CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...

Hackers are abusing unpatched Windows security flaws to hack into organizations

A security researcher published details of three security vulnerabilities in Windows Defender, and the code used to exploit ...

CISA flags Apache ActiveMQ flaw as actively exploited in attacks

CISA warned that attackers are now exploiting a high-severity Apache ActiveMQ vulnerability, which was patched earlier this ...
The Hacker News

Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation

CVE-2026-34197 exploited in Apache ActiveMQ; CISA KEV listing sets April 30, 2026 patch deadline, increasing enterprise RCE ...
GovInfoSecurity

Breach Roundup: Mr. Raccoon Wants Your Password

This week, a "Raccoon"-linked actor hit help desks, Eurail exposed 308K users, Fortinet patched critical flaws, Pushpaganda ...

Artificial Intelligence: The Benefits And Challenges To Cybersecurity

For cybersecurity, artificial intelligence tools can serve as both a transformational asset and also as a conceivable digital ...

AISLE’s Open Analyzer — Finding and fixing vulnerabilities without gated frontier models

Finding vulnerabilities is something the industry has done well, but remediating them hasn't been. Just look at how many ...

Experts flag potentially critical security issues at heart of Anthropic MCP

Anthropic sees no issues - and says the tools are working as intended.
Dark Reading

6-Year Ransomware Campaign Targets Turkish Homes & SMBs

Enterprises breaches make more headlines, while smaller incidents tend to be under-reported, if at all, allowing such ...

Security Footage Shows Brave Principal Stopping Armed Shooter At Oklahoma High School

A high school principal in Oklahoma is being praised after confronting and subduing an armed suspect on campus. Security ...
The Hacker News

⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More

Stay ahead of the logs with our Monday Recap. We break down active Adobe 0-days, North Korean crypto stings, and critical CVEs you need to patch today ...
SecurityWeek

Anthropic Unveils ‘Claude Mythos’ – A Cybersecurity Breakthrough That Could Also Supercharge Attacks

Anthropic launches Claude Mythos and Project Glasswing to strengthen cybersecurity—while experts warn the same tech could ...