Bitdefender

Linux Kernel Bugs Can Hide for 20 Years

Linux security developer Jenny Guanni Qu has discovered that bugs in the Linux kernel can remain hidden for more than two ...

Windows info-disclosure 0-day bug gets a fix as CISA sounds alarm

A couple of other interesting bugs that Childs points out are these two, CVE-2026-20952 (CVSS 7.7) and CVE-2026-20953 (CVSS 7 ...

Cloudflare whacks WAF bypass bug that opened side door for attackers

Cloudflare has fixed a flaw in its web application firewall (WAF) that allowed attackers to bypass security rules and ...
Dark Reading

Vulnerabilities Threaten to Break Chainlit AI Framework

Familiar bugs in a popular open source framework for AI chatbots could give attackers dangerous powers in the cloud.

Truebit exploit exposes smart-contract flaw behind $26M token mint

The $26 million Truebit hack occurred due to a smart contract vulnerability related to a prior version of Solidity, according ...

Truebit hit by $26m exploit as attackers increasingly target older DeFi protocols

Truebit has since acknowledged the exploits in an X post. “We are in contact with law enforcement and taking all available ...
CSO Online

Google Gemini flaw exposes new AI prompt injection risks for enterprises

A calendar-based prompt injection technique exposes how generative AI systems can be manipulated through trusted enterprise ...
CSO Online

Critical jsPDF vulnerability enables arbitrary file read in Node.js deployments

The path traversal bug allows attackers to include arbitrary filesystem content in generated PDFs when file paths are not ...
Cryptopolitan on MSN

Sui back online after nearly six-hour outage halts $1B in transactions

The Sui blockchain, a rapidly growing cryptocurrency network for sending and receiving transactions, has been restored and is ...

CISA orders feds to patch Gogs RCE flaw exploited in zero-day attacks

CISA has ordered government agencies to secure their systems against a high-severity Gogs vulnerability that was exploited in ...

Bumpy start: OpenZFS 2.4.0 with fast encryption – and problems

OpenZFS 2.4.0 brings interesting new features as well as many bug fixes. There still seem to be problems in some areas, such ...
The Hacker News

GoBruteforcer Botnet Targets Crypto Project Databases by Exploiting Weak Credentials

GoBruteforcer malware uses weak passwords and exposed services to build a botnet targeting crypto projects, Linux servers, ...