cyber
BugHunter - Bug Bounty Toolkit Powered by Claude and Free AI Providers
https://cybersecuritynews.com/bughunter-bug-bounty-toolkit/
Added 5 days ago
Arch Linux AUR Hit By Another Wave Of Now More Sophisticated Malware Attack - Phoronix
https://www.phoronix.com/news/Arch-Linux-AUR-More-Malware
Added 5 days ago
Megalodon chums the waters in 5.5K+ GitHub repo poisonings
https://www.theregister.com/security/2026/05/22/megalodon-chums-the-waters-in-55k-github-repo-poisonings/5245342
Added 3 weeks ago
Mini Shai-Hulud Strikes Again: 317 npm Packages Compromised - Real-time Open Source Software Supply Chain Security
https://safedep.io/mini-shai-hulud-strikes-again-314-npm-packages-compromised/
Added 4 weeks ago
Investigating unauthorized access to GitHub-owned repositories - The GitHub Blog
https://github.blog/security/investigating-unauthorized-access-to-githubs-internal-repositories/
Added 4 weeks ago
CISA Admin Leaked AWS GovCloud Keys on Github – Krebs on Security
https://krebsonsecurity.com/2026/05/cisa-admin-leaked-aws-govcloud-keys-on-github/
Added 1 month ago
Project Glasswing: what Mythos showed us
https://blog.cloudflare.com/cyber-frontier-models/
Added 1 month ago
SecurityBaseline.eu
https://internetcleanup.foundation/2026/05/european-governments-3000-tracking-sites-1000-phpmyadmins-and-99pct-poorly-encrypted-email-introducing-securitybaseline-eu/
Added 1 month ago
Local privilege escalation via execve()
https://www.freebsd.org/security/advisories/FreeBSD-SA-26:13.exec.asc
Added 1 month ago
Incident Report: CVE-2024-YIKES
https://nesbitt.io/2026/02/03/incident-report-cve-2024-yikes.html
Added 1 month ago
Postmortem: TanStack NPM supply-chain compromise
https://tanstack.com/blog/npm-supply-chain-compromise-postmortem
Added 1 month ago
Mythos finds a curl vulnerability | daniel.haxx.se
https://daniel.haxx.se/blog/2026/05/11/mythos-finds-a-curl-vulnerability/
Added 1 month ago
You gave me a u32. I gave you root. (io_uring ZCRX freelist LPE)
https://ze3tar.github.io/post-zcrx.html
Added 1 month ago
Critical Apache HTTP Server Flaw Exposes Millions of Servers to Remote Code Execution Attacks
https://cybersecuritynews.com/apache-http-server-rce/
Added 1 month ago
On April 21, 2026, a major breakthrough in cybersecurity happened: leading standardization initiatives gathered in Washington DC and agreed to begin coordinating collectively on AI security. A… | Rob van der Veer | 28 comments
https://www.linkedin.com/posts/robvanderveer_on-april-21-2026-a-major-breakthrough-in-share-7454830488919281664-0Kja
Added 1 month ago
GitHub RCE Vulnerability: CVE-2026-3854 Breakdown
https://www.wiz.io/blog/github-rce-vulnerability-cve-2026-3854
Added 1 month ago
Fast16: The Cyberweapon That Predates Stuxnet by Five Years - HackingPassion.com : [email protected][~]
https://hackingpassion.com/fast16-pre-stuxnet-cyber-sabotage/
Added 1 month ago
The zero-days are numbered
https://blog.mozilla.org/en/privacy-security/ai-security-zero-day-vulnerabilities/
Added 1 month ago
GitHub - TheMorpheus407/RepoLens: Multi-lens code audit tool — 280 expert AI agents for code review, security testing, and infrastructure auditing · GitHub
https://github.com/TheMorpheus407/RepoLens
Added 2 months ago