5+ hour, 42+ min ago  (426+ words) Fortinet has issued an emergency hotfix after security researchers disclosed a critical zero-day vulnerability in FortiClient EMS that is already being actively exploited by threat actors. Tracked as CVE-2026-35616 and carrying a CVSSv3 score of 9.1 (Critical), the flaw enables unauthenticated attackers…...

9+ hour, 13+ min ago  (432+ words) The cybersecurity community is on high alert following a massive source code leak from Anthropic. On March 31, 2026, the company accidentally exposed the complete source code for Claude Code, its flagship terminal-based coding assistant. The leak occurred due to a packaging…...

6+ hour, 54+ min ago  (420+ words) A dangerous attack chain in Progress ShareFile that can allow attackers to take over exposed on-premises servers without first logging in. The issues affect customer-managed ShareFile Storage Zones Controller 5.x deployments, and Progress says customers should upgrade to version 5.12.4 or…...

9+ hour, 39+ min ago  (620+ words) A highly coordinated social engineering campaign is actively targeting top open-source developers in the Node.js and npm ecosystem. Following the recent compromise of the popular package Axios, which sees over 100 million weekly downloads, several high-impact software maintainers have reported…...

12+ hour, 35+ min ago  (885+ words) User Access Management tools centralize control over user permissions and access, providing a unified platform to enforce consistent security policies across diverse systems and applications. Software that helps organizations implement and enforce access rules is known as a User Access…...

12+ hour, 41+ min ago  (1747+ words) As we all know, data is crucial. Protecting data is vital since even a tiny breach can lead to a considerable phishing attack that can damage anyone, from an individual to an entire enterprise. Web servers know your IP address…...

1+ week, 5+ day ago  (947+ words) In cybersecurity, trust is everything, but trust should never be blind. As VPN adoption continues to rise across individuals, enterprises, and remote teams, users are becoming more selective about the tools they rely on to protect their data. Performance, privacy…...

1+ day, 4+ hour ago  (605+ words) Two malicious versions of the popular JavaScript HTTP library Axios were briefly published to the npm registry on March 31, 2026. Each version carried a hidden dependency that installed a remote access trojan (RAT) across macOS, Windows, and Linux systems. The attack…...

14+ hour, 31+ min ago  (515+ words) A revealing investigation conducted by the European advocacy group Fairlinked e.V., under the campaign name "BrowserGate," has uncovered what researchers describe as one of the largest corporate espionage and data breach scandals in digital history. Microsoft's LinkedIn, the world's largest professional…...

15+ hour, 26+ min ago  (321+ words) Anthropic has officially pulled the plug on third-party AI agent access to the Claude subscription, marking a significant shift in how users can leverage its models outside the company's native ecosystem. Many OpenClaw users exploited an OAuth authentication loophole, the…...