Search

hothardware.com › news

Hackers Exploit Meta's AI Chatbot To Hijack Prominent Instagram Accounts

…With that change in place the hacker can receive a one-time security code and change the password to the account. The one hoop the bad actors had to jump through was…

Jun 3, 2026 · Alan Velasco

Top stories

bleepingcomputer.com

Cisco warns of critical Unified CM flaw with PoC exploit code

1d ago

bleepingcomputer.com

VS Code zero-day lets hackers steal GitHub tokens in one click

2d ago

bleepingcomputer.com

New Gogs zero-day flaw lets hackers get remote code execution

1w ago

bleepingcomputer.com

KnowledgeDeliver flaw exploited as a zero-day to install web shells

1w ago

bleepingcomputer.com › news › security

Hackers earn $1,298,250 for 47 zero-days at Pwn2Own Berlin 2026

…33 AM The Pwn2Own Berlin 2026 hacking contest has concluded, with security researchers collecting $1,298,250 in rewards after exploiting 47 zero-day flaws. The competition took place at the OffensiveCon…

May 18, 2026 · Sergiu Gatlan

tomshardware.com › tech-industry › cyber-security

Microsoft BitLocker-protected drives can now be opened with just some files on a USB stick — YellowKey zero-day exploit demonstrates an apparent backdoor

…Last month, Security researcher Chaotic Eclipse (aka Nightmare-Eclipse ) published two zero-day exploits, BlueHammer and RedSun , that made Windows Defender offer up system administrator privileges. They did this after their disclosure…

May 13, 2026 · Bruno Ferreira

macrumors.com › 2026 › 05 › …

Apple Alerted to macOS Security Vulnerability Uncovered With AI Tool

…Specifically, they used the model to write code that links together two macOS bugs in a way that resulted in what is known as a privilege escalation exploit. The security researchers said…

May 14, 2026 · Joe Rossignol

Discussions and forums

Hacker News · u/cayleyh · 2w ago

Ask HN: Are advances in AI going to push Linux to a micro-kernel?

This is something that has been bouncing around my head for the past couple weeks with the flood of security related news around Mythos and the number of 0days being found.Microkernels, unikernals, hardware-enforced capa…

4 9

Hacker News · u/introvertmac · Dec 3, 2025

Tell HN: Compliance is not equal to Security

For over a decade, I’ve been doing bug bounty, security audits, and security consulting. And if there’s one thing I’ve seen repeatedly, it’s this:Most startups call a security engineer or hire a security agency only when…

1 1

r/netsec · u/unknownhad · 3w ago

The compression of the exploit timeline: Why n-day gaps and 90-day embargoes are failing in practice.

The traditional vulnerability disclosure timeline relies on a fundamental assumption: exploit development and vulnerability discovery take time. Over the last 12 months the integration of LLMs into offensive tooling has …

Hacker News · u/honeylabs · 2w ago

Show HN: HoneyLabs – Public honeypot threat Intel feed and MCP server

I've been running a small fleet of honeypots for about a year. They get hit by a mix of research scanners (Censys, Shadowserver, etc.), old worms, and a bump of CVE probes the day a new Nuclei template ships. The data wa…

4 2

theregister.com › security › 2026 › …

Project Glasswing and open source: The good, bad, and ugly

…Software is finite; it has a finite number of defects, and some security defects are more important than others. The more we can eliminate the vulnerabilities, the fewer that can be exploited…

Apr 10, 2026 · Steven J. Vaughan-Nichols

anthropic.com › research › glasswing-initial-update

Project Glasswing: An initial update

…To begin, we’ve released Claude Security in public beta for Claude Enterprise customers. It’s a tool that helps teams scan their codebases for vulnerabilities, and which can generate proposed fixes…

May 22, 2026

hothardware.com › news

Hot on the Heels of Copy Fail, New Linux Bugs Grant Root Privileges

…As we've seen with Windows, only one of the recent exploits courtesy of Nightmare-Eclipse have  been patched , but not before the security holes and exploits were publicly disclosed. Tags:   Linux…

May 23, 2026 · Chris Harper

techpowerup.com › 348954

BitUnlocker Downgrade Attack Bypasses TPM-Only Windows 11 BitLocker in Under 5 Minutes

…15 Comments) Security researchers at Intrinsec released "BitUnlocker," a tool bypassing Windows 11 BitLocker encryption in under five minutes. This exploit leverages a downgrade attack to pry open drives, exploiting the gap…

May 12, 2026

pcgamer.com › software › linux

Security researchers uncover Linux exploit that affects all 'distributions shipped since 2017'

…The security research team at Theori disclosed the vulnerability last Wednesday , though CISA reports that threat actors have since been observed using the exploit in the wild. The security flaw has been…

May 5, 2026 · Jess Kinghorn

windowscentral.com › microsoft

A zero-day BlueHammer Windows exploit was leaked by a researcher fed up with Microsoft's Security Response Center — and the rushed fix isn't perfect

A zero-day BlueHammer Windows exploit was leaked due to alleged Microsoft Security Response Center ineptitude. Although it's since been patched, it was live for two weeks, suggesting that Microsoft's…

Apr 16, 2026 · Cale Hunt