Expert perspectives on application security, compliance, and emerging threats
IncidentWhat Happened On April 22, 2026, attackers published a compromised version of the Bitwarden command-line interface (version @bitwarden/ [email protected] ) to npm. The malicious code, embedded in a file na
IncidentOn April 22, 2025, developers who updated the Bitwarden CLI to version 2026.4.0 installed malware designed to exfiltrate their most sensitive credentials. The window was narrow—just over 90 minutes—bu
IncidentWhat Happened On April 22, 2026, the @bitwarden/cli npm package was compromised with malicious code aiming to steal developer credentials. This package was available from 5:57 PM to 7:30 PM ET. During
IncidentWhat Happened On April 22, 2026, attackers replaced legitimate Docker images of Checkmarx s KICS (Keeping Infrastructure as Code Secure) tool with malicious versions. KICS is an open-source scanner th
Get weekly security insights and compliance updates delivered to your inbox.
IncidentWhat Happened CVE-2026-5752, a critical vulnerability in Cohere AI s Terrarium sandbox, allows attackers to execute arbitrary code with root privileges and escape container isolation. This flaw exploi
IncidentWhat Happened On April 21, 2025, attackers published a malicious version of the pgserve package from Namastex Labs. Within days, 16 packages from the same publisher were compromised. The attack used a
IncidentUnderstanding the Vulnerability OX Security disclosed a critical vulnerability in Anthropic s Model Context Protocol (MCP) SDK that enables remote code execution across Python, TypeScript, Java, and R
IncidentWhat Happened A critical vulnerability in Microsoft.AspNetCore.DataProtection allowed attackers to escalate privileges to SYSTEM level on affected servers. The flaw, tracked as CVE-2026-40372 with a C
IncidentWhat Happened A critical remote code execution vulnerability in Flowise AI—an open-source platform for building AI agents—is being actively exploited. CVE-2025-59528 carries a CVSS score of 10.0, the
IncidentOverview of the Vulnerability Noma Security has disclosed a vulnerability in Grafana s AI-powered dashboards, allowing attackers to exfiltrate sensitive data through indirect prompt injection. This fl
IncidentWhat Happened A high-severity vulnerability in Docker Engine (CVE-2026-34040, CVSS 8.8) allowed attackers to bypass authorization plugins and gain host access through a malformed HTTP request. This fl
IncidentWhat Happened Between late January and early February 2025, security researchers at VulnCheck detected active exploitation of CVE-2025-59528 , a JavaScript injection vulnerability in Flowise, a low-co
IncidentWhat Happened Flowise, an open-source low-code platform for building AI chatbots and workflows, was found to have CVE-2025-59528—a critical arbitrary JavaScript code injection vulnerability. This flaw
IncidentThe Problem Your security team, using CrowdStrike , encountered a daunting challenge: 500,000 vulnerability findings flagged by the scanner. Each finding had a CVSS score demanding attention. Patching
IncidentWhat Happened A remote code execution vulnerability in Marimo, an open-source Python notebook platform, was exploited within 10 hours of public disclosure. The flaw, tracked as CVE-2026-39987, affects
IncidentWhat Happened On a Friday in early 2025, CoreWeave disclosed CVE-2026-39987 , a critical remote code execution vulnerability in Marimo, their Python notebook platform. This flaw allowed attackers to e
