Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

The LeakNet ransomware gang is now using the ClickFix technique for initial access into corporate environments and deploys a ...

Skia graphics lib and V8 JavaScript engine brings browser's tally of actively exploited bugs to three in 2026 Google has pushed out an emergency Chrome update to fix two previously unknown ...

One allows a remote attacker to execute arbitrary code inside a sandbox, the other could result in loss of sensitive ...

Google has just released an emergency Chrome update to patch two dangerous zero-day vulnerabilities being exploited by ...

ClickFix campaigns spread MacSync macOS infostealer via malicious Terminal commands since Nov 2025, targeting AI tool users ...

Google has released an out-of-band Chrome update to patch two zero-day vulnerabilities that are already being actively exploited.

Google patches two Chrome zero-days exploited in the wild, urging updates to version 146.0.7680.75/76 to prevent attacks.

Later in the same year, Microsoft claimed it began rolling out a “native” version of Copilot, which was not exactly native, ...

Google has confirmed CVE-2026-3913, a critical security vulnerability in Chrome. one that could enable a remote code execution attack simply by visiting a web page.

Ransomware criminals exploited CVE-2026-20131, a maximum-severity bug in Cisco Secure Firewall Management Center software, as a zero-day vulnerability more than a month before Cisco patched the hole, ...

Researchers from Google LLC and two cybersecurity companies have identified a set of zero-day exploits in iOS 18. Google’s GTIG threat intelligence team, Lookout Inc. and iVerify Inc. published their ...