Vulnerability

DarkSword: Advanced iOS Exploit Kit Targets iPhones in Four Countries Since November 2025, a sophisticated iOS exploit kit named DarkSword…

The CVE-2025-24893 vulnerability in XWiki Platform’s SolrSearch component allows unauthenticated guest users to execute arbitrary remote code via eval…

A security researcher, Johann Rehberger, successfully demonstrated an indirect prompt injection attack on Claude AI, exploiting its sandbox and network…

Cybersecurity researchers uncovered a vulnerability in Slack’s link-rendering mechanism, where improper spacing between punctuation and text (e.g., `face.…

Hubbis, a company handling personally identifiable user data (including names, job titles, company details, contact information, CVs, and usage behavior)…

The article indicates a session expiration issue on RIT’s (Rochester Institute of Technology) login portal, which could suggest a…

Security researchers at GitGuardian uncovered a critical path traversal vulnerability in Smithery.ai, a Model Context Protocol (MCP) server hosting…

OpenAI’s newly launched Atlas browser, which integrates ChatGPT as an AI agent for processing web content, was found vulnerable…

The University of the Witwatersrand (Wits) suffered a zero-day cyber attack targeting its Oracle E-Business system, compromising operations across multiple…

A critical vulnerability (CVE-2025-11705) was discovered in the Anti-Malware Security and Brute-Force Firewall WordPress plugin, affecting versions 4.23.81…

Google released an urgent security update for its Chrome browser to patch **CVE-2025-12036**, a high-severity vulnerability in the **V8 JavaScript…

AMD disclosed a critical security flaw named RMPocalypse (CVE-2025-0033) in its Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP) mechanism,…