CISA tells feds to patch 13-year-old Apache ActiveMQ bug
Security CISA tells feds to patch 13-year-old Apache ActiveMQ bug under active attack Bug hiding in plain sight for over a decade lands on KEV list CISA is sounding the…
Search
All sources
theregister.com
22
bleepingcomputer.com
13
phoronix.com
11
techcrunch.com
7
neowin.net
7
techradar.com
6
theverge.com
6
9to5mac.com
4
tomshardware.com
3
fudzilla.com
3
androidauthority.com
3
windowscentral.com
3
Videos
More videos
This Linux Bug Gives Attackers Root
Firefox JIT Bug - Pwn2Own Documentary (Part 3)
AI Is Hacking Everything Now...
I'd blame Roblox for my data breach too; Apple fixes Notification History bug - Talking Heads Ep.430
5 Critical UniFi CVEs and How to Avoid the Risk
Advancing silicon security through Formal Verification | Chips & Salsa | Intel
Cadence Cuts Chip Verification From Weeks to Hours With AI Engineers and NVIDIA OpenShell
CopyFail Compromises The Last 9 Years Of Linux Distros
AMD Gaslights Security Researcher, Changes Rules Retroactively
Mythos unleashed on Opensource
The Supply Chain Attacks All Have One Thing in Common. It's GitHub.
Linux fights back on AI slop, More Adobe on Linux, big browser redesigns - Linux Weekly News
Top stories
Oracle warns of security bug that hackers abused to breach 100+ companies | TechCrunch
2d agoCISA Tells US Agencies to Fix Security Bugs in as Little as 3 Days Thanks to AI Threats
3d agoCISA warns of active attacks exploiting Android, Linux bugs
1w agoMicrosoft says it won’t go after security researchers — after the internet called them out
1w agoHugging Face Contributes Safetensors To PyTorch Foundation To Secure AI Model Execution
…Safetensors aims to help mitigate arbitrary code execution risks and more. Safetensors is a file format for storing and loading model weights while avoiding the risk of arbitrary code execution and security…
Microsoft blames macOS for annoying Teams bug
…A temporary mitigation involves opening your device's settings, navigating to System Settings > Privacy & Security > Location Services , and toggling location access for "Microsoft Teams" and "Microsoft Teams ModuleHost" to on and off…
Critical vm2 sandbox bug lets attackers execute code on hosts
…The security issue is tracked as CVE-2026-26956 and has been confirmed to impact vm2 version 3.10.4, although earlier releases may also be vulnerable. Proof-of-concept (PoC) exploit…
Discussions and forums
MSI called my firmware bug a "Linux issue." AMD's engineers disagree. Now two BIOS updates later, still no fix.
UPDATE: Significant new information has emerged. MSI's technical team went well above and beyond once this reached the right people, and the evidence now points clearly away from MSI as the responsible party. A more comp…
Ask HN: Are advances in AI going to push Linux to a micro-kernel?
This is something that has been bouncing around my head for the past couple weeks with the flood of security related news around Mythos and the number of 0days being found.Microkernels, unikernals, hardware-enforced capa…
4
9
Claude Fable 5: mid-tier results on coding tasks
Despite all the hype around Mythos, Claude Fable 5 returned pretty mid-tier results on coding tasks: 59.8% passing functional solves and just 19.0% passing security solves on a benchmark of 200 real-world tasks.
A third vulnerability has hit the kernel
This is part of the dirtyfrag family, but is different enough to warrant its own CVE. https://www.bleepingcomputer.com/news/security/new-fragnesia-linux-flaw-lets-attackers-gain-root-privileges/ Known as Fragnasia and tr…
Tell HN: Compliance is not equal to Security
For over a decade, I’ve been doing bug bounty, security audits, and security consulting. And if there’s one thing I’ve seen repeatedly, it’s this:Most startups call a security engineer or hire a security agency only when…
1
1
Hot on the Heels of Copy Fail, New Linux Bugs Grant Root Privileges
…SSH-keysign-pwn was discovered by the Qualys Threat Research Unit, and the official CVE tracking code is CVE-2026-46333. The bug that enables this exploit has been in the Linux…
phpBB forum fixes auth bypass bug lurking for a decade
…It impacts phpBB versions 4.0.0-a2 or 3.3.16 and below. Researchers at application security company Aikido found the bug on June 2nd and reported it through the developer…
Claude Mythos Finds Zero-Days—But Rust Quietly Shuts The Door
…While an AI tool can find vulnerabilities and potentially assist with bug triaging, a dedicated security engineer still has to review any potential patches, evaluate the AI’s analysis of the root…
Linux May Drop Old Network Drivers Now That AI-Driven Bug Reports Are Causing A Burden
Old network maintenance drivers are becoming a maintenance burden in the era of fuzzing and predominantly AI-driven bug detection causing an uptick in possible bug/security reports to upstream Linux kernel…
Microsoft confirms Windows 11 security update install issues
…Microsoft released the KB5089549 cumulative update last week, along with dozens of other bug fixes, security patches, and improvements, including a fix for another known issue that causes some Windows 11 systems…
AI bug hunters give Linux a headache – Fudzilla.com
…The Linux project has responded with tools and updated documentation. Part of that paperwork now addresses “an uptick in bug and security reports from discoveries made in full or in part with…