Apple on Monday published 11 new security advisories to inform customers about dozens of vulnerabilities patched in its ...

Depthfirst has published technical details and proof-of-concept (PoC) exploit code targeting a critical NGINX vulnerability.

Microsoft is working to patch CVE-2026-42897, an Exchange Server zero-day vulnerability that has been exploited in attacks.

Cisco has patched yet another critical SD-WAN zero-day vulnerability, the sixth SD-WAN flaw whose exploitation came to light ...

Other noteworthy stories that might have slipped under the radar: Nvidia cloud gaming data breach, Android 17 security upgrades, FBI warning after ShinyHunters hacks Canvas. SecurityWeek’s weekly ...

For the first time, Google has identified a zero-day exploit believed to have been developed using artificial intelligence.

Google has released a Chrome 148 update that resolves 79 vulnerabilities, including 14 critical-severity security defects.

OpenAI has rotated code-signing certificates after code repositories containing them were compromised in the TanStack supply ...

Instructure's Canvas has been brought back online after it was disrupted by a cyberattack attributed to ShinyHunters hackers.

Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...

Microsoft patches a critical Outlook vulnerability tracked as CVE-2026-40361 that can be exploited for remote code execution.

The company that operates online learning system Canvas said it struck a deal with hackers to delete the data they pilfered ...