PowMix targets Czech workforce since Dec 2025 using jittered C2 and ZIP phishing, enabling stealthy remote access and ...

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who ...

Today is Microsoft's April 2026 Patch Tuesday with security updates for 167 flaws, including 2 zero-day vulnerabilities.

Cisco patches four CVEs up to CVSS 9.9 in ISE and Webex, preventing code execution and user impersonation risks.

A pre‑authentication bug in SAML Web SSO, combined with weak access controls and cryptography, allows attackers to escalate privileges and achieve remote code execution.

The CVSS‑9.3 vulnerability allows unauthenticated remote code execution on exposed Marimo servers and was exploited in the wild shortly after disclosure, Sysdig says.

CERT-In flags multiple vulnerabilities in Google Chrome that could allow remote code execution and data theft, urging users ...

This month's Patch Tuesday includes an actively exploited Office zero-day vulnerability and several critical RCE bugs in ...

Adobe has released a fix for an Acrobat and Reader zero-day that attackers had been exploiting for months. The patch, shipped on April 11, addresses CVE-2026-34621, a critical vulnerability in Acrobat ...

The cloud-based Webex service has already been patched, but admins must replace an identity provider certificate in Webex ...

As security researchers warn about a dangerous Microsoft Windows update that isn’t, users must pay close attention to what ...

The security problem starts with how cellular modems are built. A phone's baseband is effectively its own operating system, ...