Claude Code flaws allow remote code execution and API key theft via untrusted repositories; three bugs fixed across 2025–2026 releases.

A maximum severity vulnerability in the FreeScout helpdesk platform allows hackers to achieve remote code execution without any user interaction or authentication.

CVE-2026-22719, a recently patched vulnerability in VMware Aria Operations, has been exploited in the wild, CISA warned.

Sovereign factory AI is the starting point for a secure coding assistant. Enterprises need to embrace a data-first security approach, one that protects sensitive information at the point of retrieval ...

Three of the four vulnerabilities remained unpatched months after OX Security reported them to the maintainers.

Cybersecurity solutions company Check Point has found critical flaws in Anthropic’s Claude Code. They cautioned that ...

Open WebUI carried CVE-2025-64496, a high-severity code injection flaw in Direct Connection features Exploitation could enable account takeover and RCE via malicious model URLs and Functions API ...

Microsoft has twisted the knife into ActiveX once again, setting Microsoft 365 to disable all controls without so much as a prompt.… The change replaces the previous default setting, "Prompt me before ...

The Coruna exploit kit has 23 exploits targeting iOS devices, previously used in Russian attacks and now in cybercrime ...

Trojanized gaming tools and new Windows RATs like Steaelite enable data theft, ransomware, and persistent remote control.

Highest maturity classification underscores GFT’s ability to embed AI directly into the execution layer of large-scale, ...