CISA Flags 2-Year-Old Oracle WebLogic Vulnerability as Actively Exploited

CISA added Oracle WebLogic flaw CVE-2024-21182 to its KEV catalog, giving federal agencies until June 4 to patch exposed ...
SecurityWeek

Oracle’s First Monthly Patches Resolve 77 Vulnerabilities

Oracle has released its first monthly Critical Security Patch Update (CSPU) to resolve 77 vulnerabilities across its products ...
Hosted on MSN

Malicious SAP npm packages with 500,000 weekly downloads were stealing developer passwords and cloud secrets for days

For a few critical days at the end of April 2026, thousands of developers building SAP integrations unknowingly handed their passwords and cloud credentials to attackers. Four widely used npm packages ...
Hosted on MSN

A supply chain attack called 'Mini Shai-Hulud' poisoned official SAP packages and stole developer credentials through AI coding agent configs

On April 29, 2026, someone hijacked four widely used SAP packages on the npm registry, slipped credential-stealing malware into them, and then did something that, according to researchers at Mend.io, ...
Business Insider

Best streaming deals and bundles (2026)

When you buy through our links, Business Insider may earn an affiliate commission. Learn more Streaming service subscriptions have become all but necessary to keep up with select sports and original ...