Telegram zero‑click RCE flaw (ZDI‑CAN‑30207) exposes users to full system compromise—update now or disable media auto‑download.
Read More
Handala Hack exposes how Iranian actors leveraged Intune admin rights and Telegram C2 to wipe 200k systems—here’s the technical deep dive.
Read More
Critical n8n RCE vulnerabilities expose workflows to backdoors—patch now.
Read More
Discover how attackers use Windows Terminal to deploy Lumma Stealer via ClickFix – a deep dive into the latest file‑less, LOLBin attack chain.
Read More
“CVE‑2026‑3888 turns a timing race between snap‑confine and systemd‑tmpfiles into a root‑level LPE on Ubuntu 24.04+. Patch now or harden manually.”
Read More
CanisterWorm turns Kubernetes into a geopolitical weapon, wiping Iranian machines via ICP canisters—here’s how to stop it.
Read More
Windows Error Reporting LPE: CVE‑2026‑20817 PoC released—learn how attackers elevate to SYSTEM via ALPC.
Read More
Attackers are now actively disabling EDRs before ransomware hits—learn how to spot and stop the killers.
Read More
Langflow’s public‑flow endpoint now a hotbed for RCE – patch or disable it immediately to stop attackers from hijacking your AI workflows.
Read More
PTC Windchill's CVE‑2026‑4681: a critical deserialization flaw that can give attackers remote code execution—here's what you need to know.
Read More