A critical-severity vulnerability in the vm2 Node.js sandbox library, tracked as CVE-2026-22709, allows escaping the sandbox and executing arbitrary code on the underlying host system.

January 2026 was a wake-up month for enterprise security teams. In a single week, CERT-In released three high-severity ...

Cisco patched a critical exploit affecting some of its communication-based products. Designated as CVE-2026-20045, the vulnerability allows bad actors to run arbitrary commands on an affected device’s ...

Just yesterday, we noted the growing threat of ransomware. Now, Jamf Threat Labs is warning that North Korean threat actors ...

Vulnerabilities in Anthropic MCP server could be exploited via prompt injections to execute arbitrary code and read/delete arbitrary files.

Researchers found the popular model context protocol (MCP) servers, which are integral components of AI services, carry ...

Windows 11 includes multiple built-in security layers designed to protect your system from modern cyber threats. One such ...

Anthropic’s official Git MCP server hit by chained flaws that enable file access and code execution - SiliconANGLE ...

Prompt injection for the win Anthropic has fixed three bugs in its official Git MCP server that researchers say can be ...

Apple's emergency update notice raises urgency for users; understand risks, timing and steps to protect devices amid active ...

The patched issues span core standard library components including archive/zip and net/http, as well as security-sensitive ...

Attackers are now exploiting a critical Fortinet FortiSIEM vulnerability with publicly available proof-of-concept exploit code.