Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching cycles.

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...

Cybernews researchers uncovered numerous OpenWebUI instances that were silently running malware.

Chainguard is racing to fix trust in AI-built software - here's how ...

Qualys reports the discovery by their threat research unit of vulnerabilities in the Linux AppArmor system used by SUSE, Debian, Ubuntu, and ...

Discover how to secure agentic AI and protect against threats with new capabilities across Microsoft Agent 365, Microsoft Entra, Microsoft Defender, and more.

NVIDIA NemoClaw adds OpenShell sandbox monitoring and strict policies to secure OpenClaw agents, but setup on Brev is error-prone and slow.

CanisterWorm infects 28 npm packages via ICP-based C2, enabling self-propagation and persistent backdoor access across developer systems.

The founders are worth paying attention to.

CTI-REALM is Microsoft’s open-source benchmark that evaluates AI agents on real-world detection engineering. It measures whether an agent can take cyber threat intelligence (CTI) and produce validated ...

Nvidia dominated tech news this week, as its hold on the artificial intelligence factory boom only tightened at its annual GTC conference in San Jose. It introduced a raft of updated chips and ...