Broadcom has released patches for several vulnerabilities affecting VMware Aria Operations, including high-severity flaws.

Critical CVE-2026-2329 flaw in Grandstream GXP1600 VoIP phones enables unauthenticated RCE, call interception, and credential ...

Trend Micro has patched two critical Apex One vulnerabilities that allow attackers to gain remote code execution (RCE) on vulnerable Windows systems.

Security experts have identified three critical vulnerabilities in Anthropic's Claude Code, potentially allowing remote code ...

Anthropic fixed the flaws - but the AI-enabled attack surfaces remain Security vulnerabilities in Claude Code could have allowed attackers to remotely execute code on users' machines and steal API ...

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach reports, expert analysis, and actionable insights for infosec professionals and ...

Underground Telegram channels shared SmarterMail exploit PoCs and stolen admin credentials within days of disclosure. Flare explains how monitoring these communities reveals rapid weaponization of CVE ...

AI-assisted development accelerates software delivery but expands the threat surface. From prompt injection and malicious MCP ...

Zyxel has patched a critical-severity OS command execution vulnerability that is remotely exploitable via crafted UPnP requests.

Google released a Chrome security update patching three high-severity vulnerabilities, including memory flaws that could ...

Microsoft patches CVE-2026-20841, a high-severity Windows Notepad flaw that could allow code execution via malicious Markdown ...

CERT-In warns of a high-risk Chrome vulnerability on Windows, macOS and Linux. Update Chrome now to prevent system compromise ...