Disgraced US gov software contractor found guilty of database destruction

A Virginia man, Sohaib Akhter, faces decades in prison after a jury convicted him of being involved in a scheme to delete ...
SecurityWeek

‘PCPJack’ Worm Removes TeamPCP Infections, Steals Credentials

The PCPJack worm targets cloud environments and vulnerable web applications to remove TeamPCP infections and steal ...

MongoDB announces platform enhancements for enterprise-ready AI production

The company announced the availability of MongoDB 8.3, building on previous generations of the database software with ...

Thousands of Vibe-Coded Apps Expose Corporate and Personal Data on the Open Web

Companies like Lovable, Base44, Replit, and Netlify use AI to let anyone build a web app in seconds—and in thousands of cases ...
Axios on MSN

Thousands of AI-built apps exposed sensitive corporate and personal data, researchers found

The AI coding tools letting anyone "build" software without engineering skills are also letting medical records, financial data and Fortune 500 internal docs leak onto the open web, security ...
InfoWorld

MongoDB targets AI’s retrieval problem

By integrating long-term memory, embeddings, and re-ranking, the company aims to improve trust in agent outputs.
Security Boulevard

5 Capabilities of Workload Access Managers – And Why WAM Isn’t WIM

Legacy IAM can't govern autonomous AI agents that spin up, execute and terminate in seconds. New identity patterns are now emerging. The post 5 Capabilities of Workload Access Managers – And Why WAM ...
SecurityWeek

1,800 Hit in Mini Shai-Hulud Attack on SAP, Lightning, Intercom

Over 1,800 developers were likely infected in the Mini Shai-Hulud supply chain attack that hit SAP, Lightning, and Intercom ...
Cybernews

One tiny exploit gives full Linux access: all kernels since 2017 are vulnerable

The critical "Copy Fail" bug (CVE-2026-31431) affects all Linux kernels since 2017, allowing unprivileged local users to gain ...
The Hacker News

LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure

CVE-2026-42208 exploited within 36 hours of disclosure, exposing LiteLLM credentials, risking cloud account compromise.
WKYC3

Former Lorain County 911 dispatcher charged after allegedly accessing law enforcement database for personal use

ELYRIA, Ohio — A former 911 dispatcher in Lorain County has been charged after authorities say he improperly accessed a law enforcement database for personal reasons while on duty. Greggory D. Byrd, ...