Offensive Security

Mon, 13 Apr 2026

Adobe issues emergency fix for Acrobat Reader flaw exploited in the wild (CVE-2026-34621)

Adobe released an emergency patch for a zero-day prototype pollution vulnerability in Acrobat Reader exploited since November 2025. The flaw allows arbitrary code execution but requires user...

Read Article

Mon, 13 Apr 2026

Seized VerifTools servers expose 915,655 fake IDs, 8 arrested

Dutch police arrested eight suspects linked to VerifTools, a platform involved in identity fraud. The operation followed the takedown of the website and seizure of servers in cooperation with the FBI.

Read Article

Mon, 13 Apr 2026

OpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain Incident

OpenAI disclosed a supply chain compromise involving a malicious Axios library in its macOS app signing workflow. No user data or systems were compromised.

Read Article

Mon, 13 Apr 2026

Fixing vulnerability data quality requires fixing the architecture first

Vulnerability data inconsistencies arise from poor system design and lack of shared standards. MVVE proposes a flexible approach to align vulnerability descriptions.

Read Article

Mon, 13 Apr 2026

ZeroID: Open-source identity platform for autonomous AI agents

ZeroID enhances attribution and traceability in autonomous multi-agent systems by implementing verifiable delegation chains. It addresses gaps in existing identity solutions for agentic workflows.

Read Article

Mon, 13 Apr 2026

MITRE releases a shared fraud-cyber framework built from real attack data

Financial fraud losses surged to $16.6 billion in 2024, driven by fragmented fraud prevention teams. The MITRE Fight Fraud Framework (F3) aims to unify detection and disruption efforts.

Read Article