Once a secret enters Git, it’s expensive to remediate. But the real problem runs deeper than cost. Grégory Maitrallain, Solution…
Threat actors have been actively exploiting a critical vulnerability in React Server Components, tracked as CVE-2025-55182 and commonly referred to…
A suspected Russian malware-as-a-service operation has been selling a turnkey website-spoofing toolkit that promised to bypass Google’s Chrome Web Store…
Researchers have uncovered a significant security threat targeting ChatGPT users through deceptive browser extensions. A coordinated campaign involving 16 malicious…
CERT UEFI Parser, a new open-source security analysis tool from the CERT Coordination Center has been released to help researchers…
A cyberattack on Delta, a Russian provider of alarm and security systems for homes, businesses, and vehicles, has disrupted operations…
Federal Communications Minister Anika Wells is facing a Senate challenge to her decision to block access to documents that could…
OpenSSL patched 12 vulnerabilities on January 27, 2026, including one high-severity flaw that could lead to remote code execution. Most…
A new study shows that some of the most widely used AI-powered browser extensions are a privacy risk. They collect…
Security and risk teams often rely on documentation and audit artifacts that reflect how an AI system worked months ago….
Ravie LakshmananJan 28, 2026Network Security / Zero-Day Fortinet has begun releasing security updates to address a critical flaw impacting FortiOS…
A critical sandbox escape vulnerability has been identified in vm2. This widely used Node.js library provides sandbox isolation for executing…