News
-
Adobe Patches 7 Critical Flaws in ColdFusion and Campaign Classic
Read more: Adobe Patches 7 Critical Flaws in ColdFusion and Campaign ClassicMeta Description: Adobe has released patches for seven critical CVSS 10.0 flaws in ColdFusion and Campaign Classic. Learn the impact, affected versions, and mitigation steps. Adobe has released important security updates. The patches fix serious…
-
Critical Cursor Flaws Could Let Prompt Injection Run Commands
Read more: Critical Cursor Flaws Could Let Prompt Injection Run CommandsTwo critical flaws have been found in Cursor, an AI-powered code editor. The flaws could let prompt injection escape the sandbox. The issue is called DuneSlide. The two flaws are tracked as CVE-2026-50548 and CVE-2026-50549.…
-
WhatsApp Is Adding Usernames to Help Keep Phone Numbers Private
Read more: WhatsApp Is Adding Usernames to Help Keep Phone Numbers PrivateWhatsApp is adding usernames to improve user privacy. The feature helps people connect without sharing a phone number right away. This can make new conversations feel safer. Users can chat with new contacts while keeping…
-
Hackers Exploit Gravity SMTP WordPress Plugin Flaw to Steal API Keys
Read more: Hackers Exploit Gravity SMTP WordPress Plugin Flaw to Steal API KeysHackers are actively exploiting a flaw in the Gravity SMTP WordPress plugin. The flaw can expose sensitive data from affected websites. The vulnerability is tracked as CVE-2026-4020. It has a CVSS score of 5.3, which…
-
usbliter8 Exploit Breaks Apple A12 and A13 SecureROM
Read more: usbliter8 Exploit Breaks Apple A12 and A13 SecureROMSecurity researchers from Paradigm Shift have released a new exploit called usbliter8. The exploit targets SecureROM on Apple A12 and A13 chips. This matters because SecureROM runs at a very early stage of the boot…
-
CISA Warns Fortinet Customers About FortiBleed Attacks
Read more: CISA Warns Fortinet Customers About FortiBleed AttacksCISA has warned Fortinet customers to secure their FortiGate devices. The warning follows a large campaign called FortiBleed. The campaign targets Fortinet devices that are exposed to the internet. These devices include firewalls and VPN…
-
Apple Patches Beats Studio Buds Security Flaw
Read more: Apple Patches Beats Studio Buds Security FlawApple has released a security update for Beats Studio Buds. The update fixes a serious Bluetooth flaw. The flaw is tracked as CVE-2025-20701. It affects the Bluetooth pairing process. As a result, a nearby attacker…
-
F5 Releases Patches for Two Critical NGINX Open Source Flaws
Read more: F5 Releases Patches for Two Critical NGINX Open Source FlawsF5 has released security updates for NGINX Open Source. The patches fix two critical flaws that could create serious risk for affected systems. The two flaws are CVE-2026-42530 and CVE-2026-42055. Both have a CVSS v4…
-
Top 10 Attack Surface Exposures in 2026 Every Organization Should Watch
Read more: Top 10 Attack Surface Exposures in 2026 Every Organization Should WatchTop 10 Attack Surface Exposures in 2026 Cyberattacks in 2026 do not always start with advanced zero-day exploits. Many attacks begin with simple security gaps. These gaps include exposed admin panels, weak credentials, open databases,…
-
CISA Warns of Actively Exploited LiteSpeed cPanel Plugin Vulnerability
Read more: CISA Warns of Actively Exploited LiteSpeed cPanel Plugin VulnerabilityThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity LiteSpeed cPanel Plugin vulnerability to its Known Exploited Vulnerabilities (KEV) catalog. The flaw, tracked as CVE-2026-54420, is being actively exploited and could allow…










