News

IT World Canada2y

Python vulnerability puts 350,000 open-source projects at risk

Currently, 350,000 open-source projects and applications are at risk. The vulnerability, which is traced as CVE-2007-4559, has a severity of 6.8 and was discovered in 2007.
Techzine Europe6d

Critical vulnerability discovered in Copilot Enterprise

Dutch cybersecurity company Eye Security has discovered a security vulnerability in Microsoft Copilot Enterprise that allowed ...

Google's Gemini CLI agent could run malicious code silently

The recently introduced Google Gemini CLI agent, which provides a text based command interface to the company's artificial ...
WinBuzzer6d

Critical Microsoft Copilot Flaw Granted Full Root Access

Microsoft has patched a critical Copilot Enterprise flaw that gave researchers root access but controversially rated it ...

Flaw in Gemini CLI AI coding assistant allowed stealthy code execution

A vulnerability in Google's Gemini CLI allowed attackers to silently execute malicious commands and exfiltrate data from ...
The Hacker News11d

Google Launches OSS Rebuild to Expose Malicious Code in Widely Used Open-Source Packages

Google has announced the launch of a new initiative called OSS Rebuild to bolster the security of the open-source package ecosystems and prevent software supply chain attacks.
Bleeping Computer1y

Hackers exploit Aiohttp bug to find vulnerable networks

The ransomware actor 'ShadowSyndicate' was observed scanning for servers vulnerable to CVE-2024-23334, a directory traversal vulnerability in the aiohttp Python library.