Drift Protocol said the attackers posed as traders, met contributors in person, and spent months infiltrating before draining the platform.

A simple prompt sent Claude Code on a mission that uncovered major security vulnerabilities in popular text editors — and ...

Drift Protocol reveals details of the April 1 exploit, tracing a six-month social engineering attack causing over $280M in ...

Google patches 21 Chrome vulnerabilities, including an actively exploited zero-day flaw that could enable code execution and ...

Microsoft SharePoint, a core platform for enterprise collaboration, is facing active exploitation through a newly confirmed ...

Coruna reuses Triangulation kernel exploits targeting iOS 13–17.2.1 devices, expanding attacks into mass exploitation ...

Cisco has patched eight critical and high-severity vulnerabilities that could lead to bypasses, code execution, and privilege ...

Veeam fixes 7 Backup & Replication flaws, including CVSS 9.9 RCE bugs, warning attackers may exploit unpatched systems.

F5 has reclassified a BIG-IP APM denial-of-service (DoS) vulnerability as a critical-severity remote code execution (RCE) flaw, warning that attackers are exploiting it to deploy webshells on ...

The manufacturer warns and urges admins to urgently secure their instances with a workaround. A patch is still pending.

Cookie-gated PHP webshells use obfuscation, php-fpm execution, and cron-based persistence to evade detection in Linux hosting ...

Two vulnerabilities in Progress ShareFile, an enterprise-grade secure file transfer solution, can be chained to enable ...