A critical remote code execution and supply chain vulnerability was recently discovered by researchers in Gemini CLI.

Gemini CLI CVSS 10.0 flaw in versions below 0.39.1 enabled RCE in CI workflows, forcing Google to mandate explicit workspace ...

GitHub has patched a high-severity remote code execution vulnerability that allowed anyone with push access to a private ...

CVE-2026-3854 (CVSS 8.7) enabled GitHub RCE via git push, risking cross-tenant access to millions of repositories.

Incomplete patch for a Windows SmartScreen and Windows Shell security prompts bypass created a new bug enabling zero-click ...

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered federal agencies to secure their Windows systems ...

Flaws in OpenEMR's platform — used by more than 100,000 healthcare providers — enabled database compromise, remote code ...

CISA Flags Linux Copy Fail Flaw On Watch List, Crypto Infra At Risk. A new Linux vulnerability dubbed“Copy Fail” could impact ...

AI-enabled cyber threats are less about fully autonomous attacks and more about how AI accelerates, scales, and democratizes ...

Hackers are exploiting two authentication bypass vulnerabilities in the Qinglong open-source task scheduling tool to deploy ...

India's CERT-In warns against frontier agentic AI models like GPT-5.5 and Mythos. Learn how AI-driven cyber attacks are ...

GitHub has disclosed a critical remote code execution flaw, CVE-2026-3854, exploitable via a single git push, and a popular PyPI package tied to GitHub Actions was hacked to deliver malware. Both ...