Bleeping Computer

Hackers launch mass attacks exploiting outdated WordPress plugins

A widespread exploitation campaign is targeting WordPress websites with GutenKit and Hunk Companion plugins vulnerable to critical-severity, old security issues that can be used to achieve remote code ...
Bleeping Computer

TARmageddon flaw in abandoned Rust library enables RCE attacks

A high-severity vulnerability in the now-abandoned async-tar Rust library and its forks can be exploited to gain remote code execution on systems running unpatched software. Tracked as CVE-2025-62518, ...
Computer Weekly

F5 admits nation-state actor stole BIG-IP source code

F5 has revealed that a highly sophisticated nation-state threat actor had gained long-term, persistent access to its corporate network, exfiltrating parts of the source code for its flagship BIG-IP ...