The latest Microsoft Patch Tuesday rollout featured no zero-days. However, an angry hacker has just dropped two new 0-day exploits targeting Windows users.

F5’s May 2026 quarterly security notification details 51 high and medium-severity vulnerabilities impacting BIG-IP, BIG-IQ, ...

A critical NGINX vulnerability, undiscovered for 18 years, allows hackers to crash servers with ease and even take full control without authentication in some common configurations. Emergency patches ...

A critical vulnerability affecting certain configurations of the Exim open-source mail transfer agent could be exploited by ...

SAP has released 15 new security notes, including two addressing critical code injection flaws in S/4HANA and Commerce.

Admins with Dynamics 365 on-prem should also take note of a “severe” vulnerability that allows remote code execution.

A vulnerability in Apache HTTP Server’s HTTP/2 protocol handling now has working exploit code circulating among security ...

Texas has executed a death row inmate who fatally stabbed his girlfriend and her 8-year-old son in a fit of rage before he turned the knife on her 12-year-old son, who miraculously survived the attack ...

New research exposes how prompt injection in AI agent frameworks can lead to remote code execution. Learn how these ...

AI-assisted security analysis uncovered critical PostgreSQL and MariaDB vulnerabilities that remained hidden for more than two decades, highlighting the growing importance of continuously auditing ...

CVE-2026-0300 exploited after April 9 attempts enables PAN-OS RCE, leading to stealth espionage and lateral movement by April ...

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...