Follow Cyber Kendra on Google News! | WhatsApp | Telegram

Add as a preferred source on Google

Latest Posts

Windows Kernel Bug Breaks Every Browser Sandbox — And It Almost Stayed Secret Until Pwn2Own

Windows Kernel Bug Breaks Every Browser Sandbox — And It Almost Stayed Secret Until Pwn2Own

A security researcher prepared a devastating Windows kernel exploit for Pwn2Own Berlin 2026 — then had to watch it go public days before the contest …
PoC Exploit Released for Drupal's Critical SQL Injection CVE-2026-9082

PoC Exploit Released for Drupal's Critical SQL Injection CVE-2026-9082

A day after Drupal's emergency patches landed , security researchers at Searchlight Cyber have published a full technical breakdown of CVE-2026-9…
Nine-Year-Old Linux Kernel Flaw CVE-2026-46333 Lets Attackers Steal SSH Keys, Shadow Passwords, and Root Access

Nine-Year-Old Linux Kernel Flaw CVE-2026-46333 Lets Attackers Steal SSH Keys, Shadow Passwords, and Root Access

The Qualys Threat Research Unit (TRU) has released the full advisory for CVE-2026-46333, a logic flaw in the Linux kernel's __ptrace_may_access()…
Drupal Patches Highly Critical SQL Injection That Lets Anonymous Attackers Hijack PostgreSQL-Backed Sites

Drupal Patches Highly Critical SQL Injection That Lets Anonymous Attackers Hijack PostgreSQL-Backed Sites

Drupal has pushed emergency security updates for a highly critical SQL injection vulnerability in its core database abstraction layer — the kind of f…
PinTheft: New Linux Exploit Steals Kernel References to Root Shell

PinTheft: New Linux Exploit Steals Kernel References to Root Shell

A working proof-of-concept exploit for a new Linux kernel privilege escalation bug called PinTheft went public this week, adding another name to a gr…
PostgreSQL Patches 11 Security Flaws, Including Code Execution and a Sneaky Password-Stealing Timing Attack

PostgreSQL Patches 11 Security Flaws, Including Code Execution and a Sneaky Password-Stealing Timing Attack

The world's most popular open-source database just dropped its biggest security update of the year — and if you haven't patched yet, attacker…
GitHub's Own Codebase Was Breached — A Poisoned VS Code Extension Was All It Took

GitHub's Own Codebase Was Breached — A Poisoned VS Code Extension Was All It Took

The world's largest code-hosting platform just became the victim of its own ecosystem. On May 20, 2026, GitHub confirmed that a threat actor exf…
Google I/O 2026 — Here's Everything Google Announced

Google I/O 2026 — Here's Everything Google Announced

Google doesn't do small announcements anymore. At I/O 2026 in Mountain View, the company dropped more new products in a single two-hour keynote t…
Microsoft's durabletask Hit by TeamPCP — Your Cloud Keys Were the Target

Microsoft's durabletask Hit by TeamPCP — Your Cloud Keys Were the Target

TeamPCP has quietly poisoned yet another trusted developer package — and this time the target was sitting inside Microsoft's own toolchain. Three…
Google's Aluminium OS Spotted on GDG Community Page Hours Before I/O 2026 Keynote

Google's Aluminium OS Spotted on GDG Community Page Hours Before I/O 2026 Keynote

A Google Developer Groups event page quietly confirmed what millions of Chromebook users have been waiting to hear — but the story is more complicate…