Recently leaked Windows zero-days now exploited in attacks

Threat actors are exploiting three recently disclosed Windows security vulnerabilities in attacks aimed at gaining SYSTEM or ...

Hackers exploit Marimo flaw to deploy NKAbuse malware from Hugging Face

Hackers are exploiting a critical vulnerability in Marimo reactive Python notebook to deploy a new variant of NKAbuse malware ...

Adobe fixes PDF zero-day security bug that hackers have exploited for months

It's not clear how many people were compromised by this hacking campaign, but a security researcher said the hackers were ...

‘BlueHammer’ Exploit Targets Windows, Potentially Impacting 1 Billion+ Devices

A researcher released a working ‘BlueHammer’ Windows zero-day exploit that could impact over 1 billion devices, granting ...
Security Boulevard

Shadow Admins in Active Directory: Hidden Privilege Paths Attackers Exploit

What Are Shadow Admins in AD? A common problem we encounter within many customer AD environments are accounts that, at first ...

Cisco Systems issues three advisories for critical vulnerabilities in Webex, ISE

The cloud-based Webex service has already been patched, but admins must replace an identity provider certificate in Webex ...
Computer Weekly

UK businesses must face up to AI threat, says government

Business secretary Liz Kendall urges Britain’s business community to sit up and pay attention to emerging AI threats, ...
CSO Online

Patch windows collapse as time-to-exploit accelerates

AI and the industrialization of cybercrime are helping attackers double the number of high- and critical-severity known ...
Computer Weekly

April Patch Tuesday brings zero-days in Defender, SharePoint Server

The latest monthly Patch Tuesday update from Microsoft landed earlier on 14 April, including two notable zero-day flaws amid ...

A.I. Is on Its Way to Upending Cybersecurity

With new systems from companies like Anthropic and OpenAI, hackers can attack with greater speed. The defense is more A.I.

Your Nvidia GPU is your PC’s newest security weakness

Security researchers found a way to manipulate GPU memory and elevate it into a system attack with root permissions.
CSO Online

Vim and GNU Emacs: Claude Code helpfully found zero-day exploits for both

A simple prompt sent Claude Code on a mission that uncovered major security vulnerabilities in popular text editors — and then suggested ways to exploit them.