CVE-2026-3854 (CVSS 8.7) enabled GitHub RCE via git push, risking cross-tenant access to millions of repositories.

Arbitrum has frozen over $71 million in ETH tied to the Kelp DAO exploit in a bid to mitigate losses. According to a Tuesday ...

Aave is currently locked in a tight situation in the KelpDAO hack that Cryptopolitan reported on April 18, where an attacker ...

Attackers can abuse the near-maximum severity flaw in nginx-ui to restart, create, modify, and delete NGINX configuration ...

Flying Tulip said its withdrawal safeguard is designed to fail open, while a status page lets users monitor the system in real time. Flying Tulip, a decentralized finance (DeFi) platform founded by ...

Learn how CNAPPs combine CSPM, CWPP and IaC scanning to secure cloud-native infrastructure, reduce misconfigurations, and ...

A prompt injection flaw in Google’s Antigravity IDE turns a file search tool into a remote code execution vector, bypassing ...

Microsoft has released out-of-band (OOB) security updates to patch a critical ASP.NET Core privilege escalation vulnerability ...

Kelp DAO's $292M LayerZero bridge hack threatens Aave with up to $230M bad debt. Protocols dispute responsibility as DeFi ...

The Kelp DAO hack drained $292M, triggered $9B in Aave outflows, and wiped $13B from DeFi TVL. Here's what cross-chain contagion means for institutions.

This so-called shadow AI risk is already significant. A Microsoft study from October suggested that 71% of UK employees ...

Producing new coins, also known as tokens, can require computers to solve cryptographic puzzles, which takes large amounts of ...