In a field often dominated by seasoned professionals, 13-year-old Dylan has turned heads by becoming the youngest researcher to collaborate with the Microsoft Security Response Center (MSRC).
His journey combines early curiosity, technical prowess, and a drive to enhance digital safety for millions, providing...
A critical vulnerabilities in ScriptCase, a popular low-code platform used for generating PHP web applications, that allow attackers to execute remote commands and gain complete server access without authentication.
The vulnerabilities, tracked as CVE-2025-47227 and CVE-2025-47228, can be chained together to achieve pre-authenticated remote...
The evolving Russia-Ukraine conflict continues to transform the global cybercrime landscape, with a surge in pro-Russian hacktivism intent on influencing the course of war and European security.
Since January 2025, fears over wavering U.S. support for Ukraine under President Donald Trump have provoked European...
A proof-of-concept exploit for a critical local privilege escalation vulnerability affecting Fedora and SUSE Linux distributions.
The vulnerability, tracked as CVE-2025-6019, allows users in the allow_active group to escalate privileges to root through the udisksd daemon and its backend library libblockdev.
The vulnerability has...
A proof-of-concept (PoC) for CVE-2025-5777, dubbed "CitrixBleed 2," a critical memory disclosure vulnerability affecting Citrix NetScaler devices.
The vulnerability, which bears striking similarities to the infamous 2023 CitrixBleed incident, is currently being exploited in the wild by multiple threat actors, prompting urgent warnings from...
In a striking demonstration of coordinated law enforcement and industry action, a Chinese student has been sentenced to over a year in prison at the Inner London Crown Court for orchestrating a highly sophisticated smishing campaign using illegal SMS Blaster equipment.
Ruichen Xiong, a...