Meta’s own AI was exploited to hijack Instagram accounts
…The attackers appeared to have targeted high-value usernames, like ones that are a single letter or word, such as “h” or “eggs.” Even Jane Manchun Wong, a security researcher and reverse…
Search
All sources
bleepingcomputer.com
43
theregister.com
14
theverge.com
9
tomshardware.com
8
hothardware.com
6
pcworld.com
6
androidauthority.com
4
arstechnica.com
4
techradar.com
3
engadget.com
3
appleinsider.com
3
9to5mac.com
3
Videos
More videos
This Linux Bug Gives Attackers Root
Dirty Frag Won't Be The Last Exploit
Sorry Windows 10 Users...
An initiative to secure the world's software | Project Glasswing
Microsoft Windows Agentic AI Malware
Firefox JIT Bug - Pwn2Own Documentary (Part 3)
AI Is Hacking Everything Now...
Intel again making chips for Apple? Googlebook + [UNNAMED] OS - Talking Heads Ep.432
A Vulnerability to Hack The World - CVE-2023-4863
MechaCon: PS2s Unbreakable Gatekeeper ...Until it wasn't
Top stories
Microsoft is threatening legal action for disclosing exploits
6d agoMicrosoft's GitHub bans security researcher who posted zero-day Windows exploits because company 'ruined their life' — expert claims action is vindictive and promises further retaliation
1w agoAI shrinks zero-day exploit time from a year to a single day, heading toward one minute — Zero-Day Clock warns security window has collapsed
1w agoAnother major Linux security flaw revealed — nine-year old issue could spell disaster for users
1w agoCritical Microsoft Vulnerabilities Doubled: From Exposure to Escalation
…Threat actors are not breaking down the front door anymore with brute force exploits. They are walking in, escalating quietly, and operating as trusted users, human and machine alike. If security programs…
Anthropic rolls out its codebase-scanning security tool for businesses.
…model that can identify and exploit vulnerabilities across operating systems and web browsers. [Image: https://platform.theverge.com/wp-content/uploads/sites/2/2026/04/claude-security.png?quality=90&strip=all]
Microsoft's massive Patch Tuesday: It's raining bugs
…It's raining bugs One CVE under attack, one already disclosed by angry bug hunter, and 163 more Attackers exploited a spoofing vulnerability in Microsoft SharePoint Server before Redmond issued a fix…
Discussions and forums
Microsoft's GitHub bans security researcher who posted zero-day Windows exploits because company "ruined their life" — expert claims action is vindictive and promises further retaliation
Microsoft's GitHub bans security researcher who posted zero-day Windows exploits because company "ruined their life" — expert claims action is vindictive and promises further retaliation
Speed Matters: Why AI Software Vulnerability Exploitation is going be bad
I co-founded a successful security company close to the Mythos ecosystem and have spoken with participants in the know and I am deeply concerned. We, collectively, have answers for some but not all of the problems ahead …
13
5
The compression of the exploit timeline: Why n-day gaps and 90-day embargoes are failing in practice.
The traditional vulnerability disclosure timeline relies on a fundamental assumption: exploit development and vulnerability discovery take time. Over the last 12 months the integration of LLMs into offensive tooling has …
Microsoft vs Chaotic Eclipse: three zero-days now actively exploited
This one has been building for a month and it came to a head this week. A researcher going by Chaotic Eclipse has released six Windows zero-days publicly over the past several weeks, covering Defender, BitLocker, and Win…
Tell HN: Compliance is not equal to Security
For over a decade, I’ve been doing bug bounty, security audits, and security consulting. And if there’s one thing I’ve seen repeatedly, it’s this:Most startups call a security engineer or hire a security agency only when…
1
1
Mozilla says Anthropic's Mythos Preview and other AI models helped it identify and ship 423 Firefox security bug fixes in April
…Typically, such an exploit chain would take weeks to identify and are notoriously difficult to spot using traditional fuzzing techniques. Of course, Mythos isn’t a silver bullet for cyber defense and…
Snoops plant info-stealing malware on iPhones, Google warns
…iOS exploit chain in a month A new exploit kit targeting iPhone users and stealing their sensitive data is being abused by "multiple" spyware vendors and suspected nation-state goons, security researchers…
Google reveals another exploit chain affecting outdated iPhones - 9to5Mac
…against malicious web content and other threats. As it turns out, the new Security post might be referring not just to Coruna but also to another exploit chain, which the Google Threat…
Hackers earn $1,298,250 for 47 zero-days at Pwn2Own Berlin 2026
…Windows 11 and Red Hat Enterprise Linux for Workstations again, and used a memory corruption bug to exploit VMware ESXi. After Pwn2Own ends, vendors have 90 days to release security patches before…
Hackers bypass SonicWall VPN MFA due to incomplete patching
…Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin Critical cPanel and WHM bug exploited as a zero-day, PoC now available Critical Nginx UI auth bypass flaw now actively exploited…
Google identifies first AI-developed zero-day exploit
…Why it almost worked, and why it did not The attackers planned a mass exploitation campaign, targeting the open-source tool at scale with the AI-generated exploit. GTIG's proactive counter…