Patch Now: Chrome Flaw Under Active Attack, Google Confirms

Google patches 21 Chrome vulnerabilities, including an actively exploited zero-day flaw that could enable code execution and ...

Cloudflare debuts EmDash to challenge aging WordPress with AI-native CMS

Enter Cloudflare Inc., which today announced the launch of EmDash, an open-source CMS that is designed as a modern ...
Microsoft

Mitigating the Axios npm supply chain compromise

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

AI finds critical ImageMagick vulnerabilities in default configurations

An AI pentesting tool has discovered critical vulnerabilities in default ImageMagick configurations. Workarounds offer ...

Google fixes fourth Chrome zero-day exploited in attacks in 2026

In 2025, Google fixed a total of eight zero-days exploited in the wild, many of which were discovered and reported by ...
TidBITS

DarkSword Exploit Threatens iPhones Still Running iOS 18

Security researchers have discovered DarkSword, a sophisticated exploit chain targeting iOS 18.4 through 18.7.2. Unlike past spyware aimed at high-profile targets, DarkSword is being surreptitiously ...

WordPress.com now lets AI agents write and publish posts, and more

New AI agents on WordPress.com could lower barriers to publishing while increasing machine-generated content across the web.
theregister

Google rushes Chrome update fixing two zero-days already under attack

Google has pushed out an emergency Chrome update to fix two previously unknown vulnerabilities that attackers were already exploiting before the patches landed. The bugs, tracked as CVE-2026-3909 and ...
Searchenginejournal.com

WordPress Security Release 6.9.4 Fixes Issues 6.9.2 Failed To Address

WordPress security release 6.9.2 fixes ten vulnerabilities. Some users reported that the security release crashed their websites. WordPress traced the issue to non-standard coding in certain templates ...