Hackers are abusing unpatched Windows security flaws to hack into organizations

A security researcher published details of three security vulnerabilities in Windows Defender, and the code used to exploit ...
Microsoft

Inside an AI‑enabled device code phishing campaign

A new wave of device code phishing shows how threat actors are scaling account compromise using AI and end‑to‑end automation.
The Hacker News

Which Code Vulnerabilities Actually Get Fixed? New Code Security Data from 50,000+ Repos

Most application security (AppSec) teams know their OWASP Top 10, the industry-standard list of the most critical software security risks. Fewer know which of those categories their organization ...
IEEE

Source Code Vulnerability Detection Method Based on Refactored Code Attribute Map

Abstract: With the development of information technology, security incidents induced by code vulnerabilities occur frequently, and static code vulnerability detection methods based on deep learning ...
The Hacker News

Coruna iOS Kit Reuses 2023 Triangulation Exploit Code in Recent Mass Attacks

The kernel exploit for two security vulnerabilities used in the recently uncovered Apple iOS exploit kit known as Coruna is an updated version of the same exploit that was used in the Operation ...
SecurityWeek

Oracle Releases Emergency Patch for Critical Identity Manager Vulnerability

CVE-2026-21992 can be used without authentication for remote code execution and it may have been exploited in the wild. Oracle on Friday issued out-of-band updates to patch a critical vulnerability ...
IEEE

MACD: Source Code Vulnerability Detection Method Integrating Mamba and Attention

Abstract: With the rapid development of information technology, software security has become increasingly critical. Source code vulnerability detection is essential for maintaining system stability ...