Millions of AI agents imperiled by critical vulnerability in open source package

Millions of AI agents and tools around the world have been imperiled by a critical vulnerability that can allow hackers to ...
The Hacker News

⚡ Weekly Recap: Linux Flaws, Defender 0-Days, Router Botnets, and Supply Chain Chaos

Supply chain chaos, old bugs, smarter phishing, and botnets everywhere — here’s what broke the internet this week.
CSO Online

Microsoft patches two zero-day flaws in Defender

CISA has added the Microsoft Malware Protection Engine and Microsoft Defender Antimalware Platform vulnerabilities to its KEV ...
CSO Online

Unpatched ChromaDB flaw leaves servers open to remote code execution

The ChromaToast vulnerability can be exploited by forcing the ChromaDB API server to fetch and load maliciously crafted AI ...

GitHub confirms 3,800 internal repos stolen through poisoned VS Code extension as supply chain worm hits Microsoft’s Python SDK

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP ...
GitHub

lejouni/cisa-for-bdsca

A Python module to collect CISA (Cybersecurity and Infrastructure Security Agency) vulnerability information from Black Duck SCA. Supports CVE (NVD), EUVD, and BDSA vulnerability sources with ...
The Hacker News

The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

The Hacker News is the top cybersecurity news platform, delivering real-time updates, threat intelligence, data breach ...
PBS

WATCH: Senate advances war powers resolution to limit Trump after Venezuela raid

WASHINGTON (AP) — The Senate advanced a resolution Thursday that would limit President Donald Trump's ability to conduct further attacks against Venezuela, sounding a note of disapproval for his ...
Forbes

The Real Vulnerability Is Time: How Automation Closes The Remediation Gap

As the CEO and co-founder of Vicarius, Roi Cohen leads a cybersecurity company that provides exposure management solutions for enterprises. I’ve seen security teams generate alerts by the thousands, ...
GitHub

HaPy-Bug - Human Annotated Python Bug Resolution Dataset

entries with type 'choices' like "annotations-were-problematic", "reviewer-is-sure", "bug-type" contain selected answers entry with type 'cve' contains line and file ...