The libssh2 library, which is widely used, contains a critical security vulnerability. A published proof-of-concept exploit ...
OS 26.5.2 security update arrives weeks early as Apple adapts to AI tools that compress vulnerability discovery into hours.
A Microsoft Defender vulnerability tracked as BlueHammer and CVE-2026-33825 is being exploited in ransomware attacks ...
Microsoft is trying to fix the RoguePlanet zero-day vulnerability impacting Defender on Windows 11 and Windows 10.
Threat actors have started exploiting CVE-2026-46817, a critical-severity vulnerability in Oracle E-Business Suite’s Payments ...
When Ivanti disclosed critical flaws in its Connect Secure VPN gateway in January 2024, attackers had working exploits circulating within roughly 24 hours. By the time most IT teams scheduled a patch ...
Researchers have analyzed a high-severity vulnerability in Linux that’s able to escalate untrusted users to root by exploiting a bug you don’t often see: a single errant character inside the kernel.
A threat actor started exploiting a severe vulnerability in Cisco products at least two months before the flaw was disclosed, ...
Security research firm Paradigm Shift today published details of a new BootROM vulnerability affecting Apple's A12 and A13 ...
Last Tuesday, Microsoft patched a vulnerability it rated as max critical in its M365 Copilot AI platform. On Monday, the researchers who discovered the vulnerability and reported it to Microsoft ...
What happened Threat actors are actively exploiting an unauthenticated information disclosure vulnerability in the Gravity SMTP WordPress plugin, which is installed on more than 100,000 WordPress ...
In a new proof-of-concept, endpoint security provider Morphisec showed that the Exploit Prediction Scoring System (EPSS), one of the most widely used frameworks for assessing vulnerability exploits, ...