A three-CVE chain lets any default LiteLLM user escalate to admin and get a shell on the gateway server. A separate RCE is ...

Three LiteLLM flaws let low-privilege users gain admin access and run code, exposing AI keys, secrets, prompts, and responses ...

CVE-2026-0257's GlobalProtect authentication bypass went from advisory to active exploitation in four days. The recurring ...

Microsoft’s monthly update included 206 fixes for flaws in everything from Windows to Office to Exchange Server, not to ...

Attackers have begun backdooring internet-exposed Ivanti Sentry appliances, the nonprofit security watchdog Shadowserver confirmed on June 11, 2026 — less than 48 hours after patches and a public ...

Reaper malware targets macOS users via Script Editor to steal crypto wallets, browser passwords, and sensitive files.

Threat actors are eschewing traditional malware-driven attacks in order to bypass security tools and socially engineer their victims, according to a new study from Bridewell. The consulting specialist ...

According to ongoing Torque News tracking of manufacturing defects and wholesale marketplace valuations, the transition to high-density digital architectures in the full-size truck segment has ...

Police issued an "all-clear" for Gateway Church after a thorough search confirmed a Sunday morning threat was a "swatting" hoax. No injuries were reported and no hazards were found following a ...

A fundamental shift in how cyberattacks are carried out is well underway as threat actors now increasingly log in using stolen credentials rather than breaking through traditional defenses. That’s ...

A new EtherRAT malware campaign using Ethereum smart contracts to hide command-and-control (C2) infrastructure has been identified by researchers. According to a new advisory published by eSentire on ...

SAN FRANCISCO — For less than $300, a criminal can buy everything needed to defeat a bank's identity verification: a Social Security number, a background report, a printer that can print onto the same ...