Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.

Ghost CMS flaw CVE-2026-26980 enabled attacks on 700+ sites, injecting ClickFix malware through fake CAPTCHA pages.

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious ...

The four C&C channels used by GlassWorm, the botnet targeting open source software developers, have been disrupted.

CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...

The EU and Germany both summoned Russian diplomats to protest attacks on Kyiv and orders for diplomats to leave the city. The UN secretary-general also rebuked Russia in a session on proliferating ...

CVE-2026-5426 enabled KnowledgeDeliver LMS attacks before February 24, 2026, leading to Cobalt Strike infections.

Command Alkon, the global leader in software and platform technology for the heavy building materials industry, announces the recent appointment of Davis ...

Trump administration’s campaign of blowing up alleged drug-trafficking vessels has killed at least 194 in total ...

Cohere, the trusted sovereign AI platform for governments and regulated industries worldwide, today announced the release of Command A+, a powerful open-source Mixture-of-Experts (MoE) model released ...

A variant of the PureLogs infostealer malware has been distributed through purchase-order-themed phishing emails that use a ...

GitHub’s internal repositories — now staged publishing in npm 11.15.0 requires a human 2FA approval before any package goes ...