Overview On April 15, NSFOCUS CERT detected that Microsoft released the April Security Update patch, fixing 165 security issues involving Windows, Microsoft Office, Microsoft SQL Server, Microsoft ...

A design choice in the MCP SDKs allows remote code execution across the AI supply chain.

Hackers are actively exploiting a critical vulnerability in the Breeze Cache plugin for WordPress that allows uploading ...

Incomplete patch for a Windows SmartScreen and Windows Shell security prompts bypass created a new bug enabling zero-click ...

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...

Google Antigravity’s increasing popularity has brought the development platform into the crosshairs of researchers and ...

Remote terminal units, PLCs, PoS systems, and bedside patient monitors may be susceptible to remote code execution, ...

The prompt-injection issue in the agentic AI product for filesystem operations was a sanitization issue that allowed for ...

When 500,000 Findings Hide 14 Real Threats Modern enterprises ingest vulnerability data from dozens of sources: endpoint ...

CVE-2026-32202 actively exploited after April 27 advisory fix, exposing NTLMv2 hashes via zero-click SMB authentication.

Researchers say a prompt injection bug in Google's Antigravity AI coding tool could have let attackers run commands, despite ...

From uncovering decades-old vulnerabilities to autonomously building exploits, Anthropic's Mythos AI frontier model is ...