Technology ❯ Cybersecurity

Research

Vulnerability Research Security Research Vulnerability Disclosure Security Researchers Rapid7 Malware Analysis Google Project Zero Threat Intelligence Vulnerabilities Vulnerability Analysis Security Analysis Technical Analysis Independent Researchers Security Bulletins Security Companies Threat Research Labs Techniques Security Conferences Guardio Labs User Studies Security patches Black Hat Conference Independent Researcher Security Firms Attack Patterns DEF CON Security Labs Cybersecurity Resilience Literature Review ESET Findings Academic Conferences Open Source Security Cisco Talos Proof of Concept Responsible Disclosure Academic Integrity Check Point Security Studies Black Hat Europe Gen Digital Threat Hunting Security Measures Extension Analysis Jeremiah Fowler ESET Security Flaws Pentesting Oligo Cyber Threats

DarkSword iPhone Exploit Leaks on GitHub, Threatens Unpatched Devices

A public GitHub leak makes the web exploit easy to reuse against iPhones that have not been updated.

ConnectWise Releases ScreenConnect 26.1 to Fix Critical Machine‑Key Flaw

AirSnitch Exposes Wi‑Fi Design Flaw That Bypasses Client Isolation on WPA3 Networks

Study Finds Design Flaws Let Compromised Servers Expose Password-Manager Vaults

Google Rushes Patch for Chrome Zero‑Day Exploited in the Wild

BeyondTrust Pre-Auth RCE Is Now Being Exploited in the Wild

Flare Finds 1,400+ MongoDB Databases Wiped in Renewed Low-Ransom Extortion

Fortinet Begins Patching Actively Exploited FortiCloud SSO Bypass as CISA Sets Jan. 30 Deadline

CISA Adds Four Actively Exploited Vulnerabilities to KEV Catalog With Feb. 12 Remediation Deadline

Tesla Infotainment Hacked as Pwn2Own Automotive Finds 37 Zero‑Days on Day 1

WhisperPair Flaws Expose Bluetooth Earbuds to Hijacking as Vendors Issue Updates

Critical 'Ni8mare' Flaw Exposes n8n Servers to Full Takeover as Scans Surge

Android’s January Patch Fixes Critical Dolby DD+ Flaw as Samsung Plans Play System Update Return

CISA Orders Federal Agencies to Patch Actively Exploited MongoDB ‘MongoBleed’ Flaw

Fortinet Confirms Second FortiWeb Flaw Under Active Attack as CISA Demands Rapid Fixes

Fortinet Confirms Critical FortiWeb Zero-Day Is Being Exploited as CISA Sets Nov. 21 Patch Deadline

CISA Adds WatchGuard Firewall Remote Code Execution Flaw to KEV, Sets Dec. 3 Patching Deadline

Microsoft Reissues Emergency WSUS Patch as Exploits Spread and CISA Orders Federal Fix

CISA Flags Active Exploits of Windows SMB Privilege Bug, Sets Nov. 10 Patch Deadline

Play Protect Now Blocking Evolving ‘ClayRat’ Android Spyware Targeting Russian Users