Wordfence blocked 17M+ attempts to exploit a Gravity SMTP bug that leaks API keys and system data from WordPress sites without authentication. Attackers are actively exploiting a vulnerability in the ...
Researchers at Paradigm Shift have published the technical details of usbliter8, a new unpatchable iPhone BootROM vulnerability that enables arbitrary code execution on devices powered by Apple’s A12 ...
Security research firm Paradigm Shift today published details of a new BootROM vulnerability affecting Apple's A12 and A13 chips, along with a working proof-of-concept exploit named "usbliter8." The ...
In context: Unpatchable, hardware-level vulnerabilities caused a stir some years ago when they repeatedly turned up in AMD and Intel processors, but they've been far rarer on Apple chips. This latest ...
Researchers disclosed usbliter8, a SecureROM exploit affecting older Apple devices that can bypass boot protections with physical access. Researchers at cybersecurity firm Paradigm Shift have revealed ...
Security researchers warn that deprecated smart contracts can remain vulnerable long after projects stop maintaining them. Deprecated Aztec infrastructure has suffered a second exploit within days, ...
A new BootROM vulnerability has been discovered in older iPhones using the A12 and A13 chips. It uses a hardware bug in the USB controller to gain access to an iPhone’s startup process. It can’t be ...
Attackers have begun exploiting a critical vulnerability (tracked as CVE-2026-46817) in the Oracle E-Business Suite (EBS) financial application, according to threat intelligence company Defused. This ...
The iPhone XR, XS and 11 are among the older models affected by the newly disclosed usbliter8 exploit. Still holding onto an iPhone XS, XR or 11 because it gets the job done? There’s now a good reason ...
The UK’s healthcare sector is being “stress-tested to breaking point," with a tenfold increase in attacks during January-May 2026 compared to the whole of 2025, according to SonicWall. The security ...
Apple released iOS 26.5.2, iPadOS 26.5.2, macOS Tahoe 26.5.2, and Safari on June 29, 2026 — pulling nearly 30 security fixes out of its planned July cycle and delivering them weeks early because AI ...
Google-owned Mandiant published a complete forensic reconstruction today of a sophisticated intrusion campaign that used a single maliciously crafted CSV file to achieve root-level control over Cisco ...