Critical SolarWinds Serv-U flaws offer root access to servers

SolarWinds has patched four critical Serv-U remote code execution vulnerabilities that could grant attackers root access to unpatched servers.
Dark Reading

Critical Grandstream VoIP Bug Highlights SMB Security Blind Spot

CVE-2026-2329 allows unauthenticated root-level access to SMB phones, so attackers can intercept calls, commit toll fraud, and impersonate users.
Tech Digest

Dark web marketplace exploits stolen air miles for pennies, investigation shows

Cybercriminals have found a lucrative niche in the shadow economy by trading stolen air miles for as little as 56p. A new investigation by NordVPN and travel eSIM provider Saily has exposed a massive ...
World Socialist Web Site

Australia: Bipartisan deal exploits Bondi shootings to impose expanded “hate crime” laws

After days of crisis within the political establishment, the Albanese Labor government formed a partnership with the right-wing Liberal Party to push far-reaching “hate crime” laws through both houses ...
PCGamesN

Best Hytale servers to join today

What are the best Hytale servers? Just like Minecraft, Hytale is a fantastic game to explore alone, but it's so much better with others. After years spent making friends in Minecraft servers, we've ...
GameSpot

Ubisoft Is Sending Out Compensation To Rainbow Six Siege Players Over Hack

GameSpot may get a commission from retail offers. It was anything but a wonderful holiday season for Ubisoft's Rainbow Six Siege players. Following a massive hack that dumped billions of credits into ...
CoinTelegraph

Truebit exploit exposes smart-contract flaw behind $26M token mint

Truebit lost $26 million after a smart-contract overflow bug let an attacker mint tokens at near-zero cost, sending the TRU price down 99%. A $26 million exploit of the offline computation protocol ...
Searchenginejournal.com

WooCommerce WordPress Plugin Exploit Enables Fraudulent Charges

The WooCommerce Square plugin enables WordPress sites to accept payments through the Square POS, as well as synchronize product inventory data between Square and WooCommerce. Square plugin enables a ...
World Socialist Web Site

New Zealand government exploits Auckland fire to slander striking firefighters

New Zealand’s National Party-led government has seized on a fire that broke out in Auckland during a brief firefighters’ strike on January 9 to escalate a vicious propaganda campaign against the ...
CoinTelegraph

Trust Wallet will cover $7M lost in Christmas Day hack, CZ says

The malicious Trust Wallet extension has also been exporting users’ personal information, pointing to potential insider activity, according to cybersecurity company SlowMist. Trust Wallet users lost ...
Forbes

Hack Your Own Password — Windows Users Urged To Take Action Now

When you think of cyberattacks that compromise your account security, maybe you envisage Microsoft zero-day vulnerabilities being exploited in your software, or perhaps a hacker using ...