Meta starts addressing WhatsApp vulnerabilities that expose user metadata that allows adversaries to ‘fingerprint’ a device’s ...

As the year draws ever closer to its end, the zero-day vulnerabilities just keep on coming. Google has now confirmed the eighth such zero-day vulnerability, for which a known exploit has been reported ...

An unpatched zero-day vulnerability in Gogs, a popular self-hosted Git service, has enabled attackers to gain remote code execution on Internet-facing instances and compromise hundreds of servers.

OpenAI has warned that its upcoming artificial intelligence models could pose a “high” cybersecurity risk, as their capabilities advance rapidly. The AI models might either develop working zero-day ...

AI coding agents are highly vulnerable to zero-click attacks hidden in simple prompts on websites and repositories, a ...

Chinese cyberattacks on Taiwan's key infrastructure, from hospitals to banks, rose 6% in 2025 from the previous year to an ...

Attackers are already exploiting one of the 57 vulnerabilities for which Microsoft issued a patch this week, and proof-of-concept (PoC) exploits are publicly available for two other vulnerabilities.

Forbes contributors publish independent expert analyses and insights. Lars Daniel covers digital evidence and forensics in life and law. Dartmouth College has confirmed that a three-day cyberattack in ...

Windows 10 is no longer going to receive free security updates in the future, but that doesn't mean you have to update to ...

Microsoft ended 2025 with its final Patch Tuesday release, issuing fixes for 56 vulnerabilities across Windows, Office and several other products. The December update includes three zero-day flaws — ...

While the shortest distance between two points is a straight line, a straight-line attack on a large language model isn't always the most efficient — and least noisy — way to get the LLM to do bad ...