A private researcher posts proof-of-concept code for an unpatched code execution hole in RealPlayer and Helix Player.
Windows Defender zero-day CVE-2026-50656 — known as RoguePlanet — has been patched by Microsoft 29 days after researcher ...
Several AI coding assistants were tricked into facilitating developer machine hacking via an attack technique that has been ...
A China-linked threat cluster has been exploiting vulnerable Roundcube servers at U.S. and Canadian universities to steal ...
Proofpoint says UNK_MassTraction exploited patched Roundcube flaws to target U.S. and Canadian university mail servers.
Fake CVE exploit repos pull frint and skytext packages to steal researcher credentials, with servers still live as of July 1.
Infosecurity spoke with the researcher who dumped over 30 proof-of-concept exploits without disclosing the vulnerabilities ...
CISA added a Microsoft SharePoint RCE flaw to its exploited bugs catalog after confirming active attacks on unpatched servers ...
Multiple weaponized proof-of-concept (PoC) exploits on GitHub delivered a Python-based remote access trojan (RAT) called ChocoPoC that can execute commands and steal sensitive data. However, ChocoPoC ...
A set of 13 exploits were released by the Shadow Brokers hacker group, with Microsoft providing a rapid response, downplaying ...
OS 26.5.2 security update arrives weeks early as Apple adapts to AI tools that compress vulnerability discovery into hours.
The critical libssh2 CVE-2026-55200 flaw inverts SSH security: the remote server attacks the connecting client, no ...