QNAP patched two dozen vulnerabilities across its product portfolio, including 7 flaws demonstrated at Pwn2Own Ireland 2025.

Windows Server 2025 is currently vulnerable to a Remote Code Execution exploit and a patch for the issue doesn't seem to be ...

A new commercial-grade Android spyware, dubbed Landfall, has been discovered exploiting zero-day vulnerabilities in Samsung Galaxy devices.

This critical (CVSS 10.0) use-after-free (UAF) vulnerability in Lua scripting could allow authenticated attackers to execute ...

Here’s a detailed look at the $25M Ethereum MEV mistrial involving the Peraire-Bueno brothers and its impact on future crypto ...

Cybersecurity researchers have flagged a malicious Visual Studio Code (VS Code) extension with basic ransomware capabilities ...

Critical remote code execution flaw in Windows Server is being exploited in the wild, despite previous updates ...

Contacted by SecurityWeek, Eugene, who appears to be from China, described Pwn2Own as an “amazing event”. The researcher said, “We decided to keep everything private between Meta, ZDI and myself. No ...

Security researcher demonstrates how attackers can hijack Anthropic’s file upload API to exfiltrate sensitive information, ...

Attackers are now exploiting a critical-severity Windows Server Update Services (WSUS) vulnerability, which already has publicly available proof-of-concept exploit code. Tracked as CVE-2025-59287, ...

Threat actors are targeting a critical vulnerability in the JobMonster WordPress theme that allows hijacking of administrator ...

Researchers at Google have discovered that hackers are creating malware that can harness the power of AI during its execution ...