Resources

Gold Sponsor

Silver Sponsor

Silver Sponsor


General Cyber News via Ars Technica Risk Assessment

PeopleSoft 0-day affecting hundreds of organizations steals gigabytes of data

Vulnerability in the Oracle-owned PeopleSoft software is about as critical as they come.
Publish Date: 6/12/2026
read more -->

Locked in heated rivalry with researcher, Microsoft fixes 0-day they disclosed

A separate zero-day also disclosed by Nightmare Eclipse appears to be patched as well.
Publish Date: 6/9/2026
read more -->

High-severity vulnerability in Linux caused by a single faulty character

Use-after-free bug can be exploited to evade sandbox defenses.
Publish Date: 6/9/2026
read more -->

For the 2nd time in weeks, Microsoft packages laced with credential stealer

73 packages run self-replicating stealer as soon as they're opened by an AI agent.
Publish Date: 6/8/2026
read more -->

How a USB-connected speaker can infect a PC without ever being touched

Seller of the Sound Blaster Katana V2X doesn't consider the behavior a vulnerability.
Publish Date: 6/5/2026
read more -->

Dashlane explains how attackers managed to download encrypted password vaults

By targeting large numbers of users, attackers increased their chances of success.
Publish Date: 6/4/2026
read more -->

Can't make sense of Dashlane's vault theft notification? You're not alone.

Security advisory leaves out key details. Dashlane maintains complete silence.
Publish Date: 6/3/2026
read more -->

Dozens of Red Hat packages backdoored through its official NPM channel

Anyone who has downloaded affected Red Hat packages should investigate immediately.
Publish Date: 6/1/2026
read more -->

Botnet of more than 17 million devices dismantled

The botnet was reportedly tied to a Russia-based residential proxy network.
Publish Date: 5/29/2026
read more -->

Fed up with vibe coders, dev sneaks data-nuking prompt injection into their code

Undisclosed addition in jqwik instructed AI coding agents to delete app output.
Publish Date: 5/28/2026
read more -->

Websites have a new way to spy on visitors: Analyzing their SSD activity

Telltale SSD activity can be measured in the browser using simple JavaScript.
Publish Date: 5/27/2026
read more -->

Millions of AI agents imperiled by critical vulnerability in open source package

"BadHost" was found in Starlette, a package with 325 million weekly downloads.
Publish Date: 5/26/2026
read more -->

US's big bet on quantum computing may not be entirely legal

Deal also launched the first quantum foundry company, but is there a need for it?
Publish Date: 5/25/2026
read more -->

Texas AG sues Meta over claims that WhatsApp doesn't provide end-to-end encryption

Critics note a lack of factual support in lawsuit filed by US Senate candidate.
Publish Date: 5/22/2026
read more -->

A hacker group is poisoning open source code at an unprecedented scale

GitHub is just the latest victim of TeamPCP, a gang that has carried out a spree of software supply chain attacks.
Publish Date: 5/22/2026
read more -->

US government takes $2 billion equity stake in nine quantum computing firms

Beneficiaries include startup backed by firm with links to the Trump family.
Publish Date: 5/21/2026
read more -->

Google publishes exploit code threatening millions of Chromium users

Google publishes exploit code before patch, reported 42 months earlier, is fixed.
Publish Date: 5/20/2026
read more -->

In stunning display of stupid, secret CISA credentials found in public GitHub repo

SSH keys, plaintext passwords, other sensitive data had been up since November 2025.
Publish Date: 5/19/2026
read more -->

Zero-day exploit completely defeats default Windows 11 BitLocker protections

It's not entirely clear how the exploit works. Microsoft says it's investigating.
Publish Date: 5/14/2026
read more -->

Cisco announces record revenue and 4,000 layoffs in the same day

Layoffs are "not a savings-driven restructure," CFO says.
Publish Date: 5/14/2026
read more -->


Copyright Ⓒ 2010 SecuritySpecifiers™