Drupal: Critical SQL injection flaw now targeted in attacks

Drupal is warning that hackers are attempting to exploit a "highly critical" SQL injection vulnerability announced earlier ...
CSO Online

Drupal admins rushing to patch maximum severity SQL injection vulnerability

In its warning, Drupal said a vulnerability in this API allows an attacker to send specially crafted requests resulting in ...
Tech Times

Exchange Server OWA Zero-Day CVE-2026-42897 Exploited With No Permanent Patch and New Mitigation Gaps

Microsoft confirmed on May 14 that CVE-2026-42897 — a cross-site scripting flaw in the Outlook Web Access component of Exchange Server 2016, 2019, and Subscription Edition — is under active ...

Apple server schematics stolen in May 2026 Foxconn cyberattack

Leaked documents may be tip of the iceberg in Foxconn hack, as only Apple server schematics have been shared so far. More ...

How To Mitigate The Microsoft Windows BitLocker YellowKey USB 0-Day

Following the release of a BitLocker zero-day security bypass by a disgruntled hacker, Microsoft has now offered mitigation ...
PC Tech Magazine

Stop Patching Everything: A Smarter Way to Handle Vulnerabilities

Most businesses eventually run into the same problem after deploying vulnerability scanners for the first time.