The latest Microsoft Patch Tuesday rollout featured no zero-days. However, an angry hacker has just dropped two new 0-day exploits targeting Windows users.

Hackers are rapidly adopting AI to find previously unknown software flaws even without the help of Anthropic's powerful Mythos model.

Instructure, the company behind the Canvas education platform, paid a ransom to hackers who threatened to leak data from 275 million users. The cyberattack also disrupted finals week at a number

Security researchers at Alphabet Inc.’s Google said they believe a cybercrime group used artificial intelligence to create a hacking tool that can bypass defenses in a widely-used tool to administer computer systems.

A hacker has started laundering digital assets that were part of the $6.7 million theft from the liquidity provider TrustedVolumes, says cybersecurity firm PeckShield. PeckShield says that new data shows the hacker has started moving hundreds of thousands of dollars worth of Ethereum (ETH).

You can hire a hacker to do everything from hijacking a corporate email account to draining millions of dollars from an online bank account.

A security researcher frustrated with Microsoft has released the BlueHammer Windows zero-day exploit, telling the company, “I'm not explaining how this works.”

DDoS-for-hire services, commonly called “booters” or “stressers,” allow attackers to overwhelm websites or services with traffic. According to 2025 underground pricing data, a 24-hour DDoS attack against an unprotected website can cost as little as $45.

Criminal hacker and extortion group ShinyHunters claimed to have breached Canvas parent company Instructure, shutting down access to Canvas for students and faculty Thursday. Canvas serves as Stanford’s “primary learning management system” and services 2,400 instructors and 19,000 students in 2,000 courses each quarter.

It’s the stuff of nightmares for owners of billions of increasingly connected household devices – but a German hacker is making headlines after sharing how a poorly designed remote access security enabled him to take control of over 11,000 robotic lawnmowers in Australia and around the world.