Showing 161 - 170 of 177 historical articles
2026-07-02 - Poisoned MCP Tool Descriptions: Microsoft Warns of New Exploitation Vector for AI Agents
Poisoned MCP Tool Descriptions: Microsoft Warns of New Exploitation Vector for AI Agents Executive Summary Microsoft has issued a critical warning regarding a novel exploitation vector targeting large language model (LLM) workflows and autonomous AI agents. D...
2026-07-02 - DuneSlide Zero-Click Sandbox Escape in Cursor AI IDE (CVE-2026-50548 & CVE-2026-50549)
Breaking Out: "DuneSlide" Zero-Click Sandbox Escape Flaws Exposed in Cursor AI IDE Executive Summary A pair of critical vulnerabilities collectively named "DuneSlide" has been disclosed in the widely adopted Cursor AI-powered Integrated Development Environmen...
2026-07-02 - Cybersecurity Warning: Fake GitHub PoC Repos Distribute New ChocoPoC RAT
Cybersecurity Warning: Fake GitHub PoC Repos Distribute New ChocoPoC RAT Executive Summary Security researchers and bug hunters have increasingly become the targets of malicious social engineering campaigns. A recent joint investigation by YesWeHack and Sekoi...
2026-07-02 - Langflow RCE Vulnerability Actively Exploited to Deploy Monero Cryptominers
Langflow RCE Vulnerability Actively Exploited to Deploy Monero Cryptominers Executive Summary Threat actors are actively scanning the public internet to compromise open-source AI development tools. A critical Remote Code Execution (RCE) vulnerability in Langf...
2026-07-02 - Massive Password Spraying Campaign Targets Microsoft 365 Tenants via Azure CLI
Privacy Notice: Massive Password Spraying Campaign Targets Microsoft 365 Tenants via Azure CLI Executive Summary A massive credential-targeting campaign has hit Microsoft 365 enterprise tenants globally. Over a two-week period, unknown threat actors launched...
2026-07-02 - Citrix NetScaler Multiple Vulnerabilities: Immediate Patches Required for File Read and DoS Flaws
Citrix NetScaler Multiple Vulnerabilities: Immediate Patches Required for File Read and DoS Flaws Executive Summary Citrix has released a critical security bulletin addressing multiple high-severity vulnerabilities affecting its NetScaler Application Delivery...
2026-07-02 - Critical Progress Kemp LoadMaster Pre-Auth RCE Under Active Exploitation (CVE-2026-8037)
Edge Under Siege: Progress Kemp LoadMaster Pre-Auth RCE (CVE-2026-8037) Facing Active Exploitation Executive Summary A critical vulnerability in the Progress Kemp LoadMaster load balancer is facing active in-the-wild exploitation attempts. Tracked as CVE-2026...
2026-07-02 - Poisoned MCP Tool Descriptions: Microsoft Warns of New Exploitation Vector for AI Agents
Poisoned MCP Tool Descriptions: Microsoft Warns of New Exploitation Vector for AI Agents Executive Summary Microsoft has issued a critical warning regarding a novel exploitation vector targeting large language model (LLM) workflows and autonomous AI agents. D...
2026-07-02 - Alert: Critical Progress Kemp LoadMaster Command Injection CVE-2026-8037 Under Active Attack
Alert: Critical Progress Kemp LoadMaster Command Injection CVE-2026-8037 Under Active Attack Executive Summary Progress Software has recently issued an urgent patch for a critical vulnerability affecting its Kemp LoadMaster application delivery controllers. T...
2026-07-02 - CISA Sounds Alarm: SharePoint Server RCE CVE-2026-45659 Added to KEV Catalog
CISA Sounds Alarm: SharePoint Server RCE CVE-2026-45659 Added to KEV Catalog Executive Summary The Cybersecurity and Infrastructure Security Agency (CISA) has added a high-severity remote code execution (RCE) vulnerability in Microsoft SharePoint Server to it...