The Hacker News

Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution

Gemini CLI CVSS 10.0 flaw in versions below 0.39.1 enabled RCE in CI workflows, forcing Google to mandate explicit workspace ...

EXCLUSIVE: NewcelX Eyes Accelerated 2026 Execution For Diabetes Drug

NewcelX Ltd. reported its 2025 financial results, with leadership emphasizing a "transformative year" marked by merger ...
The Hacker News

SGLang CVE-2026-5760 (CVSS 9.8) Enables RCE via Malicious GGUF Model Files

CVE-2026-5760 (CVSS 9.8) exposes SGLang via /v1/rerank endpoint, enabling RCE through malicious GGUF models, risking server ...
CSO Online

Max-severity RCE flaw found in Google Gemini CLI

Security researchers warn that a vulnerability in the widely used Gemini CLI could allow remote code execution in CI/CD ...
CSO Online

Critical GitHub RCE bug exposed millions of repositories

The now‑patched flaw allowed authenticated users to execute arbitrary code via crafted git push requests, affecting ...

AWS Cuts AI Agent Setup To 3 API Calls In AgentCore Update

AWS introduced a managed harness in Amazon Bedrock AgentCore that deploys autonomous AI agents in three API calls, alongside ...

Watch These 3 Contract Signals Before EUAD’s Next Move

Select STOXX Europe Aerospace & Defense ETF (NASDAQ:EUAD) was the cleanest way to own European defense stocks from a U.S.

Critical vulnerability in Ruby's standard library ERB:attackers can execute code

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...

Texas inmate executed for 2008 Garland murders

Texas has executed James Broadnax for the 2008 slayings of two men at a Garland recording studio, despite a recent claim from ...

West Bank-Set ‘House Of Hope,’ ‘Saigon Story: Two Shootings In The Forest Kingdom’ Among Big Winners At Hot Docs

Hot Docs, the major nonfiction film festival in Toronto, has announced award winners for the event’s 33rd edition. Earning ...
Hackaday

This Week In Security: State Malware, State Hardware Bans, And Stuxnet Before Stuxnet Was Cool

Making headlines everywhere is the CopyFail Linux kernel vulnerability, which allows local privilege escalation (LPE) from any user to root privileges on most kernels and distributions. Local ...

FirstEnergy’s Energize 365 Gets Off to A Good Start

FirstEnergy claimed the quarter reflected steady gains from regulated rate base expansion and effective program execution of ...