Hackers exploit file upload bug in Breeze Cache WordPress plugin

Hackers are actively exploiting a critical vulnerability in the Breeze Cache plugin for WordPress that allows uploading ...
Bleeping Computer

Hackers exploit React2Shell in automated credential theft campaign

Hackers are running a large-scale campaign to steal credentials in an automated way after exploiting React2Shell (CVE-2025-55182) in vulnerable Next.js apps. At least 766 hosts across various cloud ...
CoinDesk

Drift says $270 million exploit was a six-month North Korean intelligence operation

A six-month intelligence operation preceded the $270 million exploit of Drift Protocol and was carried out by a North Korean state-affiliated group, according to a detailed incident update published ...
The Atlantic

Claude Mythos Is Everyone’s Problem

For the past several weeks, Anthropic says it secretly possessed a tool potentially capable of commandeering most computer servers in the world. This is a bot that, if unleashed, might be able to hack ...
IGN

Max Paragon Exploit

Are you looking to to max out your Paragon points quickly? In Mass Effect 1 there's an exploit available very early into the game that allows you to do just that, using a Save exploit at the end of ...
Hackaday

Nintendo Wii Hacks

With each new game console, there’s an effort to get around whatever restrictions exist to run your own software on it. In the case of the Nintendo Wii, the system was cracked through one of its most ...
The Hacker News

Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025

Threat actors have been exploiting a previously unknown zero-day vulnerability in Adobe Reader using maliciously crafted PDF documents since at least December 2025. Given the name of the PDF document, ...
SecurityWeek

Adobe Patches Reader Zero-Day Exploited for Months

The vulnerability is tracked as CVE-2026-34621 and Adobe has confirmed that it can be exploited for arbitrary code execution. Adobe on Saturday released emergency patches for a critical Acrobat and ...
The Hacker News

Adobe Patches Actively Exploited Acrobat Reader Flaw CVE-2026-34621

Adobe has released emergency updates to fix a critical security flaw in Acrobat Reader that has come under active exploitation in the wild. The vulnerability, assigned the CVE identifier ...
Computerworld

Industry

Meta to track employee keystrokes, screen activity to train AI agents The data, gathered through a new internal tool, will be used to improve AI agents’ ability to navigate software and complete ...
UNESCO

Reporting a Cybersecurity Issue: UNESCO’s Security Vulnerability Disclosure policy

Missing best practices in SSL/TLS configuration. xmlrpc.php with no admin page exposed to the Internet. No automated fuzzing of forms or web scraping type of activities. Any activity that could lead ...