Active exploitation of BeyondTrust enables unauthenticated RCE as CISA adds Apple, Microsoft, SolarWinds, and Notepad++ flaws to KEV list.

The US spy agency on Thursday rolled out the video depicting a disillusioned mid-level Chinese military officer, in the ...

Apple urges users to update after patching CVE-2026-20700, a zero-day flaw exploited in sophisticated targeted attacks across multiple devices.

Microsoft has patched the Windows Notepad remote code execution vulnerability CVE-2026-20841, warning users to install ...

According to Microsoft's release notes, the update fixes 25 elevation of privilege flaws, 12 remote code execution ...

A zero-click flaw in Anthropic’s Claude Desktop Extensions allows attackers to trigger remote code execution via Google ...

Ukraine is claiming a rare, largely bloodless victory in its war with Russia after a sweeping shutdown of battlefield ...

Ukrainian President Volodymyr Zelensky urged allied countries to press Moscow into ending its all-out invasion, which began almost four years ago on Feb. 24 2022.

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.

How modern infostealers target macOS systems, leverage Python‑based stealers, and abuse trusted platforms and utilities to ...

This week’s cybersecurity recap highlights key attacks, zero-days, and patches to keep you informed and secure.

A zero-day vulnerability in Chromium-based browsers, identified as CVE-2025-10585, allows active exploitation through the V8 JavaScript engine's just-in-time compiler. Users are advised to update ...