Technology ❯ Cybersecurity

Vulnerabilities

Zero-Day Exploits Remote Code Execution Software Vulnerabilities Exploits Zero-Day Vulnerabilities CVE Exploitation Malware Known Exploited Vulnerabilities Command Injection

CISA Flags 'MongoBleed' as Actively Exploited With Tens of Thousands of MongoDB Servers Still Exposed

The federal listing heightens urgency to patch self‑hosted instances as the zlib bug leaks memory before authentication.

WhatsApp Rolls Out New Year 2026 Stickers, Video Call Effects and Animated Status

Notarized MacSync Stealer Variant Bypasses Gatekeeper as Apple Revokes Signing Certificate

OpenAI Says Prompt Injection Is a Lasting Threat to AI Browsers, Rolls Out RL Red‑Teaming for Atlas

Fake GitHub Exploits Are Installing Webrat, Security Firms Warn

Apple Limits Critical iPhone Fixes to iOS 26.2, Pressuring Users to Upgrade

CISA Flags Actively Exploited WatchGuard Firebox RCE as Patches and IoCs Roll Out

China-Linked Hackers Exploit Cisco Email Zero-Day With No Patch as CISA Flags Active Threat

Riot's Vanguard Now Blocks Unpatched PCs Over Motherboard IOMMU Flaw

HPE Urges Immediate Patching for OneView CVE-2025-37164, a CVSS 10 Unauthenticated RCE

SonicWall Patches Actively Exploited SMA1000 Zero-Day, Urges Immediate Hotfixes

React2Shell Attacks Escalate as Microsoft Confirms Hundreds of Compromised Systems

Fortinet SSO Bypass Actively Exploited as CISA Sets Dec. 23 Fix Deadline

Chrome Pushes Emergency Update After In‑the‑Wild Exploit, Fixes High‑Severity WebGPU and V8 Bugs

Amazon Links Multi-Year Critical-Infrastructure Hacks to Russia’s GRU as It Disrupts Activity on AWS

Amazon Patches Kindle Exploit That Let Malicious eBooks Hijack Accounts

Apple, Google Rush Patches as CISA Flags WebKit Zero‑Day Exploits

Google Links More State Groups to React2Shell as Wallet-Draining Attacks Spread

Apple Releases iOS 26.2 With Fixes for Actively Exploited WebKit Bugs and Kernel Flaw

CISA Adds Actively Exploited Sierra Wireless and Chrome Vulnerabilities to KEV Catalog