10K Claude Desktop Users Exposed by Zero-Click Vulnerability

A zero-click flaw in Anthropic’s Claude Desktop Extensions allows attackers to trigger remote code execution via Google ...
UC Berkeley School of Information

Berkeley Cybersecurity Master’s Students Develop API Security Test for Different Users

Rest Assured “VentiAPI”, by Master of Information and Cybersecurity grads Karl-Johan Westhoff, Bleu Strong, Jenny Garcia, and Tyler Heslop, helps organizations find and fix vulnerabilities in their ...
SecurityWeek

Critical SmarterMail Vulnerability Exploited in Ransomware Attacks

CISA warns of a new SmarterTools SmarterMail vulnerability exploited by ransomware groups for unauthenticated RCE.

These 4 critical AI vulnerabilities are being exploited faster than defenders can respond

These 4 critical AI vulnerabilities are being exploited faster than defenders can respond ...
SecurityWeek

CISA Warns of Exploited SolarWinds, Notepad++, Microsoft Vulnerabilities

CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.
The Hacker News

Exposed Training Open the Door for Crypto-Mining in Fortune 500 Cloud Environments

Exposed training apps in cloud environments enable exploitation, lateral movement, and crypto-mining activity across ...
ADTmag

Bellsoft Survey Finds Java Teams Struggle to Square Container Debugging Tools with Security Goals

Container security incidents remain a routine problem for software teams, and many of the day-to-day choices developers make to keep Java services easy to build and troubleshoot can increase security ...
ZDNet

Your Bluetooth earbuds are at risk of being hijacked - here's how to prevent it ASAP

WhisperPair vulnerabilities impact a protocol for connecting devices and audio products. Attackers can take over an audio device, tamper with controls, and potentially listen to your conversations.
ADTmag

JHipster 9.0.0-beta.2 lands with Spring Boot 4 upgrades and a clear message for Java teams: it's Java 21 time

JHipster 9.0.0-beta.2 deprecates the first beta to fix generator stability issues while advancing the platform to Spring Boot 4.0.2 and a new baseline of Java 21 (plus updated WebSocket security and ...
InfoWorld

JDK 26: The new features in Java 26

Java Development Kit (JDK) 26, a planned update to standard Java due March 17, 2026, has reached the initial release candidate (RC) stage. The RC is open for critical bug fixes, with the feature set ...