The Hacker News

Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet

CVE-2024-3721 and CVE-2023-33538 exploited in TBK DVRs and EoL TP-Link routers, enabling Mirai variants and DDoS risk.
The Hacker News

Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched

Three Defender zero-days exploited since April 10, 2026, enabling privilege escalation and DoS, forcing isolation of affected ...
CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...
Security Boulevard

Exposed LLM Infrastructure: How Attackers Find and Exploit Misconfigured AI Deployments

Exposed LLM servers are being actively scanned and exploited. Learn how attackers find misconfigured AI infrastructure and ...
SecurityWeek

Cursor AI Vulnerability Exposed Developer Devices

NomShub, a vulnerability chain in Cursor AI, allowed attackers to achieve persistent access to systems via indirect prompt ...
CSO Online

Palo Alto’s Helmut Reisinger sees a cyber sea change ahead as AI advances

The U.S. tech giant Palo Alto Networks is one of the few companies selected by the AI firm Anthropic to participate in the ...
Arabian Post

TP-Link router flaw draws Mirai probes

Hackers are probing older TP-Link home routers in an effort to turn them into Mirai-style botnet nodes, using a known command-injection flaw tracked as CVE-2023-33538. Security researchers say the ...
Dark ReadingOpinion

Every Old Vulnerability Is Now an AI Vulnerability

On March 10, 2026, Microsoft patched CVE-2026-26144, a cross-site scripting (XSS) vulnerability in Excel. XSS in Office isn't ...
Space.com

'For All Mankind' alternative timeline vs reality: How Apple TV's sci-fi show diverges from history

Delivered daily Daily Newsletter Breaking space news, the latest updates on rocket launches, skywatching events and more!