News
-
Google patches Antigravity IDE flaw that could enable code execution
Google has patched a flaw in its Antigravity agentic IDE that researchers said could allow code execution through a file-search tool and a bypass of the app’s Strict Mode security controls.
-
CISA adds eight exploited flaws to KEV catalog, including Cisco SD-WAN bugs
CISA added eight exploited vulnerabilities to its catalog, including three Cisco Catalyst SD-WAN Manager flaws. The list spans enterprise software from PaperCut and TeamCity to Quest KACE and Zimbra, with federal agencies given patch deadlines.
-
Google patched Antigravity sandbox escape bug after prompt injection research
Google fixed an Antigravity vulnerability after researchers said prompt injection could combine with a file-creation capability to bypass secure mode and enable remote code execution in the AI developer tool.
-
KelpDAO says $290 million crypto heist tied to suspected Lazarus hackers
KelpDAO said a $290 million crypto theft likely tied to North Korea’s Lazarus Group hit its rsETH system on Saturday. The incident also prompted Aave to freeze rsETH-related activity while investigators examined the cross-chain attack.
-
Critical SGLang flaw can enable remote code execution
A critical flaw in SGLang, tracked as CVE-2026-5760 and rated 9.8, could allow remote code execution through a crafted model file and the /v1/rerank endpoint, according to a CERT/CC advisory.
-
Researchers flag MCP design flaw that could enable remote code execution
Researchers said a design flaw in Anthropic’s Model Context Protocol could allow remote code execution across thousands of servers and packages, exposing sensitive data and widening AI supply chain risk.
-
Researchers flag ZionSiphon malware aimed at Israeli water systems
Researchers say ZionSiphon is a new malware sample aimed at Israeli water systems, with code for persistence, scanning and sabotage. The unfinished malware was first seen in the wild in June 2025.
-
EU awards sovereign cloud tender worth up to 180 million euros
The European Commission awarded a cloud services tender worth up to €180 million over six years to four Europe-based provider groups, part of a wider effort to build sovereign cloud capacity for EU institutions and agencies.
-
Vercel says breach linked to third-party AI tool exposed limited customer credentials
Vercel said a breach tied to a third-party AI tool exposed access to some internal systems and affected a limited subset of customers. The company said sensitive environment variables were not known to be accessed and urged credential rotation.
-
Mirai variant Nexcorium targets TBK DVRs and outdated TP-Link routers
Threat actors are exploiting flaws in TBK DVR devices and unsupported TP-Link routers to spread a Mirai variant called Nexcorium, according to a Fortinet technical analysis and a Unit 42 disclosure. The malware adds persistence, brute-force and DDoS functions.
