Security OperationsAI agents solve 9 of 10 web security CTF challenges in recent studyLaura FrenchJanuary 30, 2026The agents solved most challenges at low cost but struggled with more broadly scoped tasks.
Security OperationsIvanti patches two 9.8 bugs in Endpoint Manager MobileSteve ZurierJanuary 30, 2026CVE-2026-1281 and CVE-2026-1340 have CVSS scores of 9.8 and have already been exploited.
Security OperationsGoogle disrupts IPIDEA residential proxy network used in cybercrimeLaura FrenchJanuary 30, 2026Google said the network is overwhelmingly used by malicious actors, including botnet operators.
Security OperationsPricewaterhouseCoopers, Google Cloud sign $400 million AI dealSteve ZurierJanuary 29, 2026Google will develop artificial intelligence that PwC will roll it out to Fortune 500.
Security OperationsTwo n8n sandbox escape vulnerabilities allow RCELaura FrenchJanuary 29, 2026The flaws affect the platform’s expression engine and Python Code Node.
Security OperationsMicrosoft Windows file archival tool WinRAR exploited worldwideSteve ZurierJanuary 28, 2026Vulnerability lets threat actors drop malware into the Windows Startup folder.
Application securityMost organizations had a third-party breach in the last yearLaura FrenchJanuary 28, 2026Respondents report third party risk assessments take several months and only cover a fraction of vendors.
Security OperationsSix JavaScript zero-day bugs lead to fears of supply chain attackSteve ZurierJanuary 27, 2026Tools used to protect users in the aftermath of Shai-Hulud may no longer work, security pros say.
Application securityResearchers find 16 browser extensions stealing ChatGPT session tokensLaura FrenchJanuary 27, 2026One of the malicious ChatGPT “mods” has a featured badge on the Chrome Web Store.
Security OperationsVMware vCenter Server bug added to CISA list of exploited vulnerabilitiesSteve ZurierJanuary 26, 2026CVE-2024-37079 has a 9.8 rating and was originally patched in 2024.
