Search

neowin.net › news

Microsoft, CISA warn on flaw affecting miilions of systems running major Linux distros

… Regardless, Microsoft has released detection signatures through Microsoft Defender XDR to help organizations identify exploitation attempts. Microsoft has urged security teams to patch affected kernels as soon as vendor updates become available. …

May 4, 2026 · Sayan Sen

tomshardware.com › tech-industry › cyber-security

Standard 90-day vulnerability disclosure policy is likely dead thanks to AI, expert warns that AI can weaponize patches in 30 minutes — LLM-assisted bug-hunting ushers in a new cyberworld order

… The vast majority of security exploits are rooted in specific bad programming habits, something a bot excels at noticing quickly and repeatedly. …

May 12, 2026 · Bruno Ferreira

techcrunch.com › 2026 › 05 › …

US government warns of severe CopyFail bug affecting major versions of Linux | TechCrunch

A severe security vulnerability affecting almost every version of the Linux operating system has caught defenders off-guard and scrambling to patch after security researchers publicly released exploit code that allows attackers to take complete control of vulnerable systems. …

May 4, 2026 · Zack Whittaker

theregister.com › security › 2026 › …

Ransomware scum, other crims exploit 4 old Microsoft bugs

… The latter had been exploited as a zero-day for months , and Adobe finally released a patch over the weekend. ® security patches patch management microsoft cybersecurity and infrastructure security agency cybercrime

Apr 13, 2026 · Jessica Lyons

Top stories

bleepingcomputer.com

Trend Micro warns of Apex One zero-day exploited in the wild

5d ago

bleepingcomputer.com

Microsoft warns of new Defender zero-days exploited in attacks

6d ago

bleepingcomputer.com

Exploit available for new DirtyDecrypt Linux root escalation flaw

1w ago

tomsguide.com

Do you use Microsoft Exchange? Hackers are actively exploiting a new zero-day flaw

1w ago

theregister.com › security › 2026 › …

Snoops plant info-stealing malware on iPhones, Google warns

Research State snoops and spyware vendors planting info-stealing malware on iPhones, Google warns Darksword is the second iOS exploit chain in a month A new exploit kit targeting iPhone users and stealing their sensitive data is being abused by "multiple" spyware vendors and suspected nation-state … …

Mar 18, 2026 · Jessica Lyons

blog.google › security

Advancing Protection in Chrome on Android

… The optimizing compilers in V8 make certain websites run faster, however they historically also have been a source of known exploitation of Chrome. Of all the patched security bugs in V8 with known exploitation, disabling the optimizers would have mitigated ~50%. …

Jul 8, 2025 · David Adrian

tomshardware.com › software › linux

CISA flags actively exploited ‘Copy Fail’ Linux kernel flaw enabling root takeover across major distros — unpatched systems may remain vulnerable to attack

… Cybersecurity and Infrastructure Security Agency CISA added a newly disclosed Linux vulnerability, dubbed “Copy Fail,” to its Known Exploited Vulnerabilities catalog on May 1st, warning that the flaw, tracked as CVE-2026-31431, is already being used in active attacks and urging rapid patching acros… …

May 4, 2026 · Etiido Uko

pcworld.com › article › 3142563

Unpatched Windows zero-day from 2020 gives hackers full system access

A security researcher by the name of Nightmare-Eclipse also known as Chaotic Eclipse has warned of a critical security vulnerability in Windows 11 that could be exploited by hackers to gain full access to any system. …

May 18, 2026 · By Mikael Markander

theregister.com › security › 2026 › …

Google: Spyware vendors, China-linked spies led 0-day abuse

… "In particular, PRC-nexus espionage groups exploited the highest number of enterprise tech zero-days we attributed, in large part due to these groups' focus on edge device exploitation and broader security and networking devices," Sadowski said. …

Mar 5, 2026 · Jessica Lyons

extremetech.com › internet

Russia Behind Recent TP-Link Router Hacking, According to UK's Cyber Security Agency

… They've been targeting security exploits in small and home-office routers and changing their DNS settings to redirect victims to malicious websites they control, to further exploit targets and distribute damaging malware. …

Apr 9, 2026 · Jon Martindale