The Hacker News

LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure

CVE-2026-42208 exploited within 36 hours of disclosure, exposing LiteLLM credentials, risking cloud account compromise.

Hackers are exploiting a critical LiteLLM pre-auth SQLi flaw

Hackers are targeting sensitive information stored in the LiteLLM open-source large-language model (LLM) gateway by ...
Hosted on MSN

Mastering SQL database security and performance in 2026

From AI-driven attacks to cutting-edge vector search capabilities, 2026 is redefining how we secure, optimize, and manage SQL databases. New SQL Server features, evolving threat landscapes, and modern ...
Unite.AI

What Really Happens During an AI-Armed Attack?

For years, the cybersecurity industry has spoken about AI attacks in the future tense. We imagined sentient super-hackers dismantling firewalls with alien logic. The reality, as we are discovering in ...
Security Boulevard

Attacking the MCP Trust Boundary

Every secure API draws a line between code and data. HTTP separates headers from bodies. SQL has prepared statements. Even email distinguishes the envelope from the message. The Model Context Protocol ...
Security Boulevard

The Invisible Threat: Business Logic Flaws in Modern Applications and Why Scanners Miss Them

In today's security landscape, some of the most dangerous vulnerabilities aren't flagged by automated scanners at all. These ...
Redmondmag.com

The IT Leader's MDR Reality Check: Build, Buy, or Get Left Behind

In this session, ThreatDown's Matt Sherman, Director of Managed Detection & Response (MDR), delivers a practical reality check for IT leaders on what modern threat monitoring actually requires — and ...
SecurityWeek

Fortinet Patches Critical FortiSandbox Vulnerabilities

Fortinet patched 27 vulnerabilities, including two critical FortiSandbox flaws leading to authentication bypass and code ...
CSO Online

April Patch Tuesday roundup: Zero day vulnerabilities and critical bugs

This month’s threat landscape is ‘defined by immediate, real-world exploitation rather than just theoretical vulnerabilities, ...
PBS

Gunmen attack building housing Israeli Consulate in Istanbul

ISTANBUL (AP) — Three assailants opened fire at police outside a building housing the Israeli Consulate in Istanbul on Tuesday, sparking a gunfight that left one attacker dead, Turkish officials said.
Yahoo

Russian attacks kill 4 as Ukraine drones target oil infrastructure

KYIV, Ukraine (AP) — A Russian drone attack on Ukraine’s southern port city of Odesa killed two women and a toddler, authorities said Monday, while Ukrainian long-range drones targeted Russia’s key ...
Dark Reading

Axios Attack Shows How Complex Social Engineering Is Industrialized

The Axios attack has highlighted the sophistication, scalability, and industrialization of social engineering attacks. Late last month, the NPM package of Axios, an extremely popular JavaScript HTTP ...