Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching cycles.

Cybernews researchers uncovered numerous OpenWebUI instances that were silently running malware.

Instead of the usual phishing email or fake download page, attackers are using Google Forms to kick off the infection chain. The attack typically begins when a victim downloads a business-themed ZIP ...

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...

Files on a central cloud server used by the ransomware group highlight a systematic, aggressive attack on network backups as a key TTP.

Nvidia led a week of big AI moves, major security threats, app ecosystem changes, and tech industry shakeups across Apple, Google, Meta, Microsoft, and OpenAI.

If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ Trivy maintainer says.

OpenAI is consolidating its ChatGPT app, Codex coding platform, and Atlas browser into a single desktop application, the company’s CEO of Applications Fidji Simo announced at an internal all-hands ...

If you're a cybersecurity enthusiast or ethical hacker who wants to learn more about building hacking tools, this book is for you.