High-severity vulnerability in Linux caused by a single faulty character

Researchers have analyzed a high-severity vulnerability in Linux that’s able to escalate untrusted users to root by ...
The Verge

Microsoft is threatening legal action for disclosing exploits

The company is feuding with a security researcher publicly posting vulnerabilities. The company is feuding with a security researcher publicly posting vulnerabilities. is the Verge’s weekend editor.
Invezz

DxSale loses $7.3M in BNB Chain liquidity providers (LPs) hack

Second-order: the exploit hits shared locker infrastructure, so liquidity providers and launch teams will shift toward safer, more transparent locking/DeFi primitives on BNB Chain. Buy BIFI (Beefy ...
The Hacker News

Attackers Use LLM Agent for Post-Exploitation After Marimo CVE-2026-39987 Exploit

An unknown threat actor has been observed using a large language model (LLM) agent to conduct post-compromise actions after obtaining initial access following the exploitation of a publicly-accessible ...
The Hacker News

Threat Actors Exploit Critical FortiClient EMS Flaw to Deploy Credential Stealer

Threat actors are continuing to exploit a critical, now-patched security flaw impacting FortiClient Endpoint Management Server (EMS) deployments to deliver a credential-stealing malware family dubbed ...
GitHub

Linux Privilege Escalation Exploits

CVE-2016-4997 Linux kernel <= 4.6.3 CVE-2016-4557 Linux kernel 4.4-4.5.5 CVE-2016-2384 Linux kernel 3.0.0-4.4.8 CVE-2016-0728 (pp_key) Linux kernel 3.8.0-3.8.9, 3.9-3 ...
Dark Reading

AI-Assisted Exploit Development Outpaces Scanner Detection

Attackers have reduced the time to develop an exploit for a known vulnerability from 125 days to a mere half a day, thanks to the use of AI-assisted development, leaving vulnerability scanners ...
Mashable

Anthropic limits access to AI that finds security flaws, realizing hackers may use it for exactly that

The story goes like this: Anthropic creates Claude Mythos, an AI model that's great at identifying security flaws in software. Due to security issues within Anthropic's own content management system ...
IGN

Forza Horizon 6 Players Are Using Exploits to Farm Easy Credits and Unlock Every Car

More like this Forza Horizon 6 Has Its Own Boogeyman, and Players are Terrified By investing the skill points back into your vehicle, you can unlock more wheel spins, bonuses, and more to help quickly ...
IGN

Forza Horizon 6 Players Are Using Exploits to Farm Easy Credits and Unlock Every Car

Forza Horizon 6 players are exploiting certain parts of the game so that they can quickly and easily unlock every vehicle in the game. As spotted by GamesRadar, YouTuber XMBWesley posted a guide on ...
Ars Technica

Google publishes exploit code threatening millions of Chromium users

Google on Wednesday published exploit code for an unfixed vulnerability in its Chromium browser codebase that threatens millions of people using Chrome, Microsoft Edge, and virtually all other ...
Microsoft

CVE-2026-31431: Copy Fail vulnerability enables Linux root privilege escalation across cloud environments

Microsoft Defender is investigating a high-severity local privilege escalation vulnerability (CVE-2026-31431) affecting multiple major Linux distributions including Red Hat, SUSE, Ubuntu, and AWS ...