Apple Security Apple AirTags are vulnerable to stored XSS injection attacks Apple is aware of the zero-day flaw and is working on a fix By Cal Jeffrey, September 29, 2021, 1:04 PM
Security Apple Apple is still investigating three iOS 15 zero-days after researcher criticizes bug bounty program Researcher claims app review process allows malicious apps to slip through to App Store By Daniel Sims, September 28, 2021, 1:44 PM
Apple Security Researcher discloses three iOS zero-days, still exploitable in iOS 15, and criticizes Apple for ignoring them Vulnerabilities might expose Apple IDs, contact info, Wi-Fi details, and more By Daniel Sims, September 24, 2021, 2:59 PM 11 comments
Apple Security Zero-day flaw allows remote code execution even on fully-patched Macs Don't open any email attachments until you read this By Adrian Potoroaca, September 22, 2021, 9:24 AM
Security Microsoft Microsoft Office zero-day vulnerability that allows remote code execution is being actively exploited Attackers leverage ActiveX to infect systems with malware By Cal Jeffrey, September 8, 2021, 1:36 PM 8 comments
Security Razer Synapse bug grants Windows admin privileges by plugging in a mouse or keyboard The company is working on a fix By Rob Thubron, August 23, 2021, 6:15 AM
Apple Security Apple patches nasty vulnerability impacting iPhones, iPads and Macs Apple users will want to update their devices ASAP By Shawn Knight, July 27, 2021, 11:16 AM
Security Microsoft Microsoft Exchange Server exploits are being targeted by "at least 10 hacker groups" Hackers can gain remote control of a server via a web browser By Joe White, March 14, 2021, 6:53 AM
Google Security Chrome zero-day V8 vulnerability found being actively exploited Google recommends immediately updating Chrome on desktop and Android By Cal Jeffrey, November 3, 2020, 2:28 PM
Security Apple Bug bounty hunter snags $100,000 award for zero-day bug in 'Sign in with Apple' system Cupertino patched the hole before it could be used in the wild By Cal Jeffrey, June 1, 2020, 1:21 PM
Software Security Zoom backtracks on 'legitimate solution' that left Mac webcams vulnerable to highjacking Immediate patch was issued to address the problem By Cal Jeffrey, July 10, 2019, 3:33 PM
Security Google Google wants you to update Chrome right now The zero-day exploit could give hackers direct access to your OS if you don't update your browser By Dean Pennington, March 7, 2019, 2:14 PM 10 comments
Security Apple Zero-day exploit in Mojave lets hackers copy your private data Don't touch that download button just yet By Cal Jeffrey, September 24, 2018, 6:16 PM
Microsoft Windows zero-day vulnerability revealed Microsoft might not release a patch until September 11 By Rob Thubron, August 29, 2018, 5:23 AM
Security Software LastPass is rushing to fix newly discovered browser extension vulnerability A fix could take 'a while' to arrive By Jose Vilches, March 29, 2017, 12:30 PM 9 comments
Microsoft Security Microsoft isn't happy about Google revealing a Windows vulnerability that's being actively exploited By Rob Thubron, November 1, 2016, 9:30 AM 12 comments
Apple Security Bug bounty company outdoes Apple with $500,000 reward for iOS vulnerabilities By Rob Thubron, August 11, 2016, 12:15 PM
Security Hardware Critical security flaw found in Lenovo PCs, others might be affected too By Jose Vilches, July 4, 2016, 4:45 PM 7 comments
Security Google Google's Project Zero team finds multiple critical flaws affecting Symantec's entire product line By Shawn Knight, June 29, 2016, 12:15 PM 9 comments
News Around the Web Weekend tech reading: Wikipedia turns 15, Werner Herzog talks VR, a look inside NASA's vault By Matthew DeCarlo, January 17, 2016, 12:00 PM
Security Apple Security firm is buying iOS 9 exploits for $1 million By Tim Schiesser, September 22, 2015, 2:00 PM
Security Software Fully patched versions of Firefox, Chrome, IE 11 and Safari exploited at Pwn2Own hacking competition By Shawn Knight, March 20, 2015, 5:00 PM 8 comments
Security Software Adobe warning users of yet another zero-day Flash Player vulnerability, third in a month By Himanshu Arora, February 3, 2015, 1:45 PM 13 comments
Security Microsoft Security firm discovers Windows zero-day, claims Russian hackers used it to target NATO, Ukraine By Himanshu Arora, October 14, 2014, 1:45 PM
Software Security Former world's most wanted hacker Kevin Mitnick now sells zero-day exploits By Himanshu Arora, September 25, 2014, 7:15 AM 9 comments