SecurityWeek

Adobe Patches Reader Zero-Day Exploited for Months

Adobe released emergency patches for CVE-2026-34621, a critical Acrobat and Reader zero-day that has been exploited in the wild.
BW Businessworld

Inside Claude Mythos: The AI Too Dangerous to Release

Anthropic built Claude Mythos Preview — the most powerful AI ever developed — watched it cover its tracks in testing, and ...
Infosecurity-magazine.com

'CursorJack’ Attack Path Exposes Code Execution Risk in AI Development Environment

A method that could enable code execution through manipulated installation links in an AI development environment has been identified by security researchers. The technique, dubbed CursorJack by ...
GitHub

SPFlashToolV6 will not run

I’ve reinstalled it multiple times, I even fully reinstalled windows on my machine just in case and I keep getting the following 4 error dialog boxes in a row ...
Infosecurity-magazine.com

Zero-Click FreeScout Bug Enables Remote Code Execution

Security researchers have urged FreeScout customers to patch a maximum-severity remote code execution (RCE) vulnerability which needs no user interaction to achieve full system compromise.
WUSA

DC will proceed with 'decoupling' tax code and the April 15 filing deadline, chief financial officer says

WASHINGTON — After weeks of pressure from D.C. officials, the District's Chief Financial Officer (CFO), Glen Lee, issued a letter stating that his office will follow through with the tax code approved ...
HHS

Malicious Repo Files Could Hijack Claude Code Sessions

Multiple vulnerabilities in Anthropic's Claude Code could enable attackers to run harmful commands and steal API keys by hiding malicious files in a code repository, Check Point researchers found.
Bleeping Computer

Trend Micro warns of critical Apex One code execution flaws

Japanese cybersecurity software firm Trend Micro has patched two critical Apex One vulnerabilities that allow attackers to gain remote code execution (RCE) on vulnerable Windows systems. Apex One is ...
The Verge

Microsoft fixes Notepad flaw that could trick users into clicking malicious Markdown links

Bad actors could use the flaw to remotely load and execute malicious files on a victim’s computer. Bad actors could use the flaw to remotely load and execute malicious files on a victim’s computer. is ...
PC World

Windows Notepad is now complex enough to have a serious security flaw

PCWorld reports that Windows Notepad’s new Markdown support feature has introduced a serious remote code execution vulnerability with a high CVSS score of 8.8/7.7. The security flaw allows malicious ...
TechSpot

Unwanted AI upgrade to Windows Notepad created a serious security flaw

The big picture: Microsoft released its latest Patch Tuesday update this week with 59 hotfixes across Windows, Microsoft Office, Azure, and core system components. The update includes patches for six ...
TechRepublic

10K Claude Desktop Users Exposed by Zero-Click Vulnerability

A newly disclosed flaw in Anthropic’s Claude Desktop Extensions shows how a routine productivity feature can enable zero-click system compromise. LayerX researchers found that a single malicious ...