575 article(s)
A zero-day flaw in TrueConf’s secure video conferencing was weaponized by Chinese hackers, breaching dozens of Asian government agencies. Investigate how a trusted update system became a devastating attack vector.
Attackers are actively exploiting a critical flaw in TrueConf Client, using compromised update servers to deliver malicious code. Unpatched systems are at high risk—here's what you need to know to stay safe.
A lightning-fast wave of automated cyberattacks exploited the React2Shell flaw to breach 700+ Next.js servers worldwide, stealing a trove of credentials and cloud secrets in under 24 hours.
A critical RCE vulnerability has left more than 17,000 F5 BIG-IP Access Policy Manager devices exposed online, giving attackers a direct route into enterprise networks. Security agencies urge immediate patching as exploitation surges.
A newly exploited flaw in TrueConf’s update system allows hackers to hijack software updates and gain full control of affected systems. CISA warns organizations to patch immediately or risk severe breaches.
Security researchers have released a proof-of-concept exploit for CVE-2026-33309, a critical arbitrary file write vulnerability in Langflow's LocalStorageService. The flaw could enable attackers to execute code on AI workflow platforms. Patch now to stay protected.
Researchers have unveiled new Rowhammer attacks targeting Nvidia GPUs, enabling attackers to gain full root control over shared cloud machines. As GPU memory becomes more susceptible to bit flips, the risks for data centers and cloud providers are mounting.
Apple is rolling out urgent patches to hundreds of millions of older iOS and iPadOS devices after the discovery of the DarkSword exploit kit, which has targeted vulnerabilities in Apple’s mobile platforms and been weaponized by nation-state and commercial actors.
ShareFile users face new dangers as public exploit code emerges for critical vulnerabilities, making attacks easier and more likely. Security experts urge immediate action.
CISA has sounded the alarm on CVE-2026-5281, a critical vulnerability affecting browsers like Chrome, Edge, Opera, and Brave, now under active attack. This feature investigates how the flaw works, who is at risk, and why immediate action is crucial.