Search

tomshardware.com › software › linux

CISA flags actively exploited ‘Copy Fail’ Linux kernel flaw enabling root takeover across major distros — unpatched systems may remain vulnerable to attack

… Cybersecurity and Infrastructure Security Agency CISA added a newly disclosed Linux vulnerability, dubbed “Copy Fail,” to its Known Exploited Vulnerabilities catalog on May 1st, warning that the flaw, tracked as CVE-2026-31431, is already being used in active attacks and urging rapid patching acros… …

May 4, 2026 · Etiido Uko

tomshardware.com › tech-industry › cyber-security

Standard 90-day vulnerability disclosure policy is likely dead thanks to AI, expert warns that AI can weaponize patches in 30 minutes — LLM-assisted bug-hunting ushers in a new cyberworld order

In case you haven't been in the cybersecurity news lately, here's a quick summary: discoveries and exploits of high-profile software vulnerabilities are becoming faster than ever, in part due to AI-assisted code scanning tools. …

May 12, 2026 · Bruno Ferreira

tomshardware.com › tech-industry › cyber-security

First Apple M5 memory exploit discovered using Anthropic AI, gives root access on MacOS — Claude Mythos helps security researchers bypass Memory Integrity Enforcement

Thanks to AI-assisted security research, hackers with hats of various colors are finding exploits everywhere. …

May 16, 2026 · Bruno Ferreira

tomshardware.com › tech-industry › cyber-security

Microsoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoor

… From thereon, the exploit code can get access to regions of memory they're not meant to and leverage that for any number of shenanigans, the most obvious one being getting full system access. …

May 13, 2026 · Bruno Ferreira

Top stories

tomshardware.com

Wide-ranging 7-zip vulnerability with 8.8 CVE rating allows for code execution — hundreds of millions of machines potentially at risk

1w ago

tomshardware.com

Microsoft's GitHub bans security researcher who posted zero-day Windows exploits because company 'ruined their life' — expert claims action is vindictive and promises further retaliation

1w ago

tomshardware.com

AI shrinks zero-day exploit time from a year to a single day, heading toward one minute — Zero-Day Clock warns security window has collapsed

1w ago

tomshardware.com › pc-components

Researchers attack AMD's Infinity Fabric to bypass hardware security protections with 'Fabricked' — flaw lets malicious cloud hosts silently read confidential VM memory and forge attestation reports

… The researchers presented the findings as part of a USENIX Security 2026 paper, describing the exploit as fully deterministic with a 100% success rate, without a need for physical access and no code execution inside the victim VM. …

May 19, 2026 · Etiido Uko

tomshardware.com › peripherals › wearable-tech

Audi enthusiast upgrades 2001 A4 gear shift with old smartwatch in 3D-printed housing — vide-coded WearOS app displays gear selection, can be used to control in-car media

… Desmontei's other exploits also include PlayStation and handheld modifications, as seen on their website . …

May 21, 2026 · Mark Tyson

tomshardware.com › tech-industry › cyber-security

Researchers say they can spy on your browsing by measuring SSD activity through a browser API — claim FROST attack requires no permissions or user interaction to identify which apps and websites you're using

… Given that Google doesn’t classify fingerprinting as a security issue , browser-level fixes are unlikely in the near term. …

May 28, 2026 · Luke James

tomshardware.com › software › operating-systems

Operating System News, Analysis and Features | Tom's Hardware

Operating Systems Latest about Operating Systems AMD's legendary K5, its first independently-designed processor, is being removed from Linux By Mark Tyson Published 10 May 26 Linux Linux mascot Tux the penguin hits 30 years old — Linus Torvalds outlined the design of the 'slightly overweight pengui… …

May 10, 2026

tomshardware.com › tech-industry › artificial-intelligence

Microsoft warns GPU mining malware is being spread to users through SEO poisoning and AI chatbots — cryptojacking campaign targets gamers and high-end PC users with downloads disguised as popular PC utilities

… From there, the malware established six separate persistence mechanisms, added Microsoft Defender exclusions, checked for virtual machines and security -analysis tools, and used process hollowing to inject mining code into trusted Microsoft-signed .NET utilities such as MSBuild.exe, InstallUtil.exe… …

May 29, 2026 · Etiido Uko

tomshardware.com › software

Software News, Analysis and Features | Tom's Hardware

Software Latest about Software Linus Torvalds says AI bug reports have made the Linux security mailing list 'almost entirely unmanageable' By Luke James Last updated 18 May 26 Linux Google floats reduced initial 5GB free cloud storage limit, users claim By Kunal Khullar Published 15 May 26 Cloud St… …

May 18, 2026