Category of intelligence

Vulnerabilities

News about security failures, exploits and vulnerabilities in systems

Stories published: 742 Showing up 9 articles per page

Security alert: three critical faults in mcp-server-git could allow reading, erasing and execution of code via prompt injection

Vulnerabilities

January 20, 2026 4 min de lectura 131

Security alert: three critical faults in mcp-server-git could allow reading, erasing and execution of code via prompt injection

Security researchers have uncovered three critical failures in mcp-server-git, the official implementation of the Git server for the Model Context Protocol (MCP) maintained within…

From alert noise to real action turn security stack into operational value

Vulnerabilities

January 20, 2026 5 min de lectura 147

From alert noise to real action turn security stack into operational value

People who defend networks and systems face a simple demand in appearance but complex in practice: to detect and neutralize attacks in real time. However, they often do so with to…

Orphan accounts the silent threat that opens doors to the attackers

Vulnerabilities

January 20, 2026 5 min de lectura 150

Orphan accounts the silent threat that opens doors to the attackers

In modern companies there is a silent and dangerous layer that rarely appears in the reports: accounts that were left behind when people, services or systems ceased to be part of …

Secrets traveling with the bundle: millions of apps expose tokens in the browser and how to stop it

Vulnerabilities

January 20, 2026 7 min de lectura 160

Secrets traveling with the bundle: millions of apps expose tokens in the browser and how to stop it

API key and tokens leaks were no longer a rarity. In recent years we have seen how secrets that should remain in closed environments end up circulating in public repositories, con…

NexShield: the extension that blocks your browser, forces you to stick a command and opens the door to a corporate RAT

Vulnerabilities

January 19, 2026 5 min de lectura 144

NexShield: the extension that blocks your browser, forces you to stick a command and opens the door to a corporate RAT

This week security researchers have unravel a maldumping campaign that used a fake extension for Chrome and Edge called NexShield as Trojan's horse. A simple view was sold as a li…

PDFSider the threat hidden in signed software to open doors to the ransomware

Vulnerabilities

January 19, 2026 5 min de lectura 217

PDFSider the threat hidden in signed software to open doors to the ransomware

In recent weeks, security researchers have had a campaign that combines classic social engineering techniques with an increasingly sophisticated code: a new backdoor named as PDFS…

When a calendar reminder becomes a data leak thanks to the IA

Vulnerabilities

January 19, 2026 6 min de lectura 178

When a calendar reminder becomes a data leak thanks to the IA

Cybersecurity researchers have revealed a vulnerability that takes advantage of the conversational nature of language models to convert an apparently harmless functionality into a…

DDoS as a weapon of protest hackers for Russia threaten critical infrastructure

Vulnerabilities

January 19, 2026 5 min de lectura 135

DDoS as a weapon of protest hackers for Russia threaten critical infrastructure

The United Kingdom Government has rekindled the alarms on a persistent pattern of digital attacks that are leaving websites and essential services out of service: Russian-like hac…

Young hacker unauthorised access to AmeriCorps and VA Supreme Court systems and disseminate sensitive data

Vulnerabilities

January 19, 2026 4 min de lectura 150

Young hacker unauthorised access to AmeriCorps and VA Supreme Court systems and disseminate sensitive data

A young man from Tennessee pleaded guilty for unauthorised access to systems that should be especially protected: the United States Supreme Court electronic document-filing system…