The Hacker News

SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files

CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...
The Hacker News

Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain

The cybersecurity company said the systemic vulnerability is baked into Anthropic's official MCP software development kit ...
SecurityWeek

Hackers Abuse QEMU for Defense Evasion

Threat actors are abusing the QEMU machine emulator to hide their malicious activity within virtualized environments.

2026’s Breach List So Far: FBI Hacked, 1B Androids at Risk, 270M iPhones Vulnerable

From the FBI breach to the DarkSword iPhone exploit, these are the biggest cyber attacks and security failures that have ...
SecurityWeek

Serial-to-IP Converter Flaws Expose OT and Healthcare Systems to Hacking

Serial-to-IP converters are affected by potentially serious vulnerabilities that can expose OT and healthcare systems to ...
Cybernews

Mike Davey

Mike Davey is an editor and writer based in Hamilton, Ontario, with an extensive background in business-to-business ...
CybernewsOpinion

Why security experts believe we should manage software flaws like a critical illness

Security experts say companies should focus on high-risk software vulnerabilities instead of trying to fix every bug, as AI ...
Startup Fortune

Vercel Breach Exposes AI Tool Supply Chain Risk Ahead of IPO

Vercel suffered a security breach via a compromised third-party AI tool, with ShinyHunters selling stolen data. The incident threatens the company's planned IPO ...