An attacker has been using maliciously crafted PDF files to exploit a zero-day in Adobe Acrobat and Reader for at least four ...

There are errors (bugs) and security vulnerabilities in the code of almost all software. The more extensive the code, the more there are. Many of these security flaws are discovered over time by users ...

Two recently fixed prompt injections in Salesforce Agentforce and Microsoft Copilot would have enabled an external attacker ...

Anthropic has pulled back access to its Mythos AI model after the company’s internal security testers found it could identify ...

Anthropic has also said that the Mythos Preview found a now-patched 27-year-old bug in OpenBSD, a 16-year-old FFmpeg bug, and ...

A researcher has published a Windows zero-day exploit called BlueHammer on GitHub after Microsoft's Security Response Center ...

Microsoft fixes 169 vulnerabilities including exploited SharePoint CVE-2026-32201, prompting CISA remediation by April 28, ...

The BlueHammer Windows exploit leak highlights serious issues with Microsoft’s vulnerability disclosure process and security response. A newly leaked Windows ...

A critical vulnerability in Nginx UI with Model Context Protocol (MCP) support is now being exploited in the wild for full ...

TP-Link Systems has responded to recent advisories concerning a security flaw impacting select Wi-Fi routers from its 'legacy ...

The former Microsoft exec and Gates Foundation CEO on why the real AI arms race isn't about tools — and why the companies ...

Email subscription bombing (also known as subscription flooding or email spam bombing) is an attack technique that overwhelms a target’s inbox with a high volume of benign but unwanted emails. The ...