CSOonline

Another Microsoft Defender privilege escalation bug emerges days after patch

New PoC shows how Microsoft Defender can be tricked into rewriting malicious files into protected locations, enabling SYSTEM-level privilege escalation on fully patched Windows systems. Days after ...
Bleeping Computer

New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges

A researcher known as "Chaotic Eclipse" has published a proof-of-concept exploit for a second Microsoft Defender zero-day, dubbed "RedSun," in the past two weeks, protesting how the company works with ...
cybernews

Claude AI just learned how to hack Chrome: Will Mythos do it autonomously?

Amid backlash over Anthropic’s new AI model, Mythos, which has been deemed too dangerous for public use, a researcher demonstrated that even the older Claude Opus could crack Chrome on its own. Using ...
IGN

Max Paragon Exploit

Are you looking to to max out your Paragon points quickly? In Mass Effect 1 there's an exploit available very early into the game that allows you to do just that, using a Save exploit at the end of ...
GitHub

GUI-explorer: Autonomous Exploration and Mining of Transition-aware Knowledge for GUI Agent

This is the github repository of GUI-explorer: Autonomous Exploration and Mining of Transition-aware Knowledge for GUI Agent. In this work, we propose GUI-explorer. It synergizes two key components: ...
SecurityWeek

Adobe Patches Reader Zero-Day Exploited for Months

The vulnerability is tracked as CVE-2026-34621 and Adobe has confirmed that it can be exploited for arbitrary code execution. Adobe on Saturday released emergency patches for a critical Acrobat and ...
Forbes

Adobe Attacks Underway—Windows And Mac Users Given 72 Hours To Update

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. This voice experience is generated by AI. Learn more. This ...
VentureBeat

Mythos autonomously exploited vulnerabilities that survived 27 years of human review. Security teams need a new detection playbook

A 27-year-old bug sat inside OpenBSD’s TCP stack while auditors reviewed the code, fuzzers ran against it, and the operating system earned its reputation as one of the most security-hardened platforms ...
Bleeping Computer

Hackers exploiting Acrobat Reader zero-day flaw since December

Attackers have been exploiting a zero-day vulnerability in Adobe Reader using maliciously crafted PDF documents since at least December. The attacks have been discovered by security researcher Haifei ...
The Hacker News

Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025

Threat actors have been exploiting a previously unknown zero-day vulnerability in Adobe Reader using maliciously crafted PDF documents since at least December 2025. Given the name of the PDF document, ...
cybernews

Critical Adobe Reader zero-day lets PDFs steal files, may have been active for months

A cybersecurity researcher is warning of a zero-day vulnerability in Adobe Reader that allows attackers to steal local files and potentially take full control of a victim’s system – simply by getting ...