Adobe fixes PDF zero-day security bug that hackers have exploited for months

It's not clear how many people were compromised by this hacking campaign, but a security researcher said the hackers were ...

Two ships cross Strait of Hormuz after stopping at Iranian ports despite US blockade

At least two ships have visited Iranian ports while two are linked to China. The US previously said it would stop vessels ...

Two different attackers poisoned popular open source tools - and showed us the future of supply chain compromise

FEATURE Two supply chain attacks in March infected open source tools with malware and used this access to steal secrets from ...
Cybernews

Critical Adobe Reader zero-day lets PDFs steal files, may have been active for months

A newly discovered Adobe Reader zero-day vulnerability allows malicious PDF files to steal local data and potentially lead to ...
The Hacker News

Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025

Adobe Reader zero-day exploited since Dec 2025 via malicious PDFs, enabling data theft and potential RCE, prompting urgent ...
Cyber Daily

Ransomware group claims hack of legal giant Jones Day

Jones Day – which is headquartered in the United States but has offices globally, including in Sydney – disclosed the attack ...
Cyber Daily

Your developers work for cyber gangs

In-house software built in March with open-source components may include malware placed there by criminals. This isn’t a ...
SecurityWeek

Google DeepMind Researchers Map Web Attacks Against AI Agents

Threat actors can use malicious web content to set up AI Agent Traps and manipulate, deceive, and exploit visiting autonomous ...

Techie Tonic: Two CISOs warn Axios breach changes supply chain trust model

Two CISOs dissect the Axios npm attack, revealing a self-erasing RAT, CI/CD compromise risks and why open-source software ...

Alleged North Korean hack of US companies could take 'months' to recover from

North Korean hackers just compromised a massively popular tool to steal crypto. Find out if your business downloaded this ...
Hackaday

This Week In Security: The Supply Chain Has Problems

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

Patch Now: Chrome Flaw Under Active Attack, Google Confirms

Google patches 21 Chrome vulnerabilities, including an actively exploited zero-day flaw that could enable code execution and ...