Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.

Ghost CMS flaw CVE-2026-26980 enabled attacks on 700+ sites, injecting ClickFix malware through fake CAPTCHA pages.

The four C&C channels used by GlassWorm, the botnet targeting open source software developers, have been disrupted.

GlassWorm poisoned 300 GitHub repositories since 2025, enabling supply chain attacks against developers and organizations.

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious ...

CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...

The EU and Germany both summoned Russian diplomats to protest attacks on Kyiv and orders for diplomats to leave the city. The UN secretary-general also rebuked Russia in a session on proliferating ...

Trump administration’s campaign of blowing up alleged drug-trafficking vessels has killed at least 194 in total ...

Command Alkon, the global leader in software and platform technology for the heavy building materials industry, announces the recent appointment of Davis ...

A variant of the PureLogs infostealer malware has been distributed through purchase-order-themed phishing emails that use a ...

Cohere, the trusted sovereign AI platform for governments and regulated industries worldwide, today announced the release of Command A+, a powerful open-source Mixture-of-Experts (MoE) model released ...

GitHub’s internal repositories — now staged publishing in npm 11.15.0 requires a human 2FA approval before any package goes ...