InfoWorld

9 application security startups combating AI risks

AI is collapsing the security boundaries between code, pipeline, and runtime. These startups are racing to fill the gaps.
Bleeping Computer

Hackers exploit auth bypass flaw in Burst Statistics WordPress plugin

Hackers are leveraging a critical authentication bypass vulnerability in the WordPress plugin Burst Statistics to obtain admin-level access to websites. Burst Statistics is a privacy-focused analytics ...
The Hacker News

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root

CVE-2026-48172 lets cPanel users run scripts as root, affecting LiteSpeed plugin 2.3–2.4.4 and exposing servers.
The Punch Newspapers

Exploit China trade access, ACCI urges manufacturers

The President of the Abuja Chamber of Commerce and Industry, Emeka Obegolu, has described China’s zero-tariff policy for African countries as a major economic opportunity capable of strengthening ...
CoinTelegraph

THORChain pauses trading after suspected $10M exploit

THORChain paused trading after ZachXBT flagged a suspected $10 million exploit spanning Bitcoin, Ethereum, BNB Chain and Base. Decentralized liquidity protocol THORChain halted trading after ...
Ars Technica

Zero-day exploit completely defeats default Windows 11 BitLocker protections

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker protections and gain complete access to an encrypted drive within seconds.
CoinDesk

ZachXBT flags $520K Polymarket exploit on Polygon, team says funds are safe

Blockchain investigator ZachXBT has highlighted a suspected security breach involving Polymarket, the world’s largest decentralized prediction market platform. Over $520,000 was reportedly drained ...
Bleeping Computer

Google: Hackers used AI to develop zero-day exploit for web admin tool

Researchers at Google Threat Intelligence Group (GTIG) say that a zero-day exploit targeting a popular open-source web administration tool was likely generated using AI. The exploit could be leveraged ...
FinanceFeeds

EdgeX Blames Market Manipulation After EDGE Token Price Collapse

Decentralized exchange edgeX is facing scrutiny after its native EDGE token fell more than 40% in 24 hours, with the project ...
The Hacker News

ThreatsDay Bulletin: Claude Security Plugin, Azure Priv-Esc, Kali365 MFA Bypass, FIFA Scams +15 More

Massive regional C2 footprint More than 1.3K C2 Servers Discovered in the Middle East Hunt.io said it identified more than ...
National Basketball Association

Jazz trade Rudy Gobert to Wolves in multi-player deal

Minnesota sends a steep package, including 5 players and 5 picks, to Utah. From NBA.com News Services Rudy Gobert averaged 15.6 ppg and 14.7 rpg and will join fellow All-Star Karl-Anthony Towns in ...
Dark Reading

'Dirty Frag' Exploit Poised to Blow Up on Enterprise Linux Distros

A public exploit is available for a nine-year old vulnerability that affects the Linux kernel, paving the way for root privilege escalation. The flaw, which actually is two vulnerabilities chained ...