Vulnerability

9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros

9-Year-Old Linux Kernel Flaw Enables Root Command Execution on Major Distros

AndyC 22 May 2026

Ravie LakshmananMay 21, 2026Linux / Vulnerability Cybersecurity researchers have disclosed details of a vulnerability in the Linux kernel that remained...

Read More

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

Funnel Builder Flaw Under Active Exploitation Enables WooCommerce Checkout Skimming

AndyC 17 May 2026

Ravie LakshmananMay 16, 2026Vulnerability / Website Security A critical security vulnerability impacting the Funnel Builder plugin for WordPress has come...

Read More

On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email

On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email

AndyC 15 May 2026

Ravie LakshmananMay 15, 2026Microsoft / Vulnerability Microsoft has disclosed a new security vulnerability impacting on-premise versions of Exchange Server that...

Read More

Security Blogs

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 14 May 2026

Meta's smart glasses promise privacy "designed for you" - but everything they record was being beamed off to workers in...

Read More

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 14 May 2026

Meta’s smart glasses promise privacy “designed for you” – but everything they record was being beamed off to workers in...

Read More

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 14 May 2026

Meta’s smart glasses promise privacy “designed for you” – but everything they record was being beamed off to workers in...

Read More

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 14 May 2026

Meta’s smart glasses promise privacy “designed for you” – but everything they record was being beamed off to workers in...

Read More

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 14 May 2026

Meta’s smart glasses promise privacy “designed for you” – but everything they record was being beamed off to workers in...

Read More

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 14 May 2026

Meta’s smart glasses promise privacy “designed for you” – but everything they record was being beamed off to workers in...

Read More

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 14 May 2026

Meta’s smart glasses promise privacy “designed for you” – but everything they record was being beamed off to workers in...

Read More

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 14 May 2026

Meta’s smart glasses promise privacy “designed for you” – but everything they record was being beamed off to workers in...

Read More

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 14 May 2026

Meta’s smart glasses promise privacy “designed for you” – but everything they record was being beamed off to workers in...

Read More

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 14 May 2026

Meta’s smart glasses promise privacy “designed for you” – but everything they record was being beamed off to workers in...

Read More

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 14 May 2026

Meta’s smart glasses promise privacy “designed for you” – but everything they record was being beamed off to workers in...

Read More

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

Smashing Security podcast #466: Meta sees everything, Copy Fail, and a deepfake gets hired

AndyC 14 May 2026

Meta’s smart glasses promise privacy “designed for you” – but everything they record was being beamed off to workers in...

Read More

The calm before the ransom: What you see is not all there is

The calm before the ransom: What you see is not all there is

AndyC 1 May 2026

Ransomware A breach claims the systems as well as the confidence that was, in retrospect, a major vulnerability Tomáš Foltýn 24 Apr 2026 • ,...

Read More

The calm before the ransom: What you see is not all there is

The calm before the ransom: What you see is not all there is

AndyC 1 May 2026

Ransomware A breach claims the systems as well as the confidence that was, in retrospect, a major vulnerability Tomáš Foltýn 24 Apr 2026 • ,...

Read More

GopherWhisper: A burrow full of malware

GopherWhisper: A burrow full of malware

AndyC 1 May 2026

ESET Research ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions Eric Howard 23 Apr 2026...

Read More

GopherWhisper: A burrow full of malware

GopherWhisper: A burrow full of malware

AndyC 1 May 2026

ESET Research ESET Research has discovered a new China-aligned APT group that we’ve named GopherWhisper, which targets Mongolian governmental institutions Eric Howard 23 Apr 2026...

Read More

New NGate variant hides in a trojanized NFC payment app

New NGate variant hides in a trojanized NFC payment app

AndyC 1 May 2026

ESET Research has discovered a new variant of the NGate malware family that abuses a legitimate Android application called HandyPay, instead of the previously leveraged...

Read More

New NGate variant hides in a trojanized NFC payment app

New NGate variant hides in a trojanized NFC payment app

AndyC 1 May 2026

ESET Research has discovered a new variant of the NGate malware family that abuses a legitimate Android application called HandyPay, instead of the previously leveraged...

Read More

Smashing Security podcast #467: How ShinyHunters hacked the world’s biggest universities

Smashing Security podcast #467: How ShinyHunters hacked the world’s biggest universities

AndyC 22 May 2026

Smashing Security podcast #467: How ShinyHunters hacked the world’s biggest universities

Smashing Security podcast #467: How ShinyHunters hacked the world’s biggest universities

AndyC 22 May 2026

Smashing Security podcast #467: How ShinyHunters hacked the world’s biggest universities

Smashing Security podcast #467: How ShinyHunters hacked the world’s biggest universities

AndyC 22 May 2026

Smashing Security podcast #467: How ShinyHunters hacked the world’s biggest universities

Smashing Security podcast #467: How ShinyHunters hacked the world’s biggest universities

AndyC 22 May 2026

Smashing Security podcast #467: How ShinyHunters hacked the world’s biggest universities

Smashing Security podcast #467: How ShinyHunters hacked the world’s biggest universities

AndyC 22 May 2026