Cybersecurity

CISA adds ConnectWise, Microsoft flaws to exploit

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added two actively exploited software flaws to its high-threat catalog on April 29, 2026.The new entries...

Critical GitHub RCE Flaw Lets Attacker Execute Code via Git Push

A critical vulnerability (CVE-2026-3854) in GitHub allowed remote code execution via a single "git push" command.The flaw was a command injection issue where unsanitized...

Hugging Face LeRobot Flaw Allows Remote Code Execution

A critical security flaw (CVE-2026-25874) has been disclosed in Hugging Face's open-source robotics platform, LeRobot, allowing unauthenticated remote code execution.The flaw stems from unsafe...

Microsoft AI Role Flaw Allowed Identity Takeover

A privilege escalation flaw in Microsoft Entra ID's Agent ID Administrator role was patched by Microsoft on April 9, 2026.The vulnerability allowed users with...

Checkmarx Data Leaked on Dark Web Following Attack

Checkmarx confirms stolen data from its GitHub repository was published on the dark web.The company states no customer data was stored in the compromised...

CISA Adds 4 Exploited Flaws to KEV Catalog

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added four actively exploited vulnerabilities to its Known Exploited Vulnerabilities catalog on April 24, 2026.The flaws...

China Accused of NASA Tech Theft via Phishing

A Chinese national associated with a state-owned defense firm impersonated U.S. engineers for years to steal sensitive defense software.Victims included employees at NASA, the...

Fake Apps on Apple Store Steal Crypto Keys

Researchers discovered 26 malicious apps on the Apple App Store, dubbed FakeWallet, designed to steal cryptocurrency wallet recovery phrases and private keys.The scam, active...

Latest news

Wall Street Fears North Korean Hackers, Seeks Blockchain Guardrails

Financial institutions are increasingly worried about their legal duty to stop state-backed Hackers like North Korean groups from accessing...

Wall Street Seeks Blockchain Guardrails Against North Korean Hackers

Beyond the Kelp DAO hack, Wall Street firms are increasingly concerned about their fiduciary duty to prevent state-sponsored bad...

Americans Wary of Crypto, AI Despite Industry PAC Spending

Majority of Americans are skeptical of crypto and AI, with 45% seeing crypto as too risky and 44% believing...