January 2026 was a wake-up month for enterprise security teams. In a single week, CERT-In released three high-severity ...

The Model Context Protocol just got its first official extension, and it changes what AI assistants can do. MCP Apps lets tools return interactive user interfaces—dashboards, forms, visualizations, ...

The RedKitten campaign distributes lures designed to target people seeking information about missing persons or political dissidents in Iran ...

The rapid adoption of AI agents has exposed a structural security problem in the Model Context Protocol. Due to a lack of authentication, hundreds of MCP ...

A critical vm2 Node.js vulnerability (CVE-2026-22709, CVSS 9.8) allows sandbox escape via Promise handler bypass.

Two vulnerabilities in n8n’s sandbox mechanism could be exploited for remote code execution (RCE) on the host system.

Researchers disclosed two n8n vulnerabilities that let authenticated users bypass JavaScript and Python sandboxes to run ...

Two vulnerabilities in the n8n workflow automation platform could allow attackers to fully compromise affected instances, access sensitive data, and execute arbitrary code on the underlying host.

Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers ...

To exploit the vulnerability, an attacker would need either system access or be able to convince a user to open a malicious ...

A hands-on test compared Visual Studio Code and Google Antigravity on generating and refining a simple dynamic Ticket Desk ...

Despite lots of hype, "voice AI" has so far largely been a euphemism for a request-response loop. You speak, a cloud server ...