Researchers at the AI Now Institute developed a proof-of-concept exploit showing common AI tools used for security could ...
A newly-disclosed exploit in Claude Code’s ‘auto-mode’ leaves developers facing remote code execution (RCE) vulnerabilities ...
Microsoft fixes a record 622 CVEs, including two exploited SharePoint and AD FS zero-days, while a Kerberos RC4 change could ...
Straiker, The Agentic Security Company, today released the inaugural threat report from its STAR Labs team. To understand the real-world risk AI agents pose to enterprises, researchers ran thousands ...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is warning that attackers are exploiting vulnerabilities in ...
A China-linked threat cluster has been exploiting vulnerable Roundcube servers at U.S. and Canadian universities to steal ...
Proofpoint says UNK_MassTraction exploited patched Roundcube flaws to target U.S. and Canadian university mail servers.
CISA added a Microsoft SharePoint RCE flaw to its exploited bugs catalog after confirming active attacks on unpatched servers ...
Remember last month when we were awed by Microsoft’s record-setting Patch Tuesday that addressed 206 CVEs? That was a quaint ...
A new attack technique dubbed HalluSquatting turns AI assistants’ tendency to hallucinate into a scalable infection vector.
F5 issued an emergency out-of-band security advisory on June 17, 2026, covering two critical vulnerabilities in NGINX — the web server and reverse proxy software running on approximately 38% of all ...