The Hacker News

One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public

CVE-2026-23111 is a Linux kernel nf_tables use-after-free that lets an unprivileged local user escalate to root and escape a ...
Security Boulevard

DarkSword: The iPhone Exploit That Forced Apple to Rewrite Its Own Security Playbook

DarkSword silently compromises iPhones through website visits alone. 270M devices affected. Apple breaks its own policy with a rare iOS 18 security backport.
CSOonline

‘EDR-on-EDR Violence’: Hackers turn security tools against each other

Researchers reveal how attackers exploit free trials of endpoint detection tools to disable existing security software, even with tamper protection enabled. Cybersecurity researchers have uncovered a ...
GameSpot

Players Who Found A Destiny 2 Exploit Can Keep Their Free Loot, Says Bungie

GameSpot may receive revenue from affiliate and advertising partnerships for sharing this content and from purchases through links. Destiny 2 players recently discovered an exploit that allowed them ...
来自MSN

Where Winds Meet Exploit: Get Quest Rewards for Free

Where Winds Meet players have discovered a major exploit that allows them to gain quest rewards without lifting a finger. NetEase's wuxia-inspired open-world RPG launched last month to widespread ...
The Hacker News

Autonomous AI Tool Finds 2-Year-Old RCE Flaw in Redis (CVE-2026-23479)

Redis CVE-2026-23479 enables authenticated RCE; affecting versions since 7.2.0, patched May 5 to reduce exploitation risk.