A critical vulnerability in the Ninja Forms File Uploads premium add-on for WordPress allows uploading arbitrary files without authentication, which can lead to remote code execution.

For years, the DeFi industry has treated security as a technical problem: something that could be solved with better code. But the Drift incident suggests something far more complex: that the real ...

The Medusa ransomware group is operating at a fast pace by leveraging zero-days and quickly exploiting new bugs and breached systems.

The program includes 24/7 threat monitoring for protocols with more than $10 million in deposits and a dedicated incident response network of security firms.

Microsoft is dealing with a newly disclosed zero-day vulnerability in Windows that could allow attackers to gain full system control, with no official fix available yet. The flaw, called BlueHammer, ...

Exploit code has been released for an unpatched Windows privilege escalation flaw reported privately to Microsoft, allowing ...

Researchers say a serious Android vulnerability affecting certain MediaTek processors could let attackers bypass your lock ...

Apple is rolling out iOS and iPadOS updates for older devices to protect them against the recently disclosed DarkSword ...

Drift Protocol lost over $270M in an organized hack, with the funds immediately swapped on-chain, moved to Ethereum, and ...

An exploit kit known as Coruna has appeared on GitHub, bundling working attack code for several Apple iOS vulnerabilities that were patched in 2023 and early 2024. The kit chains together at least ...

Last week, cybersecurity researchers uncovered a hacking campaign targeting iPhone users that used an advanced hacking tool called DarkSword. Now someone has leaked a newer version of DarkSword and ...

Google has detailed a similar attack to Coruba, called DarkSword, which is actively being used in several countries. Here are the details.