The Hacker News

Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer

Laravel-Lang compromise tagged 700+ versions on May 22–23, 2026, triggering PHP stealers that exfiltrate credentials.
Ars Technica

The most severe Linux threat to surface in years catches the world flat-footed

Publicly released exploit code for an effectively unpatched vulnerability that gives root access to virtually all releases of Linux is setting off alarm bells as defenders scramble to ward off severe ...
CSOonline

‘Trivial’ exploit can give attackers root access to Linux kernel

Experts say until the distros release patches, CSOs have to beware of unauthorized privilege escalation; Kubernetes container escape is also a risk. CSOs must ensure their Linux-based systems block ...
CSOonline

New ‘Dirty Frag’ exploit targets Linux kernel for root access

The actively exploited flaw builds on Dirty Pipe and Copy Fail techniques to overwrite page cache and gain full system control. A newly disclosed Linux privilege escalation issue dubbed “Dirty Frag” ...
Crowdfund Insider

LayerZero Apologizes for Kelp DAO Exploit Response, Admits Fault in Single-Verifier Setup

LayerZero, a cross-chain messaging protocol, has publicly apologized for its handling of communications following a major security incident involving Kelp DAO. In a detailed update released on its ...
Bleeping Computer

New Linux ‘Copy Fail’ flaw gives hackers root on major distros

An exploit has been published for a local privilege escalation vulnerability dubbed “Copy Fail” that impacts Linux kernels released since 2017, allowing an unprivileged local attacker to gain root ...
Investopedia

Understanding Regional Check Processing Centers and Their Importance

Adam Hayes, Ph.D., CFA, is a financial writer with 15+ years Wall Street experience as a derivatives trader. Besides his extensive derivative trading expertise, Adam is an expert in economics and ...