CISA orders feds to patch Gogs RCE flaw exploited in zero-day attacks

CISA has ordered government agencies to secure their systems against a high-severity Gogs vulnerability that was exploited in ...

Hackers are going after top LLM services by cracking misconfigured proxies

Hackers are targeting misconfigured proxies in order to see if they can break into the underlying Large Language Model (LLM) ...

Max severity Ni8mare flaw impacts nearly 60,000 n8n instances

Nearly 60,000 n8n instances exposed online remain unpatched against a maximum-severity vulnerability dubbed "Ni8mare." ...
Techzine EuropeOpinion

From vulnerability whack-a-mole to strategic risk operations

Qualys VP Alex Kreilein explains why counting vulnerabilities fails and how VEX-enhanced SBOMs enable true risk operations ...

Wegmans is scanning your face at some stores. It’s not the only company

Wegmans, the supermarket chain known for its cult-like following, angered some loyalists after revealing it uses facial recognition technology at New York City stores.
The Hacker News

The 2026 State of Pentesting: How Modern Teams Manage and Deliver Results

Pentesting has shifted to continuous delivery, automated validation, and unified workflows to drive real risk reduction in ...
Security Boulevard

Are There IDORs Lurking in Your Code? LLMs Are Finding Critical Business Logic Vulns—and They’re Everywhere

Security teams have always known that insecure direct object references (IDORs) and broken authorization vulnerabilities exist in their codebases. Ask any ...
Security Boulevard

135% Surge: Inside the Holiday Bot Attacks of December 2025

DataDome detected a 135% surge in malicious bot attacks during December 2025. Discover how AI-powered bots targeted retailers ...
The Hacker News

ThreatsDay Bulletin: RustFS Flaw, Iranian Ops, WebUI RCE, Cloud Leaks, and 12 More Stories

Weekly cybersecurity roundup covering exploited vulnerabilities, malware campaigns, legal actions, and nation-state attacks ...

AI Vs. AI: Exploitability Must Lead Modern Cyber Defense

To counter AI-enabled offense, defenders must automate their decision-making as well. This does not remove humans from the ...
Cryptopolitan

YZi Labs and Certik launch $1M audit grant for EASY residency participants

YZi Labs and CertiK launch a $1 million audit grant to strengthen security for EASY Residency Web3, AI, and biotech startups.
PCMag

MacPaw Moonlock Review: Elegant Mac Antivirus With Room to Grow

With a Mac-first attitude and an appealing interface, MacPaw Moonlock is an attractive new antivirus, but it still has some ...