CSO Online

June Patch Tuesday marks a ‘new normal’ with over 200 CVEs, 32 rated ‘critical’

AI discovery is increasing the count of zero days and other CVEs, so enterprises should prepare for larger Patch Tuesdays in ...

SAP fixes critical flaws in NetWeaver and Commerce Cloud

SAP has released fixes for 15 vulnerabilities as part of its June 2026 Security Patch package, including four critical-severity flaws affecting SAP NetWeaver and SAP Commerce Cloud.
InfoWorld

33 LLM metrics to watch closely

Look to these key metrics and benchmarks to evaluate the performance, capability, reliability, and safety of your AI models ...

New Apple Exploit Exposes Millions of iPhones Worldwide, No Software Fix Available

Researchers disclosed usbliter8, a SecureROM exploit affecting older Apple devices that can bypass boot protections with ...
InfoQ

Java News Roundup: Spring Tools, Helidon, Open Liberty, TomEE, JobRunr, Hibernate, Commonhaus

This week's Java roundup for June 15th, 2026, features news highlighting: point releases of Spring Tools, Helidon, JobRunr ...

Apple's A12 and A13 Chips Facing New Unpatchable Exploit

Security research firm Paradigm Shift today published details of a new BootROM vulnerability affecting Apple's A12 and A13 ...
latesthackingnews.com

CVE-2026-48907: How the Joomla JCE Exploit Works and What to Do About It

CVE-2026-48907 in the Joomla JCE plugin lets unauthenticated attackers drop PHP web shells with a single crafted request.
ADTmag

Azul Takes Aim at the Java Runtime Security Blind Spot

Azul launched a free assessment to help enterprises find and prioritize vulnerable Java runtimes as AI-assisted attacks increase patching pressure.

Google says ShinyHunters hackers targeting education sector via Oracle exploit

June 11 (Reuters) - Alphabet's cybersecurity unit Mandiant and Google Threat Intelligence Group said Thursday they had ...
Dark Reading

AI-Assisted Exploit Development Outpaces Scanner Detection

Attackers have reduced the time to develop an exploit for a known vulnerability from 125 days to a mere half a day, thanks to the use of AI-assisted development, leaving vulnerability scanners ...

Check Point Warning: Actively Exploited VPN Zero-Day Linked to Qilin Ransomware

Check Point says VPN zero-day CVE-2026-50751 was exploited by a Qilin-linked actor, prompting emergency hotfixes and a CISA ...