Expert perspectives on application security, compliance, and emerging threats
IncidentYour SIEM flagged an anomaly in authentication patterns. You asked your AI security assistant to investigate. It analyzed the logs, identified what it called malicious bot traffic, and recommended imm
IncidentWhat Happened In early 2025, security researchers at DepthFirst AI discovered CVE-2026-42945 , a vulnerability that had existed in NGINX for 18 years. The flaw affects NGINX versions 0.6.27 through 1.
IncidentWhat Happened Threat actors published malicious packages to RubyGems containing scrapers designed to target public-facing UK government servers. These packages appeared legitimate but included code th
IncidentWhat Happened CVE-2026-44338 , an authentication bypass vulnerability in PraisonAI s legacy API server, was exploited three hours and 44 minutes after public disclosure. The vulnerability affects all
Get weekly security insights and compliance updates delivered to your inbox.
IncidentOverview of the Vulnerability On April 21, 2026, security researchers at depthfirst disclosed CVE-2026-42945 , a critical vulnerability in NGINX s rewrite module that allows unauthenticated remote cod
IncidentOn January 12, 2025, OpenAI confirmed a security breach due to a supply chain attack on the TanStack ecosystem. The attack, named Mini Shai-Hulud by the extortion group TeamPCP, compromised numerous n
IncidentRapid Vulnerability Exploitation Security researchers disclosed an authentication bypass vulnerability in PraisonAI, and automated scanners probed vulnerable instances within three hours and 44 minute
IncidentOn May 11, 2026, 84 malicious npm package artifacts appeared in the @tanstack namespace, each with valid SLSA provenance signatures. These packages were released through TanStack s own pipeline. For s
IncidentThree API calls. No authentication required. Full process memory exposed — including API keys, conversation history, and model weights. CVE-2026-7482, now known as Bleeding Llama, turned approximately
IncidentWhat Happened On May 9, 2026, TeamPCP published a compromised version of the Checkmarx Jenkins AST plugin to the official Jenkins Marketplace. This malicious plugin contained info-stealing malware, ex
IncidentIncident Overview Between late 2024 and early 2025, attackers published over 150 malicious gems to the RubyGems repository. These gems were not meant to compromise developers who downloaded them. Inst
IncidentWhat Happened Between late 2024 and early 2025, attackers exploited CVE-2026-41940 , a vulnerability in cPanel s web hosting management interface, compromising hosting infrastructure on a large scale.
IncidentWhat Happened RubyGems temporarily stopped new account creation after detecting hundreds of malicious packages uploaded to its registry. The attack involved multiple newly created accounts uploading p
IncidentWhat Happened JetBrains disclosed CVE-2026-44413 , a high-severity vulnerability in TeamCity On-Premises versions 2025.11.4 and earlier. This flaw enables privilege escalation and may expose sensitive
IncidentWhat Happened Between late 2024 and early 2025, threat actor TeamPCP executed a supply chain attack that compromised over 170 npm and PyPI packages with more than 518 million downloads. The attack, as
IncidentIn 2024, the TeamPCP threat group executed a supply chain attack compromising 170 npm and PyPI packages, including key dependencies like the TanStack Router ecosystem and Mistral AI SDK. The attack ex
