Proof-of-concept (PoC) code has been published for a one-click RCE vulnerability in open source LLM building platform Flowise.

Open source Git service Gogs is affected by a critical-severity zero-day vulnerability that exposes servers to remote code execution.

Moscow’s agents are building fake companies, recruiting middlemen and deploying cyber spies and hackers who gather information that could be used to attack key infrastructure. Russia’s intelligence ...

The latest May 2026 Chrome 148 update resolves 151 vulnerabilities, including critical flaws potentially leading to remote code execution.

Russia-linked GreyVibe hackers used generative AI to accelerate phishing, malware development, and cyberattacks.

AI security and governance provider Geordie has raised $30 million in Series A funding to enhance product capabilities.

The BTMOB RAT is targeting Android users to steal financial transactions and sensitive data, and to take over their devices.

CVE-2026-35616, a FortiClient EMS zero-day vulnerability patched in April, has been exploited in fresh infostealer attacks.

IBM and Red Hat's Project Lightwell is a joint initiative to secure open source software backed by a $5 billion investment.

Edamame's runtime security platform detects AI coding agent “intent drift,” secret theft and supply-chain attacks using host ...

Agentic cyberattacks create an asymmetrical advantage in attack speed, but defenders can even the odds by adopting agentic cybersecurity.

Cruise line operator Carnival Corporation is notifying approximately 6 million individuals that their personal information was stolen in a recent data breach. Carnival said the incident was identified ...