Apple's iOS 26.5 Update Patches More Than 50 Security Flaws
The iOS 26.5 and iPadOS 26.5 updates Apple released today address more than 50 security vulnerabilities, which means it's worth updating soon if you haven't done so already…
Search
All sources
bleepingcomputer.com
42
theregister.com
13
pcworld.com
11
theverge.com
7
hothardware.com
5
tomshardware.com
4
arstechnica.com
4
androidauthority.com
4
engadget.com
3
macrumors.com
3
neowin.net
3
techradar.com
3
Videos
More videos
This Linux Bug Gives Attackers Root
A Vulnerability to Hack The World - CVE-2023-4863
AI Is Hacking Everything Now...
An initiative to secure the world's software | Project Glasswing
Sorry Windows 10 Users...
Everyone's getting hacked
Ubuntu under attack, Big flaw affects all Linux distros, Linux beats Windows - Linux Weekly News
Security researchers broke into a MediaTek-powered Nothing phone in just 45 seconds
…This isn't the first time Ledger's research group has uncovered security weaknesses in MediaTek hardware. However, it’s unclear if the vulnerability has been exploited by attackers and its potential…
Anthropic rolls out its codebase-scanning security tool for businesses.
…model that can identify and exploit vulnerabilities across operating systems and web browsers. [Image: https://platform.theverge.com/wp-content/uploads/sites/2/2026/04/claude-security.png?quality=90&strip=all]
Hackers bypass SonicWall VPN MFA due to incomplete patching
…Hackers used AI to develop zero-day exploit for web admin tool Actively Exploited Authentication Bypass Initial Access Broker MFA Ransomware SonicWall SSL VPN Vulnerability Bill Toulas Bill Toulas is a tech…
Top stories
Microsoft is threatening legal action for disclosing exploits
4d agoAnother major Linux security flaw revealed — nine-year old issue could spell disaster for users
1w agoMillions of Chrome and Edge Users Exposed To Alarming Exploit by Google Security Blunder
1w agoMicrosoft patches several zero-day vulnerabilities with emergency updates
1w agoGoogle announces its first-ever discovery of a zero-day exploit made with AI - Engadget
…Google didn't reveal the bad actors either, but hinted at those associated with China and North Korea having shown "significant interest" in using AI for exploiting security vulnerabilities. With how fast…
A year of open source vulnerability trends: CVEs, advisories, and malware
…Build agentic AI security skills with the GitHub Secure Code Game Learn to find and exploit real-world agentic AI vulnerabilities through five progressive challenges in this free, open source game that…
VS Code zero-day lets hackers steal GitHub tokens in one click
…Gatlan June 3, 2026 02:50 AM A security researcher has released exploit code for a Visual Studio Code (VS Code) zero-day vulnerability that allows attackers to steal GitHub authentication tokens…
Discussions and forums
Speed Matters: Why AI Software Vulnerability Exploitation is going be bad
I co-founded a successful security company close to the Mythos ecosystem and have spoken with participants in the know and I am deeply concerned. We, collectively, have answers for some but not all of the problems ahead …
13
5
The compression of the exploit timeline: Why n-day gaps and 90-day embargoes are failing in practice.
The traditional vulnerability disclosure timeline relies on a fundamental assumption: exploit development and vulnerability discovery take time. Over the last 12 months the integration of LLMs into offensive tooling has …
Microsoft vs Chaotic Eclipse: three zero-days now actively exploited
This one has been building for a month and it came to a head this week. A researcher going by Chaotic Eclipse has released six Windows zero-days publicly over the past several weeks, covering Defender, BitLocker, and Win…
Show HN: HoneyLabs – Public honeypot threat Intel feed and MCP server
I've been running a small fleet of honeypots for about a year. They get hit by a mix of research scanners (Censys, Shadowserver, etc.), old worms, and a bump of CVE probes the day a new Nuclei template ships. The data wa…
4
2
Hackers exploit FortiClient EMS flaw to push infostealer malware
Hackers exploit FortiClient EMS flaw to push infostealer malware By Bill Toulas May 28, 2026 01:25 PM Hackers are exploiting an authentication bypass vulnerability (CVE-2026-35616) in FortiClient Enterprise Management…
Critical vm2 sandbox bug lets attackers execute code on hosts
…The security issue is tracked as CVE-2026-26956 and has been confirmed to impact vm2 version 3.10.4, although earlier releases may also be vulnerable. Proof-of-concept (PoC) exploit…
Lightning-fast exploits mean patch fast, says Cisco Talos
…on security teams around the world, in part thanks to attackers' use of artificial intelligence. Talos was shocked by how quickly criminals have been moving to exploit newly discovered vulnerabilities, pointing to…