Attack of the killer script kiddies
…And organizations will need to build out secure software and secure architecture for networks to avoid ending up in an endless cycle of patching. “You have to build more secure software in…
Search
All sources
bleepingcomputer.com
25
theregister.com
12
pcworld.com
11
phoronix.com
11
neowin.net
8
androidauthority.com
8
techradar.com
7
notebookcheck.net
4
intel.com
3
theverge.com
3
hothardware.com
3
anthropic.com
3
Videos
More videos
This Linux Bug Gives Attackers Root
Before You Trust Another Self-Hosted App, Watch This
Dirty Frag Won't Be The Last Exploit
MechaCon: PS2s Unbreakable Gatekeeper ...Until it wasn't
CopyFail Compromises The Last 9 Years Of Linux Distros
5 Critical UniFi CVEs and How to Avoid the Risk
Update Synology ASAP - CVE-2026-24061
HW News - Everyone Hates AI, NVIDIA's Vibecoded Drivers, RAM Companies Pull Debt
Manjaro trouble, Germany mandates open formats, Google destroys sideloading - Linux Weekly News
The Linux Uptime Obsession (Stop Bragging About This)
My 2026 Homelab Tour (Rack + Servers + Network + Storage)
Top stories
Daybreak is OpenAI's response to Anthropic's Claude Mythos - Engadget
…5 with Trusted Access for Cyber for most defensive security workflows, including "secure code review, vulnerability triage, malware analysis, detection engineering and patch validation." It will also rely on GPT-5.5…
Linux Driver Posted For Intel Silicon Security Engine Interface "ISSEI"
…Intel software engineer Alexander Usyskin posted today the patch series providing the initial Linux kernel plumbing around the Intel Silicon Security Engine Interface. The Intel Security Engine has played a role in…
New Gogs zero-day flaw lets hackers get remote code execution
…The researcher reported the security flaw to the Gogs maintainers on March 17, but they have yet to provide a patch or respond to further requests for a status update, despite acknowledging…
Discussions and forums
Vaultwarden 1.36.0 patches vulnerabilities
Security fixes This release contains security fixes for the following advisories. We strongly advice to update as soon as possible. SSO Login CSRF - GHSA-pfp2-jhgq-6hg5, GHSA-w6h6-8r66-hcv7 User/Organization Enumeration …
Patch your servers, peeps, new Linux kernel vulnerability just dropped
CopyFail just dropped, it's a new Linux kernel vulnerability that gives attackers root privileges. https://arstechnica.com/security/2026/04/as-the-most-severe-linux-threat-in-years-surfaces-the-world-scrambles/ Debian ha…
NGINX CVE-2026-42945 (ngx_http_rewrite_module) — patched boundary is 1.30.1 / 1.31.0
Disclosure: I work on Forkline, which maintains a fork of the retired Kubernetes ingress-nginx controller. NGINX published a security advisory for ngx_http_rewrite_module. The affected versions are NGINX Open Source belo…
Speed Matters: Why AI Software Vulnerability Exploitation is going be bad
I co-founded a successful security company close to the Mythos ecosystem and have spoken with participants in the know and I am deeply concerned. We, collectively, have answers for some but not all of the problems ahead …
13
5
What do you do with your old PCs with no Windows 11 support?
I often think about this question at the moment. Windows 10 ESU for private users lasts until October in Europe. I have two PCs with acceptable specs even today. A CAD-PC from 2015 and a gaming-PC from 2016 with a GTX107…
Introducing CodeMender: an AI agent for code security
…CodeMender helps solve this problem by taking a comprehensive approach to code security that’s both reactive, instantly patching new vulnerabilities, and proactive, rewriting and securing existing code and eliminating entire classes…
Windows 11: May 2026 Patch Tuesday is live
…Microsoft typically begins deploying Patch Tuesday updates at around 1:00 PM ET. The security side of May's update arrives at a critical moment. Today, May 12, is the CISA deadline…
Critical Microsoft Vulnerabilities Doubled: From Exposure to Escalation
…a present reality almost overnight, and most lack the AI security posture management necessary for proper governance. Patch management matters, but patches fail to fix excessive privilege or enforce least privilege for…
Anthropic Project Glasswing Targets Safer AI Agents Before They Go Rogue
…With six actively exploited zero-days patched in a single Microsoft Patch Tuesday earlier this year, the threat environment speaks for itself. In the meantime, Anthropic has launched Claude Security, a public…
Project Glasswing: An initial update
…Progress on software security used to be limited by how quickly we could find new vulnerabilities. Now it’s limited by how quickly we can verify, disclose, and patch the large numbers…
Critical Windows Netlogon RCE flaw now exploited in attacks
…On Friday, Belgium's national cybersecurity authority (CCB) warned that attackers are now actively exploiting the CVE-2026-41089 security flaw in the wild and urged admins to immediately patch vulnerable servers…