Skip to content
Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows

Microsoft Defender RoguePlanet Zero-Day Grants SYSTEM Access on Updated Windows

Ravie LakshmananJun 10, 2026Zero-Day / Vulnerability The anonymous security researcher going by the name Chaotic Eclipse (aka Nightmare-Eclipse) has released a proof-of-concept (PoC) exploit for yet another Microsoft Defender zero-day named RoguePlanet. “The exploit is… 

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Six Proto6 Vulnerabilities in protobuf.js Expose Node.js Apps to RCE and DoS

Ravie LakshmananJun 10, 2026Vulnerability / JavaScript Cybersecurity researchers have flagged half a dozen vulnerabilities in protobuf.js, a JavaScript and TypeScript implementation of Protocol Buffers (Protobuf), that, if successfully exploited, could result in remote code execution… 

Meta to Use Off-Site Business Data for Feed and AI Personalization

Meta to Use Off-Site Business Data for Feed and AI Personalization

Ravie LakshmananJun 09, 2026Privacy / Artificial Intelligence Meta on Tuesday announced that it will use information shared by other businesses to personalize users’ feed and responses from its artificial intelligence (AI) chatbot, expanding its scope… 

Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code

Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code

Ravie LakshmananJun 09, 2026Vulnerability / Backup Software Veeam has released security patches to address a critical flaw in its Backup & Replication software that could result in remote code execution. Tracked as CVE-2026-44963, the vulnerability… 

Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues

Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues

Ravie LakshmananJun 09, 2026AI Security / Software Supply Chain Microsoft on Monday confirmed that it temporarily removed some GitHub repositories in response to a recent security incident that led to 73 of its open-source projects… 

WinRAR Flaw Exploited by Russia-Aligned Groups to Deploy Stealers in Ukraine

WinRAR Flaw Exploited by Russia-Aligned Groups to Deploy Stealers in Ukraine

Ravie LakshmananJun 09, 2026Vulnerability / Cyber Espionage Two Russia-aligned cyber attack campaigns have continued to exploit a security flaw in WinRAR to target Ukrainian organisations, almost a year after patches for the vulnerability were released.… 

Researchers Build Self-Replicating AI Worm That Operates Entirely on Local, Open-Weight Models

Researchers Build Self-Replicating AI Worm That Operates Entirely on Local, Open-Weight Models

University of Toronto researchers have built and tested a proof-of-concept AI-driven computer worm that uses a locally hosted open-weight large language model to reason its way through a network, generate tailored attack strategies for each…