The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added a high-severity flaw impacting BerriAI LiteLLM to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2026-42271 (CVSS score: 8.7), is a command injection vulnerability that could allow any authenticated user to runRead More »LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE

Security researchers have published a detailed, working exploit for a Linux kernel use-after-free that lets an unprivileged local user escalate to root and break out of a container. The flaw, CVE-2026-23111, sits in the kernel’s nf_tables packet-filtering code and was patched upstream on February 5, 2026. Exodus Intelligence released itsRead More »One-Character Linux Kernel Flaw Enables Local Root Access, Exploits Now Public

On the same day Israel and Iran exchanged missile strikes, Iranian-linked hacker group Handala claimed to disrupt Israeli radar systems. But what evidence is there for this claim? 

A whistleblower accused IBM and AT&T of covering up data breaches.

Five Eyes warns that China is targeting individuals in order to access sensitive or classified information.

Meta on Monday said it detected and blocked spear-phishing attempts linked to Israeli spyware vendor NSO Group. In addition, the tech giant said it’s filing a federal court contempt order against the company for violating a permanent injunction that barred it from targeting WhatsApp and its users. “They tried toRead More »Meta Blocks NSO Group’s New WhatsApp Phishing Attack, Files Contempt Order