Expert perspectives on application security, compliance, and emerging threats
IncidentWhat Happened On a Friday in early 2025, CoreWeave disclosed CVE-2026-39987 , a critical remote code execution vulnerability in Marimo, their Python notebook platform. This flaw allowed attackers to e
IncidentWhat Happened In 2025, the National Vulnerability Database (NVD) announced it would no longer provide enrichment data—such as CVSS scores, CWE classifications, and affected product configurations—for
IncidentWhat Happened Between October 2025 and January 2026, GreyNoise captured 91,403 distinct attack sessions targeting publicly exposed LLM inference endpoints. The primary target was Ollama instances depl
IncidentOverview of the Vulnerability On March 30, security researchers at Pluto Security disclosed CVE-2026-33032 , a critical vulnerability in nginx UI, a popular web-based management tool for nginx servers
Get weekly security insights and compliance updates delivered to your inbox.
IncidentWhat Happened In Q1 2026, Sonatype identified 21,764 open source malware packages across public repositories, with npm accounting for 75% of these. Three incidents highlighted how attackers exploit tr
IncidentA recent compromise of the popular Axios npm package has highlighted critical gaps in supply chain security for software development teams. Google s Threat Intelligence Group attributed the breach of
IncidentWhat Happened SafeDep discovered 36 malicious npm packages posing as legitimate Strapi CMS plugins. These packages exploited Redis and PostgreSQL connections to deploy reverse shells and steal credent
IncidentWhat Happened Between late 2024 and early 2025, attackers exploited the React2Shell vulnerability in Next.js applications to execute an automated credential theft campaign. Using a framework called NE
IncidentWhat Happened The npm package Cline version 2.3.0 was compromised with malicious code that installed OpenClaw, a backdoor tool, on developer machines. This version was downloaded over 4,000 times befo
IncidentWhat Happened CVE-2026-29000, a critical authentication bypass vulnerability in the pac4j-jwt library, allows attackers to bypass authentication controls in Java applications. The flaw was identified
IncidentYour AI browser agent just accessed your local file system, read your credentials, and sent them to an attacker. You didn t click anything. You didn t approve any action. The agent did it autonomously
IncidentWhat Happened Between March 9 and March 11, 2025, attackers compromised the AppsFlyer Web SDK, injecting malicious JavaScript to steal cryptocurrency. The code targeted cryptocurrency wallet addresses
IncidentWhat Happened A Series B fintech company integrated an AI-powered vulnerability scanner into their CI/CD pipeline to reduce false positives from their previous SAST tool. The AI scanner was part of a
IncidentWhat Happened On January 15, 2025, researchers disclosed CVE-2026-29000 , a critical authentication bypass vulnerability in pac4j-jwt, a widely-used Java authentication library. The flaw affects the J
IncidentWhat Happened Your organization deployed an AI agent with broad permissions to handle customer support inquiries. This agent was set up to autonomously draft and send email responses, access customer
IncidentA single HTTP header with an underscore instead of a hyphen bypassed authentication for an entire OAuth2-proxy deployment. No brute force. No stolen credentials. Just X_Forwarded_User instead of X-For
