Max severity Flowise RCE vulnerability now exploited in attacks

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for ...
The Hacker News

Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs

Iran-linked actors target U.S. PLCs using Dropbear and SSH access, disrupting OT systems across sectors and escalating cyber ...
SecurityWeek

Critical Flowise Vulnerability in Attacker Crosshairs

Threat actors have started exploiting CVE-2025-59528, a critical Flowise vulnerability leading to remote code execution.
CSO Online

Hackers exploit a critical Flowise flaw affecting thousands of AI workflows

The design flaw in Flowise’s Custom MCP node has allowed attackers to execute arbitrary JavaScript through unvalidated ...
Windows Report

Hackers Breached Axios npm by Impersonating Companies and Hijacking Maintainer Access

Hackers infiltrated Axios maintainers using fake Slack channels and Teams calls, then published infected packages.
Fireship on MSN

Millions of JS developers just got penetrated by a RAT

A major JavaScript security scare unfolded after malicious versions of a widely used package were briefly published to npm ...

OpenAI Confirms Security Incident—Mac Users Must Update All Apps Now

All macOS users must update their OpenAI apps, including ChatGPT, to the latest versions following a security incident, ...
CSO Online

Hackers have been exploiting an unpatched Adobe Reader vulnerability for months

Now a security researcher says a Reader hole has been quietly exploited by malware for as long as four months, fingerprinting ...
The Hacker News

GlassWorm Campaign Uses Zig Dropper to Infect Multiple Developer IDEs

GlassWorm uses a fake WakaTime VS Code extension to infect IDEs, deploy RATs, and steal data, prompting urgent credential ...
Ubergizmo

Adobe Reader Zero-Day Exploit Uses Fake PDF Files To Steal User Data

A critical security vulnerability in Adobe Reader is being actively exploited by cybercriminals through a sophisticated and evolving ...

The accountability gap behind many small business cyber incidents

For smaller organizations, cyber incidents are rarely the result of inaction. More often, they reflect a lack of clear ...

UAB using $4M grant, AL Medicaid partnership to increase rural health access

Three of the school's programs will partner with Alabama Medicaid and another Alabama university to improve statewide ...