Report: 1 in 4 Data Breaches Exploit Third-Party Vulnerabilities

Supply chain vulnerabilities and AI-powered phishing attacks are the latest trends in cybersecurity threats, says a new ...

Exclusive: Bain and Greylock bet $42 million that AI agents can finally fix cybersecurity’s messiest bottleneck

Cogent Security boasts an all-star AI team—and is promising to close the gap between finding software flaws and actually fixing them.

Telegram channels expose rapid weaponization of SmarterMail flaws

Underground Telegram channels shared SmarterMail exploit PoCs and stolen admin credentials within days of disclosure. Flare explains how monitoring these communities reveals rapid weaponization of CVE ...
SecurityWeek

Vulnerabilities in Popular PDF Platforms Allowed Account Takeover, Data Exfiltration

Vulnerabilities in PDF platforms from Foxit and Apryse could have been exploited for account takeover, data exfiltration, and ...

Critical n8n Security Update: Public RCE Vulnerability PoC Now Available

SecureLayer7 Blackf0g researcher team A critical RCE vulnerability in n8n has been identified and patched. n8n’s AI ...
SecurityWeek

China Revives Tianfu Cup Hacking Contest Under Increased Secrecy

China’s Tianfu Cup hacking contest made its return in 2026, now overseen by the government and marked by limited transparency.
Infosecurity Magazine

FIRST Forecasts Record-Breaking 50,000+ CVEs in 2026

This year should break all the records in terms of vulnerability disclosed, reaching or even surpassing 50,000 new CVEs ...
Redmondmag.com

Microsoft Addresses 6 Actively Exploited Zero-Days in February's Patch Tuesday

Microsoft's February Patch Tuesday release addresses 58 vulnerabilities across Windows, Office and several other products, ...
GovInfoSecurity

Feds Signal Shift in Vulnerability Oversight

The National Institute of Standards and Technology is preparing to shift its role in the globally-adopted vulnerability ...
CSOonline

When responsible disclosure becomes unpaid labor

Responsible disclosure is built on an assumption that “doing the right thing” will be met with timely action, fair treatment, and professional respect, if not a bounty award. Increasingly, that ...
autoevolution

Lucid Might Be the Next Fisker, As Software Bugs and Vulnerabilities Are Ignored

Lucid Motors has already launched two EVs and is preparing for its third, a compact crossover rivaling the Tesla Model Y. However, the EV startup has disappointed its customers with buggy software, ...