THORChain has remained offline for three weeks since it experienced a $10.7 million vault exploit. THORChain initially ...

Cisco warns of public PoC targeting CVE-2026-20230, a high-severity SSRF vulnerability in Unified CM and Unified CM SME.

Google on Wednesday published exploit code for an unfixed vulnerability in its Chromium browser codebase that threatens ...

HTTP/2 Bomb exploits HPACK and flow control; a single client can hold 32GB memory in 20 seconds, causing server outages.

A researcher has disclosed details of a severe VS Code vulnerability that can be exploited to steal GitHub tokens and access ...

PC system vulnerabilities are seemingly more common than we thought, as a researcher finds a major issue in a popular speaker ...

Cisco Unified Communications Manager vulnerability CVE-2026-20230 allows unauthenticated attackers to gain root access via ...

A Bugcrowd researcher has unveiled ExploitBench, an independent benchmark of AI models for vulnerability exploitation ...

Apple’s 2026 security year includes zero-days, iPhone exploit kits, WebKit fixes, and background patches that users and IT ...

Two healthcare organizations in the UK are said to be among the victims of a malicious campaign involving the exploitation of a vulnerability linked to cybersecurity hardware provider Ivanti.

The large May patch package had fixed the vulnerability in Windows Netlogon, now attackers are exploiting it. Admins should ...

AI models like Anthropic's Claude Mythos are accelerating vulnerability discovery and exploit development, raising concerns ...