CSO Online

Flowise’s MCP implementation can run ghost commands

A 9.9-severity vulnerability in Flowise’s MCP stdio implementation can allow attackers to achieve remote code execution in ...
SecurityWeek

Critical Windows Netlogon Vulnerability in Attackers’ Crosshairs

Organizations are advised to patch CVE-2026-41089 as soon as possible, given its severity, the potential ongoing exploitation.
Hosted on MSN

Attackers are exploiting the SEPPmail secure e-mail gateway right now — reading corporate inboxes and running code on the servers that route every message

Three vulnerabilities disclosed in the SEPPmail Secure Email Gateway in recent weeks have put thousands of organizations on notice: the appliance that encrypts, signs, and routes their corporate email ...
The Hacker News

The Hacker News | #1 Trusted Source for Cybersecurity News — Index Page

The North Korean state-sponsored threat actor known as Kimsuky (aka Velvet Chollima) has been attributed to a fresh set of cyber attacks targeting South Korean military and corporate entities through ...
Bleeping Computer

Critical Windows Netlogon RCE flaw now exploited in attacks

The Centre for Cybersecurity Belgium (CCB), the country's national authority for cybersecurity, warned on Friday that threat actors are now exploiting a recently patched critical Windows Netlogon ...
The Hacker News

OpenAI Codex Authentication Tokens Stolen in codexui-android npm Supply Chain Attack

Codex tokens were exfiltrated via a popular npm package, affecting users since v0.1.82 and enabling persistent account access ...
vg247

Universal Tower Defense X codes June 2026

1st June 2026: We added new Universal Tower Defense X codes. Universal Tower Defense X is a classic Roblox tower defense game that’s packed with characters from popular anime and game series. In UTDX, ...