A critical vulnerability affecting Grandstream’s GXP1600 series phones could allow threat actors to intercept calls.
ThreatsDay Bulletin tracks active exploits, phishing waves, AI risks, major flaws, and cybercrime crackdowns shaping this week’s threat landscape.
Researchers say an AI-powered code scanner traced untrusted data across layers of OpenClaw, exposing exploitable weaknesses including SSRF, authentication bypass, and path traversal.
OpenClaw has patched six new vulnerabilities in its popular agentic AI assistant, covering server-side request forgery (SSRF) ...
Modern PDF platforms can now function as full attack gateways rather than passive document viewers.
A new report out today from security rating firm SecurityScorecard Inc. warns that widespread vulnerabilities in OpenClaw deployments have left tens of thousands of internet-facing instances exposed ...
Cyber attackers continue to speed up vulnerability exploitation and last year 28.96% of known exploited vulnerabilities (KEVs) identified by VulnCheck were exploited before being publicly disclosed, ...
There’s something immensely satisfying about taking a series of low impact CVEs, and stringing them together into a full exploit. That’s the story we have from [Mehmet Ince] of Prodraft, who found a ...
Researcher uncovers a critical SSRF vulnerability in ChatGPT’s Custom GPT “Actions” feature, risking exposure of internal cloud credentials. Exploit allowed access to Azure Instance Metadata Service, ...
DeFi protocol Balancer is the target of an ongoing exploit, with more than $116 million in staked Ether tokens transferred to a new wallet. Update Nov. 3, 10:42 am UTC: This article has been updated ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results