Multiple vulnerabilities in the Orthanc DICOM server could be exploited to cause crashes, leak information, or execute arbitrary code.

The biggest story of the week is a new massive supply chain breach, which appears to be unrelated to the previous massive supply chain breaches, this time of the Axios HTTP project. Axios was ...

Two critical-severity ShareFile vulnerabilities allow remote attackers to bypass authentication and execute arbitrary code.

Cookie-gated PHP webshells use obfuscation, php-fpm execution, and cron-based persistence to evade detection in Linux hosting ...

When a visitor lands on your website, they look for immediate signs of safety. That little padlock icon next to your web ...

On March 31, 2026, the popular HTTP client Axios experienced a supply chain attack, causing two newly published npm packages ...

Hackers hijacked the npm account of the Axios package, a JavaScript HTTP client with 100M+ weekly downloads, to deliver ...

Axios 1.14.1 and 0.30.4 injected malicious plain-crypto-js@4.2.1 after npm compromise on March 31, 2026, deploying ...

The MCP Scanner provides a comprehensive solution for scanning MCP servers and tools for security findings. It leverages three powerful scanning engines (Yara, LLM-as-judge, Cisco AI Defense) that can ...

Malicious telnyx 4.87.1/4.87.2 on PyPI used audio steganography March 27, 2026, enabling cross-platform credential theft.

Explore how SQL Server 2025 strengthens enterprise security through enforced secure defaults, identity integration, encryption and governance assurance across hybrid environments. SQL Server 2025 ...

A hacker in 2023 was able to access an FBI server that contained some files related to Jeffrey Epstein, according to documents released by the Department of Justice earlier this year. In a statement ...