Drupal: Critical SQL injection flaw now targeted in attacks

Drupal is warning that hackers are attempting to exploit a "highly critical" SQL injection vulnerability announced earlier ...
SecurityWeek

Hackers Earn $1.3 Million at Pwn2Own Berlin 2026

Pwn2Own Berlin 2026 participants earned a total of nearly $1.3 millon for exploits targeting Windows, Linux, VMware, Nvidia, ...
TweakTown

Trump Mobile data leak exposes only 30,000 orders, far below earlier claims of 600,000

Trump Mobile leaks 30,000 orders and customer data via simple exploit, revealing a far smaller customer base than previously ...
SecurityWeek

Drupal Vulnerability in Hacker Crosshairs Shortly After Disclosure

Drupal warns users that it has seen attempts to exploit CVE-2026-9082 and security firms are seeing attacks against thousands ...

DeFi hacks shake institutional confidence as risks outpace yields

Institutions exploring DeFi are growing wary of bridge exploits, opaque risk exposure and yields that no longer justify the ...
The Hacker News

Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV

Drupal CVE-2026-9082 exploitation hit 15,000 attempts across 65 countries, forcing urgent patches by May 27, 2026.
Rappler

First AI-developed ‘zero-day’ exploit discovered as AI threats become top concern

AI tools are revolutionizing cyberattacks, lowering barriers for attackers and enabling sophisticated exploits, while ...
Android

Trump Mobile Has a Data Leak Problem: Emails and Phone Numbers Allegedly Involved

A security vulnerability on TrumpMobile.com reportedly exposed the personal data of pre-order customers, including names, email addresses, phone numbers, and mailing addresses. The same exploit ...
Tech Times

Europol Seizes First VPN User Database, Putting 5,000 Criminal Accounts at Risk

Europol and Eurojust announced Thursday the dismantling of First VPN, a criminal anonymization service that appeared in ...
Morning Overview on MSN

The average time from a vulnerability being published to a working exploit is now just 10 hours

In late May 2023, a critical flaw in the MOVEit file-transfer platform was publicly disclosed. Within hours, the Cl0p ...

Is AdultFriendFinder safe to use? What a cybersecurity expert says.

To better understand the risks of using AdultFriendFinder, we consulted Anna Larkina, Web Data and Privacy Analysis Expert at ...
Hosted on MSN

Apple pushes urgent iOS update to stop 'DarkSword' exploit

Critical security patch: Apple's iOS/iPadOS 26.3 fixes CVE-2026-20700, a WebKit flaw enabling remote code execution from a single click on a malicious link. Why it matters: The 'DarkSword' exploit can ...