The Hacker News

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root

A maximum-severity security vulnerability impacting LiteSpeed User-End cPanel Plugin has come under active exploitation in the wild. The flaw, tracked as CVE-2026-48172 (CVSS score: 10.0), relates to ...
https//beincrypto.com

Polymarket Says No Contract Exploit After Compromised Private Key Drains $573K

Polymarket confirms user funds are safe after $520K drain via outdated private key. ZachXBT flagged the breach on-chain before Polymarket attributed it to old credentials. DeFi hacks reach 19 in May, ...
Hosted on MSN

Polymarket team says user funds safe as exploit losses climb above $600K

Polymarket confirmed a security exploit affected part of its infrastructure, pointing to a possible private key compromise involving a wallet used for top-up operations, while saying user funds and ...
Ripple

Polymarket Exploit: $700K in POL Stolen, Executives Say User Funds Safe

A compromised internal wallet drained $700K from Polymarket. User funds stayed safe. Here’s what happened and how the team responded. A security incident hit Polymarket this week, shaking the ...
AMBCrypto

Polymarket’s $700K exploit targets USDC, POL – Are user funds safe?

Another day, another crypto exploit. Crypto hacks have accelerated in 2026, and someone targeted Polymarket on the 22nd of May. Here is how the exploit happened on the world’s largest prediction ...
The Hacker News

Microsoft Releases Mitigation for YellowKey BitLocker Bypass CVE-2026-45585 Exploit

Microsoft on Tuesday released a mitigation for a BitLocker bypass vulnerability named YellowKey following its public disclosure last week. The zero-day flaw, now tracked as CVE-2026-45585, carries a ...
Bleeping Computer

New Windows 'MiniPlasma' zero-day exploit gives SYSTEM access, PoC released

A cybersecurity researcher has released a proof-of-concept exploit for a Windows privilege escalation zero-day dubbed "MiniPlasma" that lets attackers gain SYSTEM privileges on fully patched Windows ...
TweakTown

Security researcher finds zero-day exploit that defeats Windows 11 BitLocker, calls it an insane 'backdoor' discovery

Use left and right arrow keys to seek audio. A security researcher going by the alias Nightmare-Eclipse has uncovered a zero-day exploit they describe as one of the most insane discoveries ever, ...
IEEE

Predicting Vulnerability Exploit Complexity Based On Exploit Scripts

Abstract: Software vulnerabilities provide openings for cyberattacks and therefore pose a great risk to the security of an IT system. The availability of public exploit scripts strongly influences the ...
TechSpot

A security researcher says Microsoft secretly built a backdoor into BitLocker, releases an exploit to prove it

The Epitome of WTF: A researcher known as "Nightmare-Eclipse" recently released YellowKey, a security vulnerability that allegedly enables a full bypass of BitLocker's full-volume encryption. The ...
Ars Technica

Zero-day exploit completely defeats default Windows 11 BitLocker protections

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker protections and gain complete access to an encrypted drive within seconds.
TechSpot

Microsoft's $1 billion Kenya AI data center could require switching off "half the country"

A hot potato: Microsoft and Abu Dhabi-based AI company G42's plan to build a $1 billion data center in Kenya sounded like a good idea for the African nation. It would bring foreign investment, a new ...