- AI Coding Agents Found Triggering Endpoint Security Rules Built to Catch Attackers
- New HalluSquatting Attack Could Trick AI Coding Assistants Into Installing Botnet Malware
- Ubiquiti Patches Critical UniFi Flaws Across Connect, Talk, Access, Protect, and OS
- New Ghost Phishing Wave Is Breaking Traditional Email Security
- SCMBANKER Malware Uses ClickFix Lures to Target Mexican Banking Users
- GitHub ‘Verified’ Commits Can Be Rewritten Into New Hashes Without Breaking Signatures
- The Verification Step Is the New ATO Battleground in 2026
- GitHub Copilot Refuses Harmful Requests in Chat, Then Writes Them in Code
- China-Linked UAT-7810 Expands ORB Network With New LONGLEASH Malware
- 15-Year-Old GhostLock Flaw Enables Root and Container Escape on Most Linux Distros
- CISA Adds 4 Actively Exploited Adobe, Joomla, and Langflow Flaws to KEV
- RedWing MaaS Packages Android Bank Fraud as a Telegram Rental Service
- Rogue Agent Flaw Could Have Let Attackers Hijack Google Dialogflow CX Chatbots
- DEBULL Tooling Abuses Microsoft Device-Code Flow to Target M365 Accounts
- Public GitHub Issue Could Trick GitHub Agentic Workflows Into Leaking Private Repo Data

