Top story
Why did so many security vendors abandon MITRE’s stresstest?
This year, MITRE made headlines primarily because its leading vulnerability database was in danger of being d...
Security
Cybersecurity has been a challenge from the beginning of IT and it will be until the end. It all started with endpoint and network security, but today we are also dealing with cloud security and training our employees to incorporate good security practices. All these new technologies that help us innovate also help cybercriminals and state-sponsored hackers get new tools that they can use to access our systems and, in the worst cases, gain access to our most valuable data and trade secrets. Moreover, with new legislation such as GDPR, you have to make sure everything is secure or you will not only lose your reputation, but you could also be fined by the government. In short, protecting IT environments is more important than ever.
Timeline
React2Shell exploited hours after discovery
Amazon detects active attacks by Chinese state hackers on the critical React2Shell vulnerability (CVE-2025-55...
Meta warns of critical vulnerability in React Server Components
Meta has discovered a critical vulnerability in React Server Components. The vulnerability has been given a m...
Zscaler introduces BYOIP for Zero Trust architectures
Zscaler enables organizations to bring their own IP addresses to its Zero Trust Exchange platform. With Bring...
Manufacturing sees less data encryption in cyberattacks, but still pays
Sophos has published new figures on ransomware in the manufacturing sector. Although companies have become be...
OpenAI Codex CLI contained dangerous MCP security gap
Check Point Research discovered a critical vulnerability in OpenAI Codex CLI that allowed attackers to execut...
Shai-Hulud 2.0’s impact appears vast as NPM ecosystem struggles to cope
The NPM ecosystem is once again facing a serious supply chain attack. While the previous Shai-Hulud infection...
Netskope launches security for Model Context Protocol
Netskope introduces security capabilities for Model Context Protocol (MCP) communication. The functionality i...
Glassworm malware reappears within VS Code ecosystem
The Glassworm campaign is proving to be more persistent than expected. After malicious extensions appeared in...
Sumo Logic Dojo AI gets agents for security operations
Sumo Logic is bringing new AI agents to Dojo AI. The SOC Analyst Agent, Knowledge Agent, and Model Context Pr...
Large-scale GitLab scan reveals more than 17,000 leaked secrets
Security engineer Luke Marshall analyzed more than 5.6 million public GitLab Cloud repositories for exposed s...