Microsoft Exchange users are urged to mitigate a zero-day vulnerability that CISA has confirmed is under active exploitation.

Sure, AI agents such as Mythos can find security vulnerabilities in software, but the bigger question is whether they can ...

Microsoft Edge and Windows 11 were successfully hacked during day one of Pwn2Own Berlin 2026, with researchers earning over ...

Learn how Fragnesia (Copy Fail 3.0) exploits a Linux kernel logic bug to achieve 100% reliable root access. Find out if your ...

An LLM-powered system found 4 security bugs, including a critical one in the web server’s URL rewrite module. Researchers have found a critical vulnerability in the widely used Nginx web server that ...

A critical NGINX vulnerability, undiscovered for 18 years, allows hackers to crash servers with ease and even take full control without authentication in some common configurations. Emergency patches ...

A critical vulnerability affecting certain configurations of the Exim open-source mail transfer agent could be exploited by ...

The latest Microsoft Patch Tuesday rollout featured no zero-days. However, an angry hacker has just dropped two new 0-day ...

In what could be the first confirmed case of hackers using AI to develop a zero-day exploit, Google says threat actors attempted to weaponize a previously unknown vulnerability capable of bypassing ...

SAP has released 15 new security notes, including two addressing critical code injection flaws in S/4HANA and Commerce.

Admins with Dynamics 365 on-prem should also take note of a “severe” vulnerability that allows remote code execution.

A single malformed web request is all it takes. On May 4, 2026, the Apache Software Foundation quietly filed a vulnerability ...