Why should hackers bother with complicated cross-domain hacks or redirects when they can just change the pixels on your monitor? Because it's really hard and complicated, but not impossible, as one team at this year's DEF CON showed....

More than 600 sites found to be vulnerable to demanding exploit called Sweet32.

MySQL Zero-Day vulnerabilities allows hackers to hack online website mysql Database remotely

OpenJPEG JPEG2000 zero-day remote code execution CVE-2016-8332 vulnerability discovered.

"Root" via dirtyc0w privilege escalation exploit (automation script) / Android (32 bit) - root.sh

Critical Privilege Escalation Flaws in MySQL/Percona/MariaDB Give hackers Root Level Access to Server (Exploits Released)

Microsoft releases security patches for actively exploited critical zero-day vulnerabilities

Google Security Researcher Gal Beniamini Publishes Proof-of-Concept Exploit Code for Apple iOS Broadcom Wi-Fi Vulnerability (CVE-2017-1112)

Google's Project Zero researcher Ian Beer released iOS 11.1.2 exploit that could be used to build an iOS 11 Jailbreak tool.

MS17-010 Windows SMB Remote Command and Code Execution modules for all vulnerable targets Windows 2000 through 2016 (and of course the standard home/workstation counterparts).

auxiliary/admin/smb/...

In the past few weeks, the entire information security industry has grown very anxious about Meltdown and Spectre, two classes of exploits that can be used to manipulate vulnerabilities in the way many varieties of modern processors (but especially Intel…