PROBABLYPWNED

Cybersecurity News & Threat Intelligence

View all →
Adobe Patches 7 Max-Severity ColdFusion, Campaign Flaws
Vulnerabilities4 min read

Adobe Patches 7 Max-Severity ColdFusion, Campaign Flaws

Seven CVSS 10.0 vulnerabilities in Adobe ColdFusion and Campaign Classic enable unauthenticated RCE. Adobe shifts to twice-monthly security bulletins citing AI-accelerated discovery.

Marcus ChenJul 2, 2026
Phantom Squatting: Attackers Weaponize AI-Invented URLs
Threat Intelligence4 min read

Phantom Squatting: Attackers Weaponize AI-Invented URLs

Unit 42 finds attackers registering domains that LLMs hallucinate, then hosting phishing kits to intercept AI-directed traffic. Montana Empire kit caught 23 days after prediction.

Alex KowalskiJul 2, 2026
Curl Patches 18 Flaws Including 25-Year-Old mTLS Bypass
Vulnerabilities4 min read

Curl Patches 18 Flaws Including 25-Year-Old mTLS Bypass

Curl 8.21.0 addresses a record 18 CVEs, including CVE-2026-8932—an mTLS authentication bypass introduced in March 2001. AI tools discovered several of the vulnerabilities.

Marcus ChenJul 1, 2026
Cisco SD-WAN Zero-Day Exploited Since May—CVSS 10.0
Vulnerabilities3 min read

Cisco SD-WAN Zero-Day Exploited Since May—CVSS 10.0

CVE-2026-20182 allows unauthenticated attackers to inject rogue peers into Cisco SD-WAN fabrics. Active exploitation since May; no workaround available—patch immediately.

Marcus ChenJul 1, 2026
Chrome WebGL Flaw Enables Sandbox Escape on Android
Vulnerabilities4 min read

Chrome WebGL Flaw Enables Sandbox Escape on Android

CVE-2026-13028, a critical use-after-free in Chrome's WebGL component, scores CVSS 9.6 and allows remote code execution with sandbox escape on Android. Update immediately.

Marcus ChenJul 1, 2026

Security Guides

Learn about ransomware, phishing, malware, and essential online safety practices.

Recommended Resources

Curated books, tools, and resources to deepen your cybersecurity knowledge.

Stay Informed

Get the latest cybersecurity news delivered to your inbox.

We respect your privacy. Unsubscribe anytime.