Computerworld

JavaScript-based attack simplifies browser exploits

Researchers have devised a new attack that can bypass one of the main exploit mitigations in browsers: Address space layout randomization (ASLR). The attack takes advantage of how modern processors ...
InfoWorld

Compiling exploit code: a network-security must

There are times when network security defenders need to compile exploit code. It is not unusual for more than a dozen new exploits against Windows and Linux machines to be released each day, and ...
CSOonline

Twitter hack illustrates danger of chained exploits

Even the most securely coded piece of software can be susceptible to malicious hacking and significant exploits the moment it’s linked with less-secure applications or platforms. These multiproduct, ...
CSOonline

Attackers set up rogue GitHub repos with malware posing as zero-day exploits

In an unusual attack campaign, a hacker has been setting up rogue GitHub repositories that claim to host zero-day exploits for popular applications but which instead deliver malware. The attacker also ...
Android

Google Reports 2025 Zero-Days Exploits Targeted the Very Tools Meant to Stop Them

Google’s Threat Intelligence Group tracked 90 zero-day vulnerabilities in 2025, and for the first time, nearly half of them targeted enterprise technology rather than consumer software. The findings ...