SAP NPM Packages Targeted in Supply Chain Attack
Four SAP NPM packages have been injected with malicious code as part of a new supply chain attack, security researchers warn. The campaign, referred to…
Latest Cybersecurity News — Page 18
View all →
Meta accused of violating DSA by failing to safeguard minors
Meta accused of violating DSA by failing to safeguard minors Pierluigi Paganini April 30, 2026 The European Commission accuses Meta of failing to protect children,…
Everyone’s building AI agents. Almost nobody’s ready for what they do to identity.
Anthropic recently announced that it would not release Mythos, its most powerful AI model, to the public. The model discovered thousands of previously unknown software…
Gaming platform Roblox to require facial scans for users under 16 in Indonesia
Roblox, a gaming platform popular with kids, announced Thursday that children under 16 in Indonesia will be required to undergo facial scans to verify their…
Dismantle implicit trust in OT networks, CISA tells critical infrastructure operators
“The blanket application of traditional information technology (IT)-focused ZT capabilities to OT is neither reasonable nor feasible,” the document stated, calling instead for continuous collaboration…
Northwood University earns NSA Cybersecurity Excellence Designation, as demand for skilled talent grows
Northwood University has been designated as a National Center of Academic Excellence in Cybersecurity by the National Security Agency, one of the nation’s most respected…
Agentic AI security: Risks and solutions
As AI tools evolve from siloed chatbots to autonomous, hyperconnected systems, they create a vast new attack surface. Discover how to manage this risk by…
Critical cPanel and WHM bug exploited as a zero-day, PoC now available
The critical CVE-2026-41940 authentication bypass vulnerability in cPanel, WHM, and WP Squared is being actively exploited in the wild and has been leveraged in attempts…
CVE MCP Server Turns Claude Into a Fully Capable Security Analyst With 27 Tools Across 21 APIs
A new open-source project called CVE MCP Server is redefining how security teams triage vulnerabilities, transforming Anthropic’s Claude AI into a fully capable security analyst…
Best AI security tools for exposure assessment in 2026
AI is transforming both attacks and defense. To avoid being outstripped by AI-powered adversaries, organizations need platforms that prioritize risk in real-time. Exposure management with…
Exposed Data Illustrates the Nightmare Scenario for a Stalkerware Victim
Stalkerware allows people to secretly spy on romantic partners, family members or other associates by infecting a target’s phone and then silently amassing their text…
PoC Disclosed for Critical Root ASUSTOR ADM RCE Flaw
A critical vulnerability, tracked as CVE-2026-6644, has been uncovered in ASUSTOR’s ADM (ASUSTOR Data Master) operating system. Specifically, the flaw exists within the PPTP VPN…