The tech giant warned of a security flaw that a cybercrime gang said it's exploiting as part of a mass-hacking campaign.

PC system vulnerabilities are seemingly more common than we thought, as a researcher finds a major issue in a popular speaker ...

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. As an old hacker myself, if I wasn’t very happy writing about ...

The Cybersecurity and Infrastructure Security Agency on Wednesday directed federal agencies to adopt a new risk-based ...

Oracle released an out-of-band update for PeopleSoft to address CVE-2026-35273, a zero-day vulnerability likely exploited by ...

Hackers are exploiting CVE-2026-5027, a high-severity path traversal issue in Langflow, for remote code execution.

Attackers can chain three already fixed vulnerabilities in the Ubiquiti UniFi OS server to execute remote code with root ...

HTTP/2 Bomb exploits HPACK and flow control; a single client can hold 32GB memory in 20 seconds, causing server outages.

Microsoft Exchange has now joined Windows 11 as Pwn2Own zero-day hackers continue to successfully attack the tech giant’s products.

New frontier AI models have spurred a resurgence in DeFi hacks, triggering a “vulnerability apocalypse” in the cryptocurrency ...

Ethical hackers identified an arbitrary account takeover flaw in the administrator portal for Subaru’s Starlink service, which could allow a threat actor to hijack a vehicle through a Subaru employee ...

Generally, iPhones are considered more secure than Android devices. Apple’s closed ecosystem and strict App Store policies limit the risk of malware, and its centralized software updates ensure better ...