Dark Reading

In Less Than 24 Hours, Attackers Weaponize Cisco CUCM Flaw

The flaw enables server-side request forgery (SSRF) and escalates privileges to root, impacting Cisco Unified CM and Unified ...
Network World

Attackers exploit Cisco Unified CM flaw weeks after patch release

New activity targets CVE‑2026‑20230, an SSRF bug that can allow unauthenticated file writes and potential root‑level access ...
SecurityWeek

Hackers Exploiting Cisco Unified CM Vulnerability

CVE-2026-20230, a recently patched vulnerability affecting Cisco’s Unified Communications Manager, is being exploited in ...

New Apple Exploit Exposes Millions of iPhones Worldwide, No Software Fix Available

Researchers disclosed usbliter8, a SecureROM exploit affecting older Apple devices that can bypass boot protections with ...
latesthackingnews.com

usbliter8 Exploit Achieves Code Execution in Apple’s Unpatchable SecureROM

Paradigm Shift has published a working exploit for Apple's A12 and A13 SecureROM. The flaw is in hardware, so no patch will ...
The Hacker News

AutoJack Attack Lets One Web Page Hijack AI Agent for Host Code Execution

Microsoft details AutoJack exploit chain targeting AutoGen Studio MCP WebSocket in pre-release builds, enabling ...
SecurityWeek

3 Recently Patched Fortinet FortiSandbox Vulnerabilities in Hacker Crosshairs

Three recently patched Fortinet FortiSandbox vulnerabilities are being targeted in the wild, according to exploit ...
Microsoft

Beyond the benchmark: Advancing security at AI speed

Read how Microsoft Security has advanced its agentic vulnerability detection system, codename MDASH, integrating into ...
The Hacker News

Cisco Releases Security Updates for Actively Exploited SD-WAN Manager Flaw

Cisco patched CVE-2026-20262 in Catalyst SD-WAN Manager after limited exploitation, with federal fixes due June 29.

AMD Refuses To Pay A $10,000 Bug Bounty For A Flaw It Never Caught

A major exploit found in AMD software could have caused serious damage if a researcher hadn't found it, but AMD is refusing ...
Hosted on MSN

Three Nightmare Eclipse Zero-Days Patched in June 2026 Update

Nightmare Eclipse Zero-Days: Three zero-day vulnerabilities disclosed by Nightmare Eclipse, complete with exploit code, were ...
PC World

Microsoft patches a record 206 flaws—and one is already being exploited

PCWorld reports Microsoft patched a record 206 security flaws in June 2024, including 19 critical remote code execution vulnerabilities affecting Windows kernel and HTTP services. One vulnerability in ...