1+ day, 18+ hour ago  (339+ words) Web hosting administrators must take immediate action, as c Panel has rolled out an emergency security update to address a critical vulnerability. Disclosed on April 28, 2026, this flaw impacts various authentication paths within the c Panel and Web Host Manager (WHM)…...

1+ day, 16+ hour ago  (311+ words) The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding a newly discovered zero-day vulnerability affecting Microsoft Windows. On April 28, 2026, the agency officially added CVE-2026-32202 to its Known Exploited Vulnerabilities (KEV) catalog. This critical flaw involves a…...

1+ day, 16+ hour ago  (397+ words) A previously unknown remote access trojan (RAT), dubbed'SLOTAGENT, after analyzing a suspicious ZIP archive uploaded from Japan to a public malware repository in early 2026. The malware demonstrates advanced evasion techniques and flexible post-exploitation capabilities, making it a notable addition to…...

1+ day, 19+ hour ago  (259+ words) Wiz Research has identified a critical remote code execution (RCE) vulnerability, tracked as CVE-2026-3854, deeply embedded within Git Hub's internal git infrastructure. This high-severity flaw enabled any authenticated user to execute arbitrary commands on backend servers using a single standard'git…...

2+ day, 11+ hour ago  (246+ words) A critical remote code execution (RCE) vulnerability has been uncovered in Hugging Face's Le Robot, a popular open-source robotics machine learning framework. Tracked as CVE-2026-25874, the flaw carries a maximum CVSS severity score of 9. 8 and allows unauthenticated attackers to execute…...

2+ day, 14+ hour ago  (273+ words) Microsoft announced a major evolution for Copilot in Outlook, shifting the tool from a passive assistant to an autonomous agent. Instead of simply drafting emails or summarizing threads on command, the AI now actively manages ongoing daily tasks. This agentic…...

3+ day, 8+ hour ago  (488+ words) Researchers are warning that widely trusted local tools such as mac OS's textutil and Kee Pass XC can pose unexpected security risks when used within automated workflows. The issue is not traditional vulnerabilities such as memory corruption or code execution,…...

2+ day, 19+ hour ago  (356+ words) A Claude Opus 4. 6-powered AI coding agent operating through the Cursor editor autonomously deleted the production database and backups of Saa S startup Pocket OS in just nine seconds. The incident highlights critical security failures in AI guardrails and infrastructure…...

3+ day, 15+ hour ago  (182+ words) Google has rolled out urgent security updates for its Gemini CLI and the accompanying Git Hub Action to address a critical vulnerability. The vulnerability stems from two distinct bypasses within the Gemini CLI environment. When deployed in automated, non-interactive environments…...

2+ day, 17+ hour ago  (257+ words) Cybercriminals have already been observed exploiting this flaw to target high-value secrets such as API keys and provider credentials. CVE-2026-42208 is a critical flaw in Lite LLM, an open-source proxy that connects applications to large language models such as those…...