A public proof-of-concept exploit has been released for CVE-2026-24294, a Windows SMB Server vulnerability that can let a low-privileged local attacker gain SYSTEM access on…
GitHub’s Advisory Database hit a record in May 2026, publishing 1,560 reviewed advisories in one month. The figure was more than five times its normal…
Indian cybercrime authorities have warned companies about a “Boss Scam” that hijacks WhatsApp Web sessions and uses real executive accounts to order fraudulent money transfers.…
SystemBC malware is still helping attackers hide command-and-control traffic, tunnel through infected machines, and maintain persistent access inside compromised networks. The malware, also tracked as…
A Bing search for ManageEngine OpManager led an IT user to a fake download page that delivered malware and eventually Akira ransomware, according to a…
A critical vulnerability in Progress Kemp LoadMaster can let unauthenticated attackers run commands as root on affected appliances when the API is enabled and reachable.…
Security researchers have disclosed six vulnerabilities in Apple AirDrop and Google/Samsung Quick Share that could let nearby attackers disrupt devices, manipulate protocol behavior, or crash…
A newly disclosed attack technique called BioShocking shows how AI-powered browsers can be manipulated into leaking credentials and other sensitive data from a user’s signed-in…
Microsoft Teams has added new controls that stop detected external bots from joining meetings without explicit approval. The feature gives Teams administrators and meeting organizers…
A Reddit post has raised new privacy questions around Anthropic’s Claude Code after a user alleged that the CLI tool contains hidden logic for detecting…
February 10, 2026
1 comment 
