On May 19, the Mini Shai-Hulud worm compromised one npm maintainer account and pushed 639 malicious versions across 323 packages in under 30 minutes. The compromised account, “atool” (i@hust.cc), ...

Mini Shai-Hulud npm campaign compromises @antv packages, targeting blockchain developers' GitHub tokens, AWS keys, and CI/CD secrets in a coordinated supply chain attack.

Threat actors earlier today published more than 600 malicious packages to the Node Package Manager (npm) index as part of a ...

On 15 May 2026, Votee AI and Beever AI open-sourced Beever Atlas, turning Telegram, Discord, Teams and Slack chats into a ...

A newly disclosed Linux kernel flaw nicknamed Fragnesia — tracked as CVE-2026-46300 — lets any unprivileged local user gain ...

Two editions of an open-source LLM Knowledge Base purpose-built for team chat — Open Source (Apache 2.0) for individuals · Enterprise for teams. A searchable, citation-bearing memory layer answering ...

Learn how Fragnesia (Copy Fail 3.0) exploits a Linux kernel logic bug to achieve 100% reliable root access. Find out if your ...

A new variant in the Dirty Frag family of Linux local privilege escalation flaws has surfaced, the third root-level Linux ...

The post Fragnesia (CVE-2026-46300): Frequently asked questions about new Linux Kernel XFRM ESP-in-TCP privilege escalation appeared first on Tenable Blog. A new Linux kernel local privilege ...

As 5G networks become a bigger part of everyday life, scientists are racing to solve one major problem: security. A new study ...