Two other flaws were patched by the virtualization vendor, impacting Cloud Foundation, Telco Cloud Platform, and Telco Cloud Infrastructure as well.

In the automation tool n8n, eleven security vulnerabilities have been discovered. Three of these are considered critical ...

CISA has released an advisory to warn about four vulnerabilities discovered by a researcher in Gardyn Home and Gardyn Studio.

Zyxel fixes a handful of worrying router flaws ...

AI-assisted development accelerates software delivery but expands the threat surface. From prompt injection and malicious MCP ...

TP-Link patched four Omada gateway flaws, two rated critical for code execution Three were command injection bugs; one allowed root shell via privilege mismanagement Multiple models affected; one ...

February 2026 Patch Tuesday restricts Windows credential autofill to fix a Windows Hello input injection flaw (CVE-2026-20804).

After months of real-world testing of AI copilots, chat interfaces, and AI-generated apps, Terra Security releases a new module for continuous AI Penetration Testing to match AI development velocity ...

RoguePilot flaw let GitHub Copilot leak GITHUB_TOKEN, while new studies expose LLM side channels, ShadowLogic backdoors, and promptware risks.

Three flaws within separate models of Google's Gemini AI assistant suite exposed them to various injection attacks and data exfiltration, respectively, creating severe privacy risks for users, ...

Anthropic's Opus 4.6 system card breaks out prompt injection attack success rates by surface, attempt count, and safeguard configuration — data that OpenAI and Google have not published for their own ...

The U.K. Information Commissioner's Office has issued a warning to businesses to eliminate SQL injection vulnerabilities from their websites, after fining a hotel booking site for failing to properly ...