Abstract: On December 10, 2021, Log4Shell was disclosed to the public and was quickly recognized as a most severe vulnerability. It exploits a bug in the wide-spread Log4j library that allows for ...

The 2024 XZ incident illustrates how open-source software (OSS) has become strategic infrastructure in the global economy, ...

The new AI model is being heralded—and feared—as a hacker’s superweapon. Experts say its arrival is a wake-up call for ...

The Coruna exploit kit is an evolution of the framework used in the Operation Triangulation espionage campaign, which in 2023 targeted iPhones via zero-click iMessage exploits. The software has been ...

Cybercriminals are increasingly using fake CAPTCHA prompts to trick users into enabling malware and scam notifications. Security experts warn the tactic is spreading rapidly through ads, pirated ...

iPhone users should be on alert: DarkSword spyware has been posted in the wild. Credit: Cheng Xin/Getty Images DarkSword, the web-based hacker tool that can be used to steal data from millions of ...

The exploit, revealed last week by Google’s Threat Intelligence Group, is now publicly available on GitHub, increasing the urgency for older iPhones and iPads to run the latest available iOS and ...

Last week, cybersecurity researchers uncovered a hacking campaign targeting iPhone users that used an advanced hacking tool called DarkSword. Now someone has leaked a newer version of DarkSword and ...

Over the weekend, crypto protocol Resolv, which issues the USR stablecoin, was exploited by an attacker who was able to mint nearly 80 million new USR tokens out of thin air after only putting down a ...

Threat actors have demonstrated just how quickly they operate today after exploiting a critical open source vulnerability within 20 hours, working only from the advisory description. The bug, CVE-2026 ...

New Apple Hack: Up to 270M iPhones Vulnerable to ‘DarkSword’ Exploit Your email has been sent Researchers uncover “DarkSword,” a powerful iPhone exploit targeting millions via compromised websites.

Researchers from Google LLC and two cybersecurity companies have identified a set of zero-day exploits in iOS 18. Google’s GTIG threat intelligence team, Lookout Inc. and iVerify Inc. published their ...