CSO Online

Chained vulnerabilities in Cisco Catalyst switches could induce denial-of-service

Cisco’s widely deployed Catalyst 9300 Series enterprise switches have four security vulnerabilities, two of which could be ...
CSO Online

OpenAI patches twin leaks as Codex slips and ChatGPT spills

Command injection in Codex and a hidden outbound channel in ChatGPT exposed risks of credential theft and covert data ...
SecurityWeek

Exploitation of Critical Fortinet FortiClient EMS Flaw Begins

Threat actors have started exploiting CVE-2026-21643, a critical vulnerability in Fortinet FortiClient EMS leading to remote ...
SecurityWeek

Cisco Patches Multiple Vulnerabilities in IOS Software

Cisco has released patches for a dozen IOS and IOS XE vulnerabilities that could lead to DoS, secure boot bypass, and ...
The Hacker News

Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website

Claude extension flaw enabled silent prompt injection via XSS and weak allowlist, risking data theft and impersonation until ...

Critical Fortinet Forticlient EMS flaw now exploited in attacks

Attackers are now actively exploiting a critical vulnerability in Fortinet's FortiClient EMS platform, according to threat intelligence company Defused.
GovInfoSecurity

How Prompt Injection Attacks Undermine AI Guardrails

Large language models are inherently vulnerable to prompt injection attacks, and no finite set of guardrails can fully ...
The Tech Edvocate

CISA Identifies Critical Vulnerabilities in AI and Security Tools: What You Need to Know

Spread the loveThe Cybersecurity and Infrastructure Security Agency (CISA) has recently made headlines by adding two significant vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog.