IEEE

Your Fix Is My Exploit: Enabling Comprehensive DL Library API Fuzzing with Large Language ...

Abstract: Deep learning (DL) libraries are widely used to form the basis of various AI applications in computer vision, natural language processing, and software engineering domains. Despite their ...
CSOonline

Attackers exploit decade‑old Windows driver flaw to shut down modern EDR defenses

Attackers abused a signed but long-revoked EnCase Windows kernel driver in a BYOVD attack to terminate all security tools. In a recent incident, attackers abused a legitimate but vulnerable Windows ...
decrypt

CrossCurve Threatens Legal Action After $3M Cross-Chain Bridge Exploit

Add Decrypt as your preferred source to see more of our stories on Google. CrossCurve said Sunday an attacker exploited a flaw in its bridge contracts and identified 10 Ethereum addresses that ...
thecyberexpress

Russian APT28 Exploit Zero-Day Hours After Microsoft Discloses Office Vulnerability

Ukraine’s cyber defenders warn Russian hackers weaponized a Microsoft zero-day within 24 hours of public disclosure, targeting government agencies with malicious documents delivering Covenant ...
Kotaku

Steam Game Devs Call Exploit Allegations ‘Clickbait Exaggeration’ And ‘Malicious ...

The developers behind a popular “open source MMO RTS sandbox game for programming enthusiasts” on Steam, named Screeps: World, have been forced to update their game “in order to protect both players” ...
Bleeping Computer

Hackers exploit critical telnetd auth bypass flaw to get root

A coordinated campaign has been observed targeting a recently disclosed critical-severity vulnerability that has been present in the GNU InetUtils telnetd server for 11 years. The security issue is ...
CoinTelegraph

Saga pauses chainlet after $7M exploit that depegged its stablecoin

Saga’s US dollar-pegged stablecoin has dropped to $0.75, while the protocol's total value locked has fallen by around 55% over the past 24 hours. Layer-1 blockchain protocol Saga has paused its ...
dlnews

Truebit hit by $26m exploit as attackers increasingly target older DeFi protocols

Truebit suffers a $26 million exploit. It comes as attacks targeting older DeFi protocols increase. Truebit, an Ethereum-based verification protocol, has been left reeling after a hacker stole $26 ...
SecurityWeek

Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure

Fresh attacks targeted three VMware ESXi vulnerabilities that were disclosed in March 2025 as zero-days. A Chinese threat actor built an exploit for three VMware ESXi vulnerabilities that were patched ...
Dark Reading

Phishers Exploit Office 365 Users Who Let Their Guard Down

Threat actors are using complex trickery in their phishing attacks to make email recipients believe a message was sent from within the organization. That's according to Microsoft Threat Intelligence, ...
SecurityWeek

Hackers Exploit Zero-Day in Discontinued D-Link Devices

An OS command injection vulnerability in discontinued D-Link gateway devices has been exploited in the wild as a zero-day. Tracked as CVE-2026-0625 (CVSS score of 9.3), the security defect exists ...
Microsoft

Phishing actors exploit complex routing and misconfigurations to spoof domains

Phishing actors are exploiting complex routing scenarios and misconfigured spoof protections to effectively spoof organizations’ domains and deliver phishing emails that appear, superficially, to have ...