What is Dirty Frag?: A flaw in IPSec-related modules of the Linux kernel allows local users to gain root access without complex conditions. Why it matters: The exploit impacts most Linux systems since ...

A great disturbance in the cyberspace, as if millions of sysadmins suddenly cried out in terror.

Threat actors are using public exploits for a critical authentication bypass flaw in ProjectSend to upload webshells and gain remote access to servers. The flaw, tracked as CVE-2024-11680, is a ...

Panel patches authentication flaw across supported versions, prompting Namecheap port blocks and temporary access limits.

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Every security team’s nightmare came true over the weekend: a ...

During the second day of Pwn2Own Berlin 2025, competitors earned $435,000 after exploiting zero-day bugs in multiple products, including Microsoft SharePoint, VMware ESXi, Oracle VirtualBox, Red Hat ...

A week after Symantec discovered a zero-day attack based on the RealPlayer media player, a complex maze of investigation is ongoing to sort out what role 24/7 Real Media ad servers played in ...

A recent incident has pushed the widely used remote access tool, ScreenConnect, into the spotlight. The healthcare sector, a commonly targeted field, found itself facing a significant threat. Threat ...