The Free Press Journal

New 'Copy Fail' Flaw In Linux Kernel Lets Any Local User Seize Root Access: Here's How To Fix It

Tracked as CVE-2026-31431 with a CVSS score of 7.8, Copy Fail was uncovered and named by researchers at Xint.io and Theori. The flaw allows an unprivileged local user to write four controlled bytes ...
GitHub

Emulators running as native x86_64 shellcode on PS5 through the LuaC0re JIT exploit.

Games on unsupported mappers won't run. PS5 console (any firmware, tested up to 13.00) LuaC0re set up and working Star Wars Racer Revenge — US (CUSA03474) or EU (CUSA03492) If you're on latest FW you ...
Forbes

AI Just Hacked One Of The World's Most Secure Operating Systems

This voice experience is generated by AI. Learn more. This voice experience is generated by AI. Learn more. An autonomous agent found, analyzed and exploited a FreeBSD kernel vulnerability in four ...
winbuzzer.com

Xbox One Hacked After 12 Years Via Voltage Glitch Exploit

Security researcher Markus Gaasedelen has broken the Xbox One’s 12-year security record with Bliss, a voltage glitching exploit that targets an unpatchable vulnerability in the console’s boot ROM ...
HotHardware

Microsoft Office Zero-Day Exploited Days After Emergency Patch, Update ASAP

Microsoft Office is victim to a critical zero-day exploit, and Russian hacker groups are already weaponizing it in destabilizing efforts toward the Ukrainian government. While Westerners and most ...
Infosecurity-magazine.com

Fancy Bear Exploits Microsoft Office Flaw in Ukraine, EU Cyber-Attacks

Russian-linked hacking group Fancy Bear (APT28) has reportedly exploited a recently disclosed vulnerability in Microsoft Office to conduct cyber-attacks against Ukrainian and EU organizations. The ...
thecyberexpress

Russian APT28 Exploit Zero-Day Hours After Microsoft Discloses Office Vulnerability

Ukraine’s cyber defenders warn Russian hackers weaponized a Microsoft zero-day within 24 hours of public disclosure, targeting government agencies with malicious documents delivering Covenant ...
GitHub

ENDGAME - A Dashboard Exploit for the Original Xbox

ENDGAME is a universal dashboard exploit for the original Microsoft Xbox. This exploit has been carefully engineered to be compatible across all retail kernel and dashboard versions released for the ...
Ars Technica

High-severity WinRAR 0-day exploited for weeks by 2 groups

A high-severity zero-day in the widely used WinRAR file compressor is under active exploitation by two Russian cybercrime groups. The attacks backdoor computers that open malicious archives attached ...
Bleeping Computer

Hackers exploited Windows WebDav zero-day to drop malware

An APT hacking group known as 'Stealth Falcon' exploited a Windows WebDav RCE vulnerability in zero-day attacks since March 2025 against defense and government organizations in Turkey, Qatar, Egypt, ...
CSOonline

Stealth RAT uses a PowerShell loader for fileless attacks

Remcos RAT gets a stealthy upgrade as attackers ditch old office exploits for a fileless PowerShell loader that runs entirely in memory. Threat actors have been spotted using a PowerShell-based ...
Security Boulevard

Exploits Explained: How Log4j, Buffer Overflows and Other Exploits Work

In cybersecurity, the term “exploit” is used to represent a piece of code, data or sequence of commands that takes advantage of a vulnerability. This code is usually broken up into three distinct ...