Attackers took over more than 400 packages in the Arch User Repository (AUR) this week. They rewrote their build scripts to install a credential stealer on any machine that built them. This malicious activity poses a significant security threat to users. The malware is a Rust binary specifically designed to harvest developer secrets. If it gains root access, it can also load an eBPF rootkit.
A 10-year-old authentication bypass vulnerability discovered in the phpBB forum software allows an attacker to log in as any user, including...
More than 400 packages in the Arch User Repository (AUR) are distributing a Linux rootkit and infostealer malware targeting credentials and access tokens.
Cybersecurity researchers have disclosed details of three now-patched security flaws impacting LangGraph. These include a critical vulnerability...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch an actively exploited Ivanti Sentry flaw...
Oracle is warning about a critical PeopleSoft Suite zero-day vulnerability tracked as CVE-2026-35273. This flaw allows unauthenticated remote code...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced a new Binding Operational Directive, 26-04, that prioritizes security...
Attackers are now targeting a recently patched maximum-severity flaw in Ivanti Sentry, enabling them to execute code with root privileges on...
Attackers are actively exploiting CVE-2026-5027, a high-severity path traversal vulnerability in the AI development platform Langflow, to write...
The disgruntled researcher released yet another PoC for a Windows Defender bug that allows for system takeover, showing no signs of abandoning...
Fortinet, Ivanti, and SAP have released security updates to address multiple critical security vulnerabilities. These flaws could potentially...
Microsoft has patched an actively exploited Exchange Server vulnerability that allows threat actors to execute arbitrary JavaScript code in...
ServiceNow has issued a warning regarding a security incident. Unknown threat actors exploited a critical flaw to gain deeper, unauthorized access...
Cybersecurity researchers have flagged half a dozen vulnerabilities in protobuf.js, a JavaScript and TypeScript implementation of Protocol Buffers...
Voluminous patch updates could soon be the norm, as artificial intelligence accelerates the speed and scale of vulnerability discovery.
ServiceNow is warning about a security incident after attackers exploited an unauthenticated access flaw through a vulnerable API endpoint,...
Anthropic's Mythos Preview was highly effective at finding vulnerability candidates, especially when analyzing source code. XBOW explores how the...
Microsoft removed 73 repositories across its Azure, microsoft, Azure-Samples, and MicrosoftDocs organizations on GitHub, disrupting continuous...
Two separate campaigns target CVE-2025-8088, fixed last July, to conduct data theft and cyberespionage against military and government targets in Ukraine.
Veeam has released security updates to patch a critical Backup & Replication security flaw that can be exploited to gain remote code execution...
CISA has ordered U.S. government agencies to secure their Check Point Remote Access VPN and Mobile Access deployments against a critical...
Google has released emergency updates to patch another Chrome zero-day vulnerability that has been exploited in the wild, the fifth such flaw...
New variants of the NFCShare Android malware are being distributed as fake updates for legitimate banking apps hosted on GitHub.
Hackers compromised 19 packages on the PyPI, collectively downloaded hundreds of thousands of times. This new Shai-Hulud supply-chain attack...
Israeli cybersecurity company Check Point has released security updates to patch a critical flaw affecting Remote Access VPN and Mobile Access...
A new variant of the Gafgyt botnet called C0XMO is targeting DD-WRT router firmware and can move to other device types with various CPU architectures.
Hackers are actively exploiting a critical vulnerability (CVE-2026-3300) in the Everest Forms Pro plugin, which lets them take complete control of...
CISA warned today that hackers are now actively exploiting a recently patched high-severity SolarWinds Serv-U flaw to crash servers.
A Chinese espionage group tracked as UNC5221 has been accessing Microsoft 365 environments using the Brickstorm backdoor and previously...
Threat actors are actively exploiting a critical security flaw in Everest Forms Pro. This WordPress plugin, with about 4,000 active installations,...
Security researchers and the FBI are warning that a wave of FIFA-themed fraud is already hitting World Cup 2026 fans, days before the June 11...
