CVE-2026-48907 in the Joomla JCE plugin lets unauthenticated attackers drop PHP web shells with a single crafted request.

Security researchers have uncovered a new, unpatchable hardware exploit affecting older iPhones and iPads. Here’s why you don ...

Researchers at Paradigm Shift have published the technical details of usbliter8, a new unpatchable iPhone BootROM ...

Solana-based decentralized exchange Raydium will repay the funds swiped in the $1.34 million exploit using its treasury.

Vulnerabilities in FortiSandbox are currently targeted by internet attacks. Patches to secure them have been available since ...

The real leap in Anthropic's and OpenAI's latest cyber-capable models isn't that they can hack in entirely new ways, but that they can do it faster, at greater scale, and increasingly turn ...

Disrupts AI-powered exploit-driven attacks earlier in the attack chain Enables security teams to prioritize remediation based on real attacker activity—not severity scores Automatically translates ...

With the popularity of the Netflix series Zero Day among cybersecurity experts and others, the show has evolved into an interesting reference for comprehending the far-reaching effects of zero-day ...

Another day, another hacker trying to steal your data. Researchers at Oligo Security reveal that flaws are being exploited to hijack Apple mobile devices and smart home gear. This new set of ...

Threat actors are abusing AI tools in increasingly sophisticated ways, including exploit development and attack orchestration. Google today published new research tracking how adversaries leverage AI ...

A set of three distinct but related attacks, dubbed 'Clone2Leak,' can leak credentials by exploiting how Git and its credential helpers handle authentication requests. The attack can compromise ...