Gravity SMTP Flaw Under Active Exploitation Across WordPress Sites
Security researchers are warning WordPress administrators...
GentleKiller Framework Helps Ransomware Disable EDR Defenses
A newly analyzed GentleKiller Framework is giving security...
Node.js Patches 12 Flaws Including TLS Bypass and DoS Bug
The Node.js project has issued critical security updates...
Critical Splunk Auth Bypass Flaw CVE-2026-20253 Actively Exploited
The U.S. Cybersecurity and Infrastructure Security Agency...
HazyBeacon Malware Hijacks AWS Lambda for Covert C2 Attacks
A sophisticated cloud-native malware campaign, tracked...
CVE-2026-50656: RoguePlanet Zero-Day Bypasses Microsoft Defender
Microsoft has officially confirmed a newly disclosed...
Splunk AI Toolkit Flaw Lets Admins Run Arbitrary OS Commands
Splunk has disclosed a critical security vulnerability in...
CVE-2026-4020: Gravity SMTP Flaw Exposes 100K WordPress Sites
Threat actors are actively exploiting a critical security...
Critical Joomla Plugin Flaw Allows Unauthenticated PHP Code Execution
A critical improper access control vulnerability has been...
OpenBSD PAP Auth Bypass Flaw Lurked Undetected for 27 Years
A critical authentication-bypass vulnerability hiding in...