The Hacker News

One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public

CVE-2026-23111 is a Linux kernel nf_tables use-after-free that lets an unprivileged local user escalate to root and escape a ...
The Hacker News

Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit

Attackers hijacked 400+ Arch Linux AUR packages to run a Rust credential stealer, with optional eBPF rootkit support on root ...
LondonLovesBusiness

Open Source Intelligence, or OSINT, involves collecting and analysing information that is publicly available online

Uncover the power of Open Source Intelligence. Learn how to collect and analyse publicly available information effectively.

High-severity vulnerability in Linux caused by a single faulty character

Researchers have analyzed a high-severity vulnerability in Linux that’s able to escalate untrusted users to root by ...
MIT Technology Review

The Meta hack shows there’s more to AI security than Mythos

Gong and other scholars have been issuing warnings about the security vulnerabilities of AI agents for a while. They publish papers and blog posts detailing exploits such as indir ...
The Next Web

Attackers hijacked over 1,500 Arch Linux packages to steal developers’ secrets, no hacking required

Attackers hijacked over 1,500 packages in Arch Linux's AUR to plant a credential stealer. The official repos are safe, but the trust model took the hit.
CSO Online

China-linked hackers target US, Canada research using legacy REDCap exploits

Attackers hijacked REDCap upgrade processes to plant malware and spy on academic, healthcare, and defense research networks.

A single character could be enough to let hackers crack your Linux kernel

A logic inversion bug was recently found in Linux, caused by a single stray character.