Infosecurity Magazine

Systemic Flaw in MCP Protocol Could Expose 150 Million Downloads

However, in a report published on April 15, researchers at Ox Security claimed that a flaw in the protocol could enable ...
Infosecurity Magazine

FIRST CEO Calls for Global CVE Collaboration amid AI Vulnerability Tsunami

FIRST CEO Chris Gibson urged global CVE collaboration and integrating AI companies to combat automated cyber threats ...
Infosecurity MagazineOpinion

OpenClaw Exposes the Real Cybersecurity Risks of Agentic AI

As recent incidents have shown, without effective governance, visibility and control, risks around Agentic AI can escalate ...
Infosecurity Magazine

Mirax Android Trojan Turns Devices Into Residential Proxy Nodes

Security researchers warn of Mirax, an emerging Android banking trojan using MaaS, remote access and residential proxies to ...
Infosecurity Magazine

Microsoft Fixes Two Zero-Days in April Patch Tuesday

Microsoft published a higher-than-usual list of fixes for CVEs as part of its monthly Patch Tuesday update round yesterday, ...
Infosecurity Magazine

Commercial AI Models Show Rapid Gains in Vulnerability Research

AI models are making rapid gains in vulnerability research and exploit development, raising new cybersecurity risks, a ...
Infosecurity Magazine

DDoS-For-Hire Services Disrupted by International Police Action in ‘Operation PowerOff’

Coordinated action by FBI, Europol and others seizes infrastructure, makes arrests – and sends warning letters to known DDoS ...
Infosecurity Magazine

NIST Drops NVD Enrichment for Pre-March 2026 Vulnerabilities

NIST’s National Vulnerability Database will now prioritize enriching new and exploited flaws to address the record growth of ...
Infosecurity Magazine

OpenAI Unveils GPT-5.4-Cyber for Improving Cyber Defense With AI

OpenAI’s new frontier model focused on cybersecurity comes following Anthropic’s launch of Claude Mythos Preview and Project ...
Infosecurity Magazine

AI Companies To Play Bigger Role in CVE Program, Says CISA

Lindsey Cerkovnik, head of vulnerability management at CISA, said AI companies should play a bigger role in vulnerability ...
Infosecurity Magazine

Critical Nginx-ui MCP Flaw Actively Exploited in the Wild

A critical authentication bypass in nginx-ui, a widely used open-source web interface for managing nginx servers, has been ...
Infosecurity Magazine

APK Malformation Found in Thousands of Android Malware Samples

Android Package (APK) malformation has emerged as a standard Android malware evasion tactic, with the technique identified in more than 3000 malicious samples across families including Teabot, TrickMo ...