A critical vulnerability affecting Grandstream’s GXP1600 series phones could allow threat actors to intercept calls.

Critical CVE-2026-2329 flaw in Grandstream GXP1600 VoIP phones enables unauthenticated RCE, call interception, and credential theft.

Cisa has added six CVEs to its Kev catalogue this week, including newly-disclosed issues in Google Chromium and Dell ...

The title of the post is”What AI Security Research Looks Like When It Works,” and I agree: In the latest OpenSSL security ...

Microsoft has patched six exploited zero-days in February 2026 Patch Tuesday, addressing 58 vulnerabilities and triggering urgent enterprise remediation.

A critical vulnerability in Grandstream GXP1600 series VoIP phones allows a remote, unauthenticated attacker to gain root privileges and silently eavesdrop on communications.

ThreatsDay Bulletin tracks active exploits, phishing waves, AI risks, major flaws, and cybercrime crackdowns shaping this week’s threat landscape.

The developers behind a popular “open source MMO RTS sandbox game for programming enthusiasts” on Steam, named Screeps: World, have been forced to update their game “in order to protect both players” ...

This article first appeared on GuruFocus. Brazilian iron ore producer Vale SA (NYSE:VALE) disclosed that a second water overflow occurred over the weekend at its operations in Minas Gerais, a state ...

Brazilian mining firm Vale SA said it is investigating an overflow of water with sediment in a pit at the Fabrica mine in Minas Gerais state. The water reached some areas of Pires, a unit of ...

Multiple threat actors, both state-sponsored and financially motivated, are exploiting the CVE-2025-8088 high-severity vulnerability in WinRAR for initial access and to deliver various malicious ...

Meanwhile, CVE-2025-8088 can be abused to create booby-trapped archive files that can load malicious computer code into a hacker-selected path on a Windows PC. Antivirus vendor ESET originally ...