news

A newly disclosed local privilege escalation flaw in the Linux kernel allows unprivileged users to gain administrative control by exploiting a subtle bug in the cryptographic subsystem. This vulnerability, dubbed "Copy F

A sophisticated supply chain attack is leveraging compromised SAP-related npm packages to steal sensitive developer credentials and cloud secrets, potentially impacting software development pipelines. Published: 2026-04-

The cybersecurity landscape is rapidly evolving, with threat actors leveraging advanced AI capabilities to accelerate attack chains, necessitating a paradigm shift in defensive strategies. Published: 2026-04-29 | Author:

Attackers moved swiftly to exploit a severe SQL injection flaw in the popular LiteLLM package, demonstrating the shrinking window between vulnerability disclosure and active exploitation. Published: 2026-04-29 | Author:

The US government agency CISA has added two critical security flaws, one affecting ConnectWise ScreenConnect and another in Microsoft Windows, to its list of actively exploited vulnerabilities, mandating immediate patchi

A significant security vulnerability affecting multiple authentication pathways in cPanel has been disclosed, potentially allowing unauthorized access to server control panels. Users are strongly advised to update their