A researcher has come across what appears to be an actively exploited Adobe Acrobat and Reader zero-day vulnerability.

Adobe Reader zero-day exploited since Dec 2025 via malicious PDFs, enabling data theft and potential RCE, prompting urgent ...

A researcher has published a Windows zero-day exploit called BlueHammer on GitHub after Microsoft's Security Response Center ...

A security researcher frustrated with Microsoft has released the BlueHammer Windows zero-day exploit, telling the company, “I ...

Microsoft says that Storm-1175, a China-based financially motivated cybercriminal group known for deploying Medusa ransomware ...

Anthropic holds back its most advanced model yet to allow companies and institutions to prepare.

A simple prompt sent Claude Code on a mission that uncovered major security vulnerabilities in popular text editors — and ...

Microsoft says the financially motivated cybercrime group has exploited N-day and zero-day vulnerabilities in campaigns ...

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Some weeks start better than others. If you are a member of an ...

An exploit kit known as Coruna has appeared on GitHub, bundling working attack code for several Apple iOS vulnerabilities that were patched in 2023 and early 2024. The kit chains together at least ...

Oracle has silently fixed an Oracle E-Business Suite vulnerability (CVE-2025-61884) that was actively exploited to breach servers, with a proof-of-concept exploit publicly leaked by the ShinyHunters ...