Apple’s 2026 security year includes zero-days, iPhone exploit kits, WebKit fixes, and background patches that users and IT teams need to track.
The Fortra FileCatalyst Workflow is vulnerable to an SQL injection vulnerability that could allow remote unauthenticated attackers to create rogue admin users and manipulate data on the application ...
A critical vulnerability (CVE-2024-27198) in the TeamCity On-Premises CI/CD solution from JetBrains can let a remote unauthenticated attacker take control of the server with administrative permissions ...
The libssh2 library, which is widely used, contains a critical security vulnerability. A published proof-of-concept exploit ...
Data Theorem, Inc., a leading provider of modern application security, today announced three new AI security capabilities: AI Exploits, AI Auto-Remediation, and AI Active Protection, all without the ...
Researchers disclosed usbliter8, a SecureROM exploit affecting older Apple devices that can bypass boot protections with ...
Infosecurity spoke with the researcher who dumped over 30 proof-of-concept exploits without disclosing the vulnerabilities ...
Researchers have discovered a new unpatchable exploit affecting Apple's A12 and A13 chips, potentially exposing a hardware-level security vulnerability that cannot be fixed through software updates.
One of the biggest buyers of iOS zero-day exploits says the market is flooded with new iPhone bugs due to weakened security components in Safari and iMessage. Zerodium, which pays $2 million for iOS ...
Unity is urging developers to take “immediate action” after it disclosed a major security vulnerability affecting games built using versions of its popular development tool dating back to 2017. While ...
Security researchers say a pair of easy-to-exploit flaws in a popular remote-access tool used by more than a million companies around the world are now being mass exploited, with hackers abusing the ...