7-Zip CVE-2026-14266 Heap Overflow Can Enable Code Execution
A security vulnerability in 7-Zip can allow attackers to execute code after a user opens a malicious file or visits a page containing specially crafted…
A security vulnerability in 7-Zip can allow attackers to execute code after a user opens a malicious file or visits a page containing specially crafted…
Two Scattered Spider hackers have each been sentenced to five years and six months in prison for the 2024 cyberattack on Transport for London. The…
CISA has warned that attackers are actively exploiting two critical Fortinet FortiSandbox vulnerabilities that allow remote command execution without authentication. The flaws, tracked as CVE-2026-39808…
Users have reported incidents in which coding agents allegedly deleted files outside their intended project directories, including documents and parts of Windows user profiles. One…
TP-Link has released security updates for two information-disclosure vulnerabilities affecting Kasa EC70 v4 and EC71 v4 cameras. The more serious flaw can enable passive traffic…
The U.S. Cybersecurity and Infrastructure Security Agency has warned that attackers are exploiting a critical Microsoft SharePoint Server vulnerability tracked as CVE-2026-58644. The flaw allows…
A newly identified macOS information stealer called ClickLock uses fake system prompts and repeated application crashes to pressure victims into entering their Mac login password.…
An Amazon Web Services billing error caused some customers to see cost estimates reaching billions or trillions of dollars. AWS says these figures were inaccurate…
A newly disclosed Windows vulnerability called LegacyHive can allow a local, low-privileged attacker to make the User Profile Service load another user’s registry hive, including…
PentestCode is a new open-source AI penetration testing agent that can run security tools, analyze their results and coordinate parts of an authorized security assessment…