Technology ❯ Cybersecurity

Research

Vulnerability Research Security Research Vulnerability Disclosure Security Researchers Rapid7 Vulnerabilities Vulnerability Analysis Google Project Zero Technical Analysis Threat Intelligence

Hackers Exploit Critical Ninja Forms File Uploads Flaw to Seize WordPress Sites

Unpatched sites face fast takeover because attackers can plant PHP files through a path traversal gap.

CISA Orders Rapid Fix for Actively Exploited Fortinet EMS Zero-Day

Fortinet FortiClient EMS CVE-2026-21643 Now Under Active Exploitation

DarkSword iPhone Exploit Leaks on GitHub, Threatens Unpatched Devices

ConnectWise Releases ScreenConnect 26.1 to Fix Critical Machine‑Key Flaw

AirSnitch Exposes Wi‑Fi Design Flaw That Bypasses Client Isolation on WPA3 Networks

Study Finds Design Flaws Let Compromised Servers Expose Password-Manager Vaults

Google Rushes Patch for Chrome Zero‑Day Exploited in the Wild

BeyondTrust Pre-Auth RCE Is Now Being Exploited in the Wild

Flare Finds 1,400+ MongoDB Databases Wiped in Renewed Low-Ransom Extortion

Fortinet Begins Patching Actively Exploited FortiCloud SSO Bypass as CISA Sets Jan. 30 Deadline

CISA Adds Four Actively Exploited Vulnerabilities to KEV Catalog With Feb. 12 Remediation Deadline

Tesla Infotainment Hacked as Pwn2Own Automotive Finds 37 Zero‑Days on Day 1

WhisperPair Flaws Expose Bluetooth Earbuds to Hijacking as Vendors Issue Updates

Critical 'Ni8mare' Flaw Exposes n8n Servers to Full Takeover as Scans Surge

Android’s January Patch Fixes Critical Dolby DD+ Flaw as Samsung Plans Play System Update Return

Google Issues January Android Patch for Critical Dolby Decoder Zero-Click Flaw

CISA Orders Federal Agencies to Patch Actively Exploited MongoDB ‘MongoBleed’ Flaw

Amazon Patches Kindle Exploit That Let Malicious eBooks Hijack Accounts

CISA Adds Actively Exploited Sierra Wireless and Chrome Vulnerabilities to KEV Catalog