Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution

North Korea-Linked Hackers Target Developers via Malicious VS Code Projects

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

VoidLink Linux Malware Framework Built with AI Assistance Reaches 88,000 Lines of Code

Chainlit AI Framework Flaws Enable Data Theft via File Read and SSRF Bugs

Exposure Assessment Platforms Signal a Shift in Focus

Hackers exploit security testing apps to breach Fortune 500 firms

Fake Lastpass emails pose as password vault backup alerts

Chainlit AI framework bugs let hackers breach cloud environments

Zendesk ticket systems hijacked in massive global spam wave

Critical WordPress Modular DS Plugin Flaw Actively Exploited to Gain Admin Access

AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks

Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways

Credential-stealing Chrome extensions target enterprise HR platforms

Google Chrome now lets you turn off on-device AI model powering scam detection

Critical WordPress Modular DS Plugin Flaw Actively Exploited to Gain Admin Access

AWS CodeBuild Misconfiguration Exposed GitHub Repos to Potential Supply Chain Attacks

Cisco Patches Zero-Day RCE Exploited by China-Linked APT in Secure Email Gateways

China-Linked APT Exploited Sitecore Zero-Day in Critical Infrastructure Intrusions

LOTUSLITE Backdoor Targets U.S. Policy Entities Using Venezuela-Themed Spear Phishing