Hackers exploit critical telnetd auth bypass flaw to get root

A coordinated campaign has been observed targeting a recently disclosed critical-severity vulnerability that has been present ...
WeLiveSecurity

RomCom exploits Firefox and Windows zero days in the wild

ESET researchers discovered a previously unknown vulnerability in Mozilla products, exploited in the wild by Russia-aligned group RomCom. This is at least the second time that RomCom has been caught ...

FortiSIEM:Proof-of-Concept Exploit for Critical Vulnerability Publicly Available

Fortinet has closed a critical FortiSIEM vulnerability. A proof-of-concept exploit increases the likelihood of attacks.
Ars Technica

Code found online exploits LogoFAIL to install Bootkitty Linux backdoor

Researchers have discovered malicious code circulating in the wild that hijacks the earliest stage boot process of Linux devices by exploiting a year-old firmware vulnerability when it remains ...
Dexerto

Arc Raiders exploit turned it into an FPS & it’s pure nightmare fuel

An Arc Raiders exploit converted the game from a third-person shooter into a first-person shooter, and the results are terrifying.

Exploit code public for critical FortiSIEM command injection flaw

Technical details and a public exploit have been published for a critical vulnerability affecting Fortinet's Security ...
Windows Report

Microsoft Confirms Active Office Zero-Day Exploit, Deploys Emergency Fix

Microsoft releases an urgent out-of-band update for a critical Office zero-day flaw already exploited in real-world attacks.

Copilot Exploit Bypasses Safeguards And Steals Data Even After You Close The Chat

Reprompt is a Copilot exploit, that can use multi-stage prompts to steal user data, but thankfully it's already been patches.

Google Fast Pair Flaw Exposes Hundreds Of Millions Of Bluetooth Devices To WhisperPair ...

WhisperPair exploits a vulnerability in Google Fast Pair functionality to enable nonconsensual device tracking and pairing.