CSO Online

Hackers exploit a critical Flowise flaw affecting thousands of AI workflows

The design flaw in Flowise’s Custom MCP node has allowed attackers to execute arbitrary JavaScript through unvalidated ...

CacheFly Showcases Next-Generation Content Delivery Solutions at NAB Show 2026

Highlights include new Advanced Analytics, EdgeControl, and Terraform integration We’re excited to demonstrate how ...

Unico plants flag in Menlo Park after acquisition spree

The company made three acquisitions since 2024, adding liveness detection technology and passwordless authentication. Its ...

API Key Leak Exposes AWS, Stripe, OpenAI Credentials Across Thousands of Sites

Researchers found thousands of exposed API keys across 10 million webpages, including AWS, Stripe, and OpenAI credentials ...
SecurityWeek

Axios NPM Package Breached in North Korean Supply Chain Attack

North Korean hackers published backdoored versions of the Axios NPM package using a compromised long-lived access token.

Google Threat Intel Flags Ghostblade As Crypto-Stealing Malware

Google Threat Intel Flags Ghostblade As Crypto-Stealing Malware. Google Threat Intelligence has flagged a new crypto-stealing malware named“Ghostblade” targeting Apple iOS devices. Described as part ...

Bubble AI app builder abused to steal Microsoft account credentials

Threat actors are evading phishing detection in campaigns targeting Microsoft accounts by abusing the no-code app-building ...
Hoodline

Fake CAPTCHA Scam Tricks Windows Users Into Installing Password-Snatching Malware

Fake CAPTCHA pages can install the StealC infostealer. Don't paste or run commands; disconnect and change passwords.
Windows Report

Hackers Breached Axios npm by Impersonating Companies and Hijacking Maintainer Access

Hackers infiltrated Axios maintainers using fake Slack channels and Teams calls, then published infected packages.
CSO Online

Chained vulnerabilities in Cisco Catalyst switches could induce denial-of-service

Cisco’s widely deployed Catalyst 9300 Series enterprise switches have four security vulnerabilities, two of which could be ...
Infosecurity Magazine

Phantom Project Bundles Infostealer, Crypter and RAT For Sale

The malware, known as Phantom Stealer, collects browser credentials, cookies, saved passwords, autofill data and payment card ...
DataBreachToday

Phishing Defense: Tracking Adversary-in-the-Middle Attacks

Phishing attacks continue to grow more refined, thanks in no small part to the easy availability of constantly evolving phishing-as-a-service platforms, including ...