Google has released security updates to patch 129 Android security vulnerabilities, including an actively exploited zero-day flaw in a Qualcomm display component.

Trend Micro has patched two critical Apex One vulnerabilities that allow attackers to gain remote code execution (RCE) on vulnerable Windows systems.

Verify has described the activity as the “first known mass iOS attack” campaign of its kind. Google said fragments of the exploit first appeared last February, with ties to an unnamed “customer of a ...

Security experts have identified three critical vulnerabilities in Anthropic's Claude Code, potentially allowing remote code ...

Anthropic fixed the flaws - but the AI-enabled attack surfaces remain Security vulnerabilities in Claude Code could have allowed attackers to remotely execute code on users' machines and steal API ...

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach reports, expert analysis, and actionable insights for infosec professionals and ...

AI-assisted development accelerates software delivery but expands the threat surface. From prompt injection and malicious MCP ...

The vulnerabilities highlight a big drawback to integrating AI into software development workflows and the potential impact ...

Zyxel has patched a critical-severity OS command execution vulnerability that is remotely exploitable via crafted UPnP requests.

A compromised Chrome extension with 7,000 users was updated to deploy malware, strip security headers, and steal cryptocurrency wallet seed phrases.

Juniper Networks released an out-of-band update for its Junos OS Evolved network operating system to patch a critical vulnerability.

Broadcom released various patches to tackle vulnerabilities concerning its Aria multicloud management platform.