This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.

Ivanti has patched CVE-2026-1281 and CVE-2026-1340, two Endpoint Manager Mobile (EPMM) flaws exploited as zero-days.

San Andreas has been broken and rebroken many times over the years across its multiple versions, and there's one specific ...

A JavaScript sandbox bug rated CVSS 9.9 enables attackers to bypass AST‑based protections, while a Python execution bypass ...

Anthropic PBC’s official Git Model Context Protocol server has several security vulnerabilities that can lead to arbitrary file access and, in some scenarios, full remote code execution triggered ...

The Indian government has issued a ‘critical’ warning for Android smartphone users urging them to update their devices. The vulnerability note CIVN–20.

Rajesh started following the latest happenings in the world of Android around the release of the Nexus One and Samsung Galaxy S. After flashing custom ROMs and kernels on his beloved Galaxy S, he ...

Ever since the first version of Android was released in 2008, anyone who wanted to could access the source code of the operating system. However, Google has now announced that the source code will ...

Attackers are actively exploiting a zero-day vulnerability in multiple discontinued D-Link DSL gateway devices to execute arbitrary shell commands on affected products. Most of the gateways under ...

The vendor has issued a patch to close four holes in its flagship Backup & Replication suite; version 13 users are advised to audit their backup config files and closely monitor backup jobs. Veeam ...

Android source code releases, better known as AOSP releases, will no longer be coming multiple times a year, as Google confirms that it’s transitioning to pushing them out only twice a year instead.