What is Dirty Frag?: A flaw in IPSec-related modules of the Linux kernel allows local users to gain root access without complex conditions. Why it matters: The exploit impacts most Linux systems since ...

Panel patches authentication flaw across supported versions, prompting Namecheap port blocks and temporary access limits.

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Every security team’s nightmare came true over the weekend: a ...

Threat actors are using public exploits for a critical authentication bypass flaw in ProjectSend to upload webshells and gain remote access to servers. The flaw, tracked as CVE-2024-11680, is a ...

Critical zero-day: ‘Dirty Frag’ lets local users instantly gain root on most Linux systems since 2017, with no patch yet available. Embargo broken: The flaw was disclosed prematurely, likely due to ...

During the second day of Pwn2Own Berlin 2025, competitors earned $435,000 after exploiting zero-day bugs in multiple products, including Microsoft SharePoint, VMware ESXi, Oracle VirtualBox, Red Hat ...

A week after Symantec discovered a zero-day attack based on the RealPlayer media player, a complex maze of investigation is ongoing to sort out what role 24/7 Real Media ad servers played in ...

A recent incident has pushed the widely used remote access tool, ScreenConnect, into the spotlight. The healthcare sector, a commonly targeted field, found itself facing a significant threat. Threat ...