A critical unauthenticated remote code execution (RCE) vulnerability, tracked as CVE-2026-39808, has been publicly disclosed in Fortinet’s...
Cyber Attack
Attackers hijacked official Checkmarx KICS Docker Hub images and VS Code extensions to steal cloud credentials silently,...
Threat actors are actively exploiting a command injection vulnerability in discontinued D-Link DIR-823X routers to deploy a...
A critical authentication bypass vulnerability has been disclosed in OAuth2 Proxy (CVE-2026-40575), allowing unauthenticated remote attackers to...
A critical security vulnerability has been disclosed in Spring Security Authorization Server, exposing enterprise Java applications to...
Mozilla released Firefox 150 on April 21, 2026, patching 41 security vulnerabilities, including 9 rated High severity, spanning...
A cross-site scripting (XSS) vulnerability has been officially disclosed in the DeepL Chrome browser extension, tracked as...
Anthropic’s widely used AI coding assistant Claude Code has been hit by a high-severity sandbox escape vulnerability...
A critical remote code execution (RCE) vulnerability, tracked as CVE-2026-5760 with a CVSS score of 9.8, has...
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) Catalog with...