CVE-2026-2329 allows unauthenticated root-level access to SMB phones, so attackers can intercept calls, commit toll fraud, and impersonate users.

The widely used open-source library has been patched to defend against a heap buffer overflow flaw that’s been in the code since its inception.

Threat actors began targeting a recently patched BeyondTrust vulnerability shortly after a proof-of-concept (PoC) exploit was released.

Endor Labs, the leader in AI-native application security, today announced the acquisition of Autonomous Plane, a cloud-native application security company founded by Kyle Quest, creator of DockerSlim.

Active exploitation of BeyondTrust enables unauthenticated RCE as CISA adds Apple, Microsoft, SolarWinds, and Notepad++ flaws to KEV list.

When it comes to cybersecurity, resilience, detection speed and containment now matter more than finding and patching every ...

Microsoft has patched six exploited zero-days in February 2026 Patch Tuesday, addressing 58 vulnerabilities and triggering urgent enterprise remediation.

Microsoft has patched the Windows Notepad remote code execution vulnerability CVE-2026-20841, warning users to install February 2026 updates to block exploits.

Microsoft's February Patch Tuesday release addresses 58 vulnerabilities across Windows, Office and several other products, ...

From technical compromise to AI-driven attacks, cyber criminals increasingly see software developers as prime targets, creating systemic risks CISOs must address.

A high-severity security flaw has been disclosed in OpenClaw (formerly referred to as Clawdbot and Moltbot) that could allow remote code execution (RCE) through a crafted malicious link. The issue, ...