Your Monday cybersecurity recap covers the latest digital threats, exposed weaknesses, active attacks, and security stories ...

Ubiquiti released a new security bulletin detailing fixes for six security issues, including one rated 9.1 (critical) and one scoring a perfect 10.0 on the CVE risk scale. The vulnerabilities ...

Sometime in late May 2026, a poisoned update slipped into the @antv family of JavaScript visualization libraries, the ...

Two months after Rapid7 discovered the hole in the Git service, the project maintainer has yet to patch the bug.

India's software supply chain security challenge is deepening as AI expands the attack surface while many enterprises lack ...

Reported over three years ago and allegedly still not properly fixed, the vulnerability enables attacks to execute JavaScript ...

Microsoft’s GitHub has suffered what appears to be its biggest ever security breach after confirming that attackers ...

OpenAI is telling every Mac user running its ChatGPT or Codex desktop app to update right now. The urgency traces back to a supply-chain attack on a popular open-source JavaScript toolkit called ...

THORChain, the decentralized cross-chain liquidity protocol that enables swaps between major blockchain networks, appears to have been exploited for approximately $11 million across Bitcoin, Ethereum, ...

A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker protections and gain complete access to an encrypted drive within seconds.

is a high-performance Discord exploitation framework designed for silent IP/ISP tracking and network auditing. It utilizes sophisticated redirection techniques to bypass Discord's security filters, ...

Google says hackers used AI to help build a zero-day exploit targeting 2FA, raising concerns about AI-assisted hacking. Google says hackers used AI to help build a zero-day exploit, then stopped it ...