CISA adds an actively exploited SolarWinds Web Help Desk RCE flaw to KEV, ordering federal agencies to patch by February 2026 ...

Cloud-native applications have changed how businesses build and scale software. Microservices, containers, and serverless ...

Update Chainlit to the latest version ASAP Two "easy-to-exploit" vulnerabilities in the popular open-source AI framework Chainlit put major enterprises' cloud environments at risk of leaking data or ...

The most popular trusted model context protocol (MCP) servers on the Web today contain severe cybersecurity vulnerabilities. The Internet of AI forming all around us is growing larger and more ...

About 175,000 private servers are reportedly exposed to the public internet, giving hackers the opportunity to carry out ...

Researchers with Cyata and BlueRock uncovered vulnerabilities in MCP servers from Anthropic and Microsoft, feeding ongoing security worries about MCP and other agentic AI tools and their dual natures ...

Security researchers uncovered two vulnerabilities in the popular Python-based AI app building tool that could allow attackers to extract credentials and files — and gain a lateral edge.

DryRun Security, the industry’s first AI-native, code security intelligence company, today announced the DeepScan Agent, a new AI-powered capability that delivers full-repository application security ...

Vulnerabilities in Chainlit could be exploited without user interaction to exfiltrate environment variables, credentials, databases.

Matcha Meta users were exposed via a SwapNet smart contract exploit, with up to $16.8M stolen on Base, highlighting ongoing approval risks.