Menu

Latest articles

FBI cyber boss: China’s hacker-for-hire ecosystem ‘out of control’
Google’s fix for critical Gemini CLI bug might break your CI/CD pipelines
French prosecutors link 15-year-old to mega-breach at state’s secure document agency
Redefining security data: Red Hat’s new VEX experience heading to Red Hat Summit 2026
Important: vim security update
Important: PackageKit security update
Important: xorg-x11-server security update
Nearly half of UK businesses pwned last year as phishing keeps doing the job like it’s 2005
What type of ‘C2 on a sleep cycle’ do they leave behind? Novel Chinese spy group found in critical networks in Poland, Asia
Bug of the year (so far): Nasty cPanel vulnerability probably exploited as a 0-day
Multiple security issues have been found in the Mozilla Firefox web browser, which could potentially result in the execution of arbitrary code, information disclosure or sandbox escape. For Debian 11 bullseye, these problems have been fixed in version 140.10.1esr-1~deb11u1.
SAP npm package attack highlights risks in developer tools and CI/CD pipelines
Harness teams of agentic coders with Squad
Making AI work for databases
Britain’s £6B armoured sickener Ajax cleared for duty despite injuring troops
The following updated rpms for Oracle Linux 10 have been uploaded to the Unbreakable Linux Network:
The following updated rpms for Oracle Linux 9 have been uploaded to the Unbreakable Linux Network:
Iran-linked Handala hackers leak US Marines data, send chilling WhatsApp threats
Finance company stores DB credentials in helpfully labeled spreadsheet
Linux cryptographic code flaw offers fast route to root
Smashing Security podcast #465: This developer wanted to cheat at Roblox. It cost millions
Researchers move in the right direction, develop powerful GPS interference alarm
Microsoft’s patch for a 0-day exploited by Russian spies fell short. Another Windows flaw is under attack
Legacy TLS tour continues with Exchange Online blocking old versions from July 2026
The End of Patch and Pray: How Rust Is Reshaping Memory Safety in Linux
CISA flags data-theft bug in NSA-built OT networking tool
GitHub: Woah, a genuinely helpful AI-assisted bug report that isn’t total slop. Here, Wiz, take this wad of cash
Several security issues were fixed in OpenSSH.
An update that solves two vulnerabilities and has one security fix can now be installed.
Alleged Silk Typhoon hacker extradited to the United States to face charges
Multiple vulnerabilities where identified in polkit, a toolkit for defining and handling the policy that allows unprivileged processes to speak to privileged processes. CVE-2021-4115 Kevin Backhouse of GitHub Security Lab (GHSL) found that there is a
EU waves through open source age-check tool to keep kids safe online
Critical GitHub RCE bug exposed millions of repositories
PackageKit could be made to install packages as the administrator.
Oracle NetSuite announces AI coding skills for SuiteCloud developers
GoDaddy customer claims registrar transferred 27-year-old domain without any security checks
A new challenge for software product managers
Why it’s so hard to create stand-alone Python apps
An update that solves 14 vulnerabilities and has five security fixes can now be installed.
An update that solves 14 vulnerabilities and has five security fixes can now be installed.
30 ClawHub skills secretly turn AI agents into a crypto swarm
More fake extensions linked to GlassWorm found in Open VSX code marketplace
https://security-tracker.debian.org/tracker/DSA-6236-1
https://security-tracker.debian.org/tracker/DSA-6237-1
https://security-tracker.debian.org/tracker/DSA-6231-1
Don’t pay Vect a ransom – your data’s likely already wiped out
Kernel Hardening Trends: Whats Changing in Upstream Security Controls
Have I Been Pwned claims Pitney Bowes hit by 8.2M email address leak
Important: kernel security update
Important: sudo security update