Hackers exploit TrueConf zero-day to push malicious software updates

Hackers have targeted TrueConf conference servers in attacks that exploit a zero-day vulnerability, allowing them to execute ...
CSO Online

Vim and GNU Emacs: Claude Code helpfully found zero-day exploits for both

A simple prompt sent Claude Code on a mission that uncovered major security vulnerabilities in popular text editors — and ...

Google fixes fourth Chrome zero-day exploited in attacks in 2026

In 2025, Google fixed a total of eight zero-days exploited in the wild, many of which were discovered and reported by ...
SecurityWeek

Russian APT Exploits Zimbra Vulnerability Against Ukraine

Russia-linked APT28 has exploited a high-severity XSS vulnerability in Zimbra in attacks against Ukrainian entities.
Infosecurity Magazine

AI-Enabled Adversaries Compress Time-to-Exploit Following Vulnerability Disclosure

Overall, vulnerability exploitation accounted for 25% of initial access in incident response incidents last year, with ...
Seeking Alpha

Market Brief: Venus Exploited, Aave Exposed, DeFi's Liquidity Problem Is Showing

Starting in June 2025, the attacker quietly accumulated approximately 84% of Venus's THE supply cap (14.5M tokens) over nine months. With virtually no market depth to absorb the sell-off, THE ...
TechRepublic

Perplexity AI Browser Flaw Could Let Calendar Invites Access Local Files

Perplexity AI Browser Flaw Could Let Calendar Invites Access Local Files Your email has been sent A security flaw in Perplexity’s AI-powered Comet browser could ...
The Hacker News

Coruna iOS Exploit Kit Uses 23 Exploits Across Five Chains Targeting iOS 13–17.2.1

Google said it identified a "new and powerful" exploit kit dubbed Coruna (aka CryptoWaters) targeting Apple iPhone models running iOS versions between 13.0 and 17.2.1. The exploit kit featured five ...
The Hacker News

CISA Adds Actively Exploited VMware Aria Operations Flaw CVE-2026-22719 to KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added a recently disclosed security flaw impacting Broadcom VMware Aria Operations to its Known Exploited Vulnerabilities ...