Google is upstreaming Propeller to LLVM, bringing its 10% performance boost for the Linux kernel and large-scale apps to the standard compiler toolchain.

EmEditor confirms its official site was compromised, redirecting users to a malicious MSI signed by WALSHAM INVESTMENTS LIMITED to steal sensitive data.

pwn.ai reveals CVE-2025-54322, the first remotely exploitable zero-day found by autonomous AI agents, targeting Xspeeder SD-WAN gear globally.

ERNW exposes "Headphone Jacking," a critical Airoha RACE flaw in Sony & JBL chips allowing hackers to eavesdrop and hijack connected smartphones.

GreyNoise reveals a massive Japan-based holiday campaign: 2.5 million attacks targeting 767 CVEs to harvest access for ransomware gangs.

MongoBleed (CVE-2025-14847) allows unauthenticated MongoDB memory leaks. With Joe Desimone's PoC released, upgrade to v8.0.17 or v7.0.28 now!

Joseph Goydish uncovers a critical integer overflow in iOS 26.2’s WebKit. Proof of Concept shows how attackers can crash browsers or trigger RCE.

The most damaging cyber incidents across ASEAN this year did not start with malware, zero-days, or system breaches.

A China-linked APT used DNS poisoning to deliver the MgBot backdoor in targeted cyber-espionage attacks in Türkiye, China, and India.

Experts refer to these periods as the Global Commerce Vulnerability Window, marked by intense transaction volumes and limited human oversight.

Weeks after the devastating "Second Coming" campaign crippled thousands of development environments, the threat actor behind the Shai-Hulud worm has returned.

Kaspersky discloses a 2025 HoneyMyte (aka Mustang Panda or Bronze President) APT campaign, which uses a kernel-mode rootkit to deliver and protect a ToneShell backdoor.

The Grigol Liluashvili arrest follows earlier reporting on scam call centers in Tbilisi, including the Scam Empire investigation.

Dubbed "MongoBleed" and tracked as CVE-2025-14847, the flaw represents a catastrophic breakdown in how MongoDB handles compressed data.

Korean Air employee discloses a data breach after a hack of its catering and duty-free supplier, KC&D, affecting thousands of staff.

KrebsOnSecurity.com celebrates its 16th anniversary today! A huge "thank you" to all of our readers -- newcomers, long-timers and drive-by critics alike. Your engagement this past year here has been tremendous and truly a salve on a handful of dark…

A former employee behind the recent Coupang breach tried to cover his tracks by smashing his MacBook Air and throwing it into a river, the company said.

The high-severity vulnerability is under active exploitation and affects many versions of MongoDB, a nearly ubiquitous open-source database.

The accelerated expansion of state-level regulation highlights a growing urgency. Policy and security leaders are navigating a fast-paced regulatory landscape without a clear, unified direction.

Apple appeals a £1.5bn UK ruling that labeled its 30% App Store fee "unfair." Over 19 million users could receive payouts if the $2bn fine is upheld.

Samsung’s Exynos 5410 modem enables 5G satellite video calls for the Galaxy S26, shifting mobile tech from emergency texts to global broadband connectivity.