CISA Flags Actively Exploited Langflow CVE-2025-34291 Flaw
The U.S. Cybersecurity and Infrastructure Security Agency...
Microsoft Defender Vulnerabilities Under Active Exploitation
The U.S. Cybersecurity and Infrastructure Security Agency...
npm Revokes All 2FA-Bypass Tokens After Supply Chain Attack
npm has revoked every granular access token with write...
Megalodon Attack Backdoors 5,500+ GitHub Repos via CI/CD
A sweeping automated supply chain campaign...
Drupal SQL Injection CVE-2026-9082 Critical Patch Released
The Drupal Security Team has released security advisory...
Fake Microsoft Teams Sites Spread ValleyRAT Malware via DLL Sideloading
Cybercriminals are actively leveraging the Microsoft Teams...
Apache OFBiz RCE Flaw CVE-2026-45434 Enables Auth Bypass Attacks
A critical authentication bypass vulnerability in Apache...
Claude Code Sandbox Flaw Exposed Credentials for 5 Months
A critical null-byte injection vulnerability in...
Grafana GitHub Breach Tied to TanStack npm Supply Chain Attack
Grafana Labs has disclosed a targeted GitHub security...
Critical FreePBX Bug Exposes User Portals to Unauthenticated Access
A critical security vulnerability has been discovered in...