News

WinBuzzer4d
Critical Microsoft Copilot Flaw Granted Full Root Access
Microsoft has patched a critical Copilot Enterprise flaw that gave researchers root access but controversially rated it ...
SecurityWeek14d
Fortinet FortiWeb Flaw Exploited in the Wild After PoC Publication
Dozens of FortiWeb instances have been hacked after PoC targeting a recent critical vulnerability was shared publicly. Hackers started targeting a recently patched critical-severity vulnerability in ...
Techzine Europe4d
Critical vulnerability discovered in Copilot Enterprise
Dutch cybersecurity company Eye Security has discovered a security vulnerability in Microsoft Copilot Enterprise that allowed ...
The Hacker News9d
Google Launches OSS Rebuild to Expose Malicious Code in Widely Used Open-Source Packages
Google has announced the launch of a new initiative called OSS Rebuild to bolster the security of the open-source package ecosystems and prevent software supply chain attacks.
Google's Gemini CLI agent could run malicious code silently
The recently introduced Google Gemini CLI agent, which provides a text based command interface to the company's artificial ...
Flaw in Gemini CLI AI coding assistant allowed stealthy code execution
A vulnerability in Google's Gemini CLI allowed attackers to silently execute malicious commands and exfiltrate data from ...
Anaconda raises $150M+ to speed up Python-based AI projects
According to the company, Insight Partners led the investment with participation from Mubadala Capital. Bloomberg reported ...
Cybernews1d
AI-generated code is functional, but not secure at all, researchers warn
AI-generated code introduces significant security flaws, with only 55% of generated code being secure across various models ...
Bleeping Computer1y
Hackers exploit Aiohttp bug to find vulnerable networks
The ransomware actor 'ShadowSyndicate' was observed scanning for servers vulnerable to CVE-2024-23334, a directory traversal vulnerability in the aiohttp Python library.