructure. This guide explains the mechanics, covers modern exploitation techniques like ROP, and details what actually reduces risk. What Is a Buffer Overflow? The Bug That Keeps Driving Critical CVEs on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

  • DirtyClone Is the Fourth ‘Dirty’ Linux Kernel Exploit in Six Weeks
    by Rebecca Sutton on June 28, 2026 at 6:43 am

    CVE-2026-43503 DirtyClone is the fourth DirtyFrag-family privilege escalation in six weeks. JFrog’s public PoC raises the urgency. More variants may still be in the attack surface. DirtyClone Is the Fourth ‘Dirty’ Linux Kernel Exploit in Six Weeks on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

  • Linux Server Hardening: What to Do First and Why It Matters
    by Rebecca Sutton on June 28, 2026 at 6:41 am

    Most Linux server hardening guides list everything equally. This one ranks controls by when attackers hit them: SSH in the first 30 minutes, firewall within the hour, kernel parameters before production. Linux Server Hardening: What to Do First and Why It Matters on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

  • GPT-5.6 Sol’s Launch: METR’s Evaluation Gaming Finding Matters More Than the Restrictions
    by Rebecca Sutton on June 28, 2026 at 6:13 am

    OpenAI says GPT-5.6 Sol’s cyber safeguards make it safe enough for restricted release. METR found it had the highest evaluation cheating rate of any publicly tested model. The second finding matters more. GPT-5.6 Sol’s Launch: METR’s Evaluation Gaming Finding Matters More Than the Restrictions on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

  • Gaslight macOS Malware Is a Warning Shot at the AI Security Stack
    by Rebecca Sutton on June 26, 2026 at 2:58 pm

    The Gaslight macOS malware from a North Korean cluster doesn’t bypass AI analysis platforms yet, but its 38-message prompt injection cascade makes the direction of travel clear. Here’s why this matters beyond the sample itself. Gaslight macOS Malware Is a Warning Shot at the AI Security Stack on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

  • Cisco Unified CM SSRF Flaw Is Being Exploited to Drop Webshells
    by Rebecca Sutton on June 25, 2026 at 4:03 pm

    CVE-2026-20230, an SSRF in Cisco Unified CM’s WebDialer component, is being actively exploited via Tor to chain file writes into persistent webshells. Patches exist for release 14; a COP patch covers release 15 until September. Cisco Unified CM SSRF Flaw Is Being Exploited to Drop Webshells on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

  • VPN Internals Explained: Protocols, Leaks, and What the Kill Switch Actually Does
    by Rebecca Sutton on June 24, 2026 at 8:22 am

    A technical breakdown of how a VPN works: packet handling, protocol comparisons, DNS and WebRTC leak vectors, kill switch limitations, and why the enterprise VPN era is ending. VPN Internals Explained: Protocols, Leaks, and What the Kill Switch Actually Does on Latest Hacking News | Cyber Security News, Hacking Tools and Penetration Testing Courses.

Share Websitecyber
We are an ethical website cyber security team and we perform security assessments to protect our clients.