Hackaday

This Week In Security: Docker Auth, Windows Tools, And A Very Full Patch Tuesday

CVE-2026-34040 lets attackers bypass some Docker authentication plugins by allowing an empty request body. Present since 2024, this bug was caused by a previous fix to the auth workflow. In the ...
Security Boulevard

Top XBOW Alternatives in 2026

Escape is the best XBOW alternative for continuous AI pentesting across APIs, web apps, and complex authentication — with ...

New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges

A researcher known as "Chaotic Eclipse" has published a proof-of-concept exploit for a second Microsoft Defender zero-day, ...

Claude Mythos can hack anything, Anthropic says. Should we believe them?

The footnote is on page 7 of a 60-page alignment risk report, wedged between paragraphs about sandbox configuration and ...

Your developers are already running AI locally: Why on-device inference is the CISO’s new blind spot

Shadow AI 2.0 isn’t a hypothetical future, it’s a predictable consequence of fast hardware, easy distribution, and developer ...