Infosecurity spoke with the researcher who dumped over 30 proof-of-concept exploits without disclosing the vulnerabilities ...
Research from JFrog into the software supply chain vulnerability points to the need for better visibility into applications, ...
StegoAd Microsoft Edge extensions malware affected up to 2.6 million users after the company removed 119 add-ons that hid ...
Researcher Devashri Datta introduces AIVEX and SRIL, new approaches designed to bring context-aware risk analysis to software ...
What happens when you take all the potential problems inherent in the first generation of commercially available generative ...
Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
Attackers are actively exploiting a critical Cisco Unified CM SSRF vulnerability, tracked as CVE-2026-20230, to plant persistent webshells on exposed servers. Tor-anonymised sweeps began around June ...
CISA warned on Wednesday that attackers have begun exploiting a high-severity Microsoft SharePoint remote code execution ...
A flaw in Hugging Face Transformers could allow malicious AI models to execute code, exposing credentials and highlighting AI supply chain risks.
Microsoft details AutoJack exploit chain targeting AutoGen Studio MCP WebSocket in pre-release builds, enabling ...
Security software company Ivanti has released patches to address two critical vulnerabilities in its Sentry secure mobile gateway solution, including a maximum-severity flaw that enables remote ...
Researchers have discovered two vulnerabilities in the widely used Cursor AI-enabled integrated development environment (IDE) ...