HotHardware

Switch 2 Exploit Lets You Watch YouTube on Nintendo's Handheld, But There's A Catch

An unexpected feature buried within free Nintendo Switch 2 game Super Animal Royale caught the Internet's attention this week. Specifically, some web pages viewable within the game and Nintendo Switch ...
CoinDesk

Why DeFi isn't dead despite massive exploits and $13 billion investor exodus

The easiest take after a $290 million exploit and a roughly $13 billion slide in DeFi total value locked is that decentralized finance is broken again. It is also probably the laziest. The KelpDAO ...
Bleeping Computer

Google now offers up to $1.5 million for some Android exploits

Google overhauls its Android and Chrome vulnerability rewards programs, offering bounties of up to $1.5 million for the most difficult exploits while scaling back payouts for flaws that artificial ...
NDTV

Amravati 2.0 In Kolhapur: Man, 22, Sexually Exploits Women In Maharashtra

After the arrest of a man in Maharashtra's Amravati for sexually exploiting minor girls, a similar case has now come to light from Kolhapur, where a pharmacy student has been accused of sexually ...
TheStreet.com

Another DeFi platform just got hit with a $1.5 million exploit, services suspended

Lending protocol Purrlend confirmed Saturday that it detected irregular activity across its deployments on both the MegaETH and HyperEVM networks and has paused the protocol while it investigates. For ...
Ars Technica

The most severe Linux threat to surface in years catches the world flat-footed

Publicly released exploit code for an effectively unpatched vulnerability that gives root access to virtually all releases of Linux is setting off alarm bells as defenders scramble to ward off severe ...
CSOonline

‘Trivial’ exploit can give attackers root access to Linux kernel

Experts say until the distros release patches, CSOs have to beware of unauthorized privilege escalation; Kubernetes container escape is also a risk. CSOs must ensure their Linux-based systems block ...
Hosted on MSN

Apache HTTP/2 flaw with exploit code prompts urgent patching

Exploit code confirmed: Researchers have proof-of-concept code for CVE-2026-23918, enabling denial-of-service or remote code execution on Apache HTTP Server. Widespread server exposure: Apache serves ...
CoinDesk

The long con: How North Korean spies spent months in-person to drain $285 million from Drift

North Korean government-backed hackers are becoming more sophisticated, more precise and now account for more than 76% or nearly $600 million in crypto losses this year alone. The $285 Drift Protocol ...
Bleeping Computer

New Linux ‘Copy Fail’ flaw gives hackers root on major distros

An exploit has been published for a local privilege escalation vulnerability dubbed “Copy Fail” that impacts Linux kernels released since 2017, allowing an unprivileged local attacker to gain root ...
Hosted on MSN

Apple’s leaked ‘Coruna’ and ‘DarkSword’ exploit kits are indiscriminately targeting iPhones running anything below iOS 26.2

Two leaked iPhone exploit kits are now circulating beyond the hands of the surveillance vendors that originally built them, and every iPhone running software older than iOS 26.2 is a potential target.
VentureBeat

Claude Code, Copilot and Codex all got hacked. Every attacker went for the credential, not the model.

On March 30, BeyondTrust proved that a crafted GitHub branch name could steal Codex’s OAuth token in cleartext. OpenAI classified it Critical P1. Two days later, Anthropic’s Claude Code source code ...