The Hacker News

SolarWinds Fixes Four Critical Web Help Desk Flaws With Unauthenticated RCE and Auth Bypass

SolarWinds fixed six Web Help Desk vulnerabilities, including four critical flaws that allow unauthenticated remote code ...
The Hacker News

Critical Grist-Core Vulnerability Allows RCE Attacks via Spreadsheet Formulas

A critical Grist-Core flaw (CVE-2026-24002, CVSS 9.1) allows remote code execution through malicious formulas when Pyodide ...
CSO Online

Ivanti patches two actively exploited critical vulnerabilities in EPMM

The code injection flaws allow for unauthenticated remote code execution on Ivanti Endpoint Manager Mobile deployments, but ...

The viral Clawdbot AI agent can do a lot for you, but security experts warn of risks

Clawdbot can automate large parts of your digital life, but researchers caution that proven security flaws mean users should ...
CSO Online

SolarWinds, again: Critical RCE bugs reopen old wounds for enterprise security teams

Another round of critical Web Help Desk flaws highlights how SolarWinds’ legacy code and past breaches continue to haunt IT ...
Infosecurity Magazine

Pyodide Sandbox Escape Enables Remote Code Execution in Grist-Core

A critical sandbox escape vulnerability in Grist-Core has been disclosed that allows remote code execution (RCE) through a ...

Infostealers added Clawdbot to their target lists before most security teams knew it was running

RedLine, Lumma, and Vidar adapted in 48 hours. Clawdbot's localhost trust model collapsed, plaintext memory files sit exposed ...
Tom's Hardware on MSN

Malicious OpenClaw ‘skill’ targets crypto users on ClawHub — 14 malicious skills were uploaded to ClawHub last month

Security researchers are warning that the growing ecosystem around ‘OpenClaw,’ the self-hosted AI assistant formerly known as ...

Chinese Mustang Panda hackers deploy infostealers via CoolClient backdoor

The Chinese espionage threat group Mustang Panda has updated its CoolClient backdoor to a new variant that can steal login ...

Hugging Face abused to spread thousands of Android malware variants

A new Android malware campaign is using the Hugging Face platform as a repository for thousands of variations of an APK ...

BlackPearl Shatters Industry Paradigm with Launch of the Next-Gen Perforating Command Hub, BlackBeard

Next-generation, all-in-one perforating command hub obliterates decades-old multi-box complexity, delivering 2x faster ...

Performance Analysis of Zhptpower, a Leading LED Lighting Drive Power Supply Company From China, in Smart Lighting

ZHUHAI, GUANGDONG, CHINA, January 21, 2026 /EINPresswire.com/ -- Smart lighting technology is reshaping how buildings ...