CISA added CVE-2026-42271, a high-severity LiteLLM command injection flaw, to its KEV catalog after evidence of active ...

This week’s recap covers exploited flaws, supply chain attacks, phishing kits, AI lures, macOS stealers, urgent CVEs, tools, ...

A max-severity vulnerability in the latest Python FastAPI version of the ChromaDB project allows unauthenticated attackers to run arbitrary code on exposed servers. The flaw is tracked as ...

Microsoft on Tuesday released fixes for two high-severity zero-days that were disclosed by a researcher who has been locked ...

Millions of AI agents and tools around the world have been imperiled by a critical vulnerability that can allow hackers to breach the servers running them and make off with sensitive data and ...

Update May 25, 04:19 EDT: CVE-2026-41091 is a Microsoft Defender local privilege escalation (LPE) flaw known as RedSun, and CVE-2026-45498 is known as UnDefend, a security flaw that can be exploited ...

The United States Senate has advanced a War Powers Resolution that could prevent President Donald Trump from using military force against Iran without congressional authorisation amid widening fallout ...

GitHub confirmed attackers stole 3,800 internal repositories via a poisoned VS Code extension. The same threat group, TeamPCP, simultaneously compromised Microsoft's durabletask Python ...

Washington — The Senate advanced a resolution to limit President Trump's war powers in Iran on Tuesday, marking a breakthrough for Democrats after seven failed attempts. Senators approved a motion to ...

House Republicans on Thursday pulled a vote on a measure that would compel President Trump to withdraw from the war with Iran, delaying action on the issue as the Trump administration struggles to ...

Chamber advances bill for first time as four Republicans join all but one of Senate’s Democrats in favor The Senate voted on Tuesday to advance a war powers resolution aimed at forcing Donald Trump to ...