CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...

200,000 MCP servers expose a command execution flaw that Anthropic calls a feature

OX Security confirmed arbitrary command execution on six live platforms and estimates 200,000 MCP servers are exposed. Here's ...

Forget Python Or Java: What You’re Speaking Is Code

Scripting languages like Python and JavaScript quickly gained popularity and pushed further toward human readability. They reduced boilerplate code and allowed developers to build applications much ...
Open Global Rights

Political exile and Europe’s human rights obligations beyond borders

In recent years, the concept of “transnational repression” has become central to discussions about the safety of political ...

CISA flags new SD-WAN flaw as actively exploited in attacks

CISA has given U.S. government agencies four days to secure their systems against another Catalyst SD-WAN Manager ...

AI is The Biggest Threat Facing CISOs, NCC Group Analysis Finds

Cyber attacks increased by 22% month-on-month in March 2026, highlighting the growing impact of AI weaponization and poorly ...
DATAQUEST

Best AI Careers in India 2026: High-Paying Jobs, Skills & Roadmap

Want to start a career in AI? Explore the top AI jobs in India for 2026, including ML Engineer salaries, required skills like ...

Starbucks Surges as Its Turnaround Gains Steam

It's been a tough few years to be a Starbucks (NASDAQ: SBUX) shareholder. After years of dependable growth, the coffee chain ...

Kyle Kirkwood, Alex Palou Agree Tight Title Duel Has Season-Long Legs

Four-time series champion Alex Palou (photo) trails leader Kyle Kirkwood by just two points in the NTT INDYCAR SERIES ...
Dark Reading

DPRK Fake Job Scams Self-Propagate in 'Contagious Interview'

A compromised developer's repository serves as a worm-like infection vector to spread remote access Trojans (RATs) and other ...
CSO Online

RCE by design: MCP architectural choice haunts AI agent ecosystem

Unsafe defaults in MCP configurations open servers to possible remote code execution, according to security researchers who have found exploitable instances in many commercial services and open-source ...

Actively exploited Apache ActiveMQ flaw impacts 6,400 servers

Nonprofit security organization Shadowserver found that over 6,400 Apache ActiveMQ servers exposed online are vulnerable to ...