Google detects first known AI-assisted zero-day exploit in the wild

Google says it has identified what may be the first real-world zero-day exploit developed with the help of artificial ...

Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin

Hackers are leveraging a critical authentication bypass vulnerability in the WordPress plugin Burst Statistics to obtain ...
CSO Online

Meet Fragnesia, the third Linux kernel vulnerability in a month

Linux admins reeling from handling last month’s CopyFail and last week’s Dirty Frag kernel vulnerabilities have a new ...

The First AI-Crafted Zero-Day Was Easy to Spot. The Next One May Not Be

Google reported the first confirmed AI-assisted zero-day exploit, raising new concerns about logic flaws, supply chain risk, ...

Zero-day exploit completely defeats default Windows 11 BitLocker protections

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker ...

18-year-old NGINX vulnerability allows DoS, potential RCE

An 18-year-old flaw in the NGINX open-source web server, discovered using an autonomous scanning system, can be exploited for ...
SecurityWeek

Mythos Proves Potent in Vulnerability Discovery, Less Convincing Elsewhere

Mythos outperformed rival models in vulnerability discovery, particularly in live-plus-source testing, but showed limitations ...
SecurityWeek

Researcher Drops YellowKey, GreenPlasma Windows Zero-Days

GreenPlasma enables elevation of privileges to System. A disgruntled security researcher this week publicly disclosed two ...
The Hacker News

18-Year-Old NGINX Rewrite Module Flaw Enables Unauthenticated RCE

NGINX Rift CVE-2026-42945 scores 9.2 after 18 years, enabling unauthenticated RCE or DoS via crafted HTTP requests.

The third major Linux kernel flaw in two weeks has been found - thanks to AI

AI is exposing Linux security holes faster than developers can patch them. Fragnesia is the latest. Here's what we know about ...

Tea Protocol announces June 4 mainnet launch and TGE on Aerodrome to secure open-source development in the AI era

This quarter, AI started writing its own exploits. Tea is shipping the trust layer underneath it. Code Is Abundant. Trust Is ...

Microsoft Windows Alert—Angry Hacker Drops 2 New Zero-Day Exploits

The latest Microsoft Patch Tuesday rollout featured no zero-days. However, an angry hacker has just dropped two new 0-day ...