CISA sets urgent deadline to fix Cisco flaw exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) is giving federal agencies until Sunday to patch a ...
Microsoft

AutoJack: How a single page can RCE the host running your AI agent

Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...
Dark Reading

In Less Than 24 Hours, Attackers Weaponize Cisco CUCM Flaw

The flaw enables server-side request forgery (SSRF) and escalates privileges to root, impacting Cisco Unified CM and Unified ...
Latest Hacking News

Cisco Unified CM SSRF Flaw Is Being Exploited to Drop Webshells

Attackers are actively exploiting a critical Cisco Unified CM SSRF vulnerability, tracked as CVE-2026-20230, to plant persistent webshells on exposed servers. Tor-anonymised sweeps began around June ...
GitHub

Turning local misconfigurations into weaponized, confirmed attack paths.

Most DLL hijacking tools stop at “this DLL might be hijackable.” DLLHijackHunter attempts to validate it, cross-reference it against known exploit intelligence, and confirm real execution paths where ...
LinkedIn

Unpacking Strix: A Deep Dive into the Architecture of an AI-Powered Security Agent

Ever wondered what it takes to build a sophisticated, AI-driven security agent from the ground up? How do you combine cutting-edge language models with robust, secure, and powerful tooling to create ...