Hackers exploit file upload bug in Breeze Cache WordPress plugin

Hackers are actively exploiting a critical vulnerability in the Breeze Cache plugin for WordPress that allows uploading ...
The Hacker News

PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks

PhantomCore exploited three TrueConf flaws since September 2025, enabling remote access and lateral movement across Russian ...
The Hacker News

LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure

CVE-2026-33626 exploited within 13 hours of disclosure, enabling SSRF-based cloud credential theft and internal scanning.

PyPI package with 1.1M monthly downloads hacked to push infostealer

An attacker pushed a malicious version of the popular elementary-data package Python Package Index (PyPI) to steal sensitive ...

'A geeky area of technology is blowing up into one of cycling's trickiest dilemmas' - How has rider data become such a controversial conundrum for the sport?

From GPS trackers to improve rider safety and power data's anti-doping potential, to the issue of ownership – rider data has ...
WBBJ-TV

Madison County man sentenced to 5 years in prison for possession of child pornography

Jonathan James Moore, 58, of Jackson, has been sentenced to 60 months in federal prison for possession of child pornography. D. Michael Dunavant, United States Attorney for the Western District of ...

Critical vulnerability in Ruby's standard library ERB:attackers can execute code

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...

Nassau County man arrested on multiple sex crime charges

The Nassau County Sheriff’s Office arrested a Hilliard man April 14 on charges of possessing child sexual abuse material and ...
CSO Online

Riddled with flaws, serial-to-Ethernet converters endanger critical infrastructure

Remote terminal units, PLCs, PoS systems, and bedside patient monitors may be susceptible to remote code execution, ...
Cybernews

750,000 DNN websites in danger: a simple SVG upload can lead to complete compromise

A severe cross-site-scripting (XSS) vulnerability in DNN, a popular open-source content management platform, allows attackers ...
Opinion
ICITOpinion

Operating at the Speed of the Adversary

This is the second in a series of articles examining the security implications of AI-driven vulnerability discovery. The first addressed the engineering foundation. This one addresses the operational ...