This Linux Bug Gives Attackers Root
A Vulnerability to Hack The World - CVE-2023-4863
AI Is Hacking Everything Now...
An initiative to secure the world's software | Project Glasswing
Sorry Windows 10 Users...
Everyone's getting hacked
Ubuntu under attack, Big flaw affects all Linux distros, Linux beats Windows - Linux Weekly News
…severity vulnerability stems from an OS command injection weakness. The second Sentry security flaw patched on Tuesday (tracked as CVE-2026-10523 ) is a critical authentication bypass that can be exploited remotely…
…Cybersecurity and Infrastructure Security Agency (CISA) added the CVE-2026-20182 flaw to its Known Exploited Vulnerabilities Catalog on May 14 and ordered federal agencies to secure affected devices within three days…
…CVE-2026-10520 vulnerability is now actively exploited in attacks and added it to its Known Exploited Vulnerabilities Catalog (KEV), ordering Federal Civilian Executive Branch (FCEB) agencies to secure their Ivanti Sentry…
…Cybersecurity and Infrastructure Security Agency (CISA) also added a critical command injection flaw ( CVE-2010-5330 ) in Ubiquiti AirOS to its catalog of actively exploited vulnerabilities and ordered federal agencies to secure…
…Cybersecurity and Infrastructure Security Agency (CISA) also added CVE-2026-34926 to its list of actively exploited vulnerabilities and ordered federal agencies to patch their devices by June 4. "These types of…
Google fixes one actively exploited Android zero-day, 124 flaws By Sergiu Gatlan June 2, 2026 07:10 AM Google has released the June 2026 Android security patches to address 124 vulnerabilities…
…Internet security watchdog Shadowserver just over 3,100 , but there is no information on how many have already been patched. Days after SolarWinds addressed the vulnerability, CISA flagged it as exploited in…
I co-founded a successful security company close to the Mythos ecosystem and have spoken with participants in the know and I am deeply concerned. We, collectively, have answers for some but not all of the problems ahead …
The traditional vulnerability disclosure timeline relies on a fundamental assumption: exploit development and vulnerability discovery take time. Over the last 12 months the integration of LLMs into offensive tooling has …
This one has been building for a month and it came to a head this week. A researcher going by Chaotic Eclipse has released six Windows zero-days publicly over the past several weeks, covering Defender, BitLocker, and Win…
I've been running a small fleet of honeypots for about a year. They get hit by a mix of research scanners (Censys, Shadowserver, etc.), old worms, and a bump of CVE probes the day a new Nuclei template ships. The data wa…
…The reason is that exploitation of this vulnerability could result in an attacker elevating privileges to root." Cisco's Product Security Incident Response Team (PSIRT) is aware of publicly available proof-of…
…Over the past five years, CISA has added 20 Microsoft Exchange Server vulnerabilities to its list of exploited security flaws, with ransomware gangs having exploited 14 of them. In October, weeks after…
…Exploiting this security vulnerability grants the attacker system privileges. The DoS vulnerability CVE-2026-45498 in Microsoft Defender is also being exploited. The RCE vulnerability CVE-2026-45584, however, isn't yet…