Microsoft pushed emergency patches this week for two zero-day vulnerabilities in Windows Defender, the antivirus software ...

Firefox 151.0.2 fixes Split View bugs, Windows crashes, caching problems, and several website rendering issues.

Ghost CMS SQL injection campaign has compromised 700+ websites — including Harvard University, Oxford University, and DuckDuckGo — using a CVSS 9.4 flaw to inject ClickFix malware lures that trick ...

Microsoft Research has released Webwright as a terminal-native web agent framework that turns browser tasks into rerunnable Playwright code and logs for teams.

The OWASP-backed tool scans JavaScript and TypeScript lockfiles locally, aiming to help developers catch and remediate dependency risks before CI failures.

Chrome, Edge, Brave, Opera, and other Chromium-based browsers could reportedly be exposed to abuse after Google accidentally ...

Reported over three years ago and allegedly still not properly fixed, the vulnerability enables attacks to execute JavaScript ...

Microsoft confirmed on May 14 that CVE-2026-42897 — a cross-site scripting flaw in the Outlook Web Access component of Exchange Server 2016, 2019, and Subscription Edition — is under active ...

Active Microsoft Exchange zero-day leaves organisations exposed By Nicola Mawson, Contributing journalistJohannesburg, 19 May 2026An exploit in on-premises Microsoft Exchange servers has already been ...

Microsoft Exchange Servers are under threat from a zero-day vulnerability, exploited via crafted emails. With no official ...

Critical-severity CVE-2026-42897 could lead to remote code execution, and hackers are already taking advantage.

A zero-day vulnerability exists in Microsoft Exchange, which attackers are already exploiting. Admins should act quickly.