Skip to content
Security News, Assessments & Alerts Page 28

Security News, Assessments & Alerts

Security Issues, Vulnerabilities, Exploits & Government Alerts

Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution

Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution

Ravie LakshmananJan 20, 2026Vulnerability / Artificial Intelligence A set of three security vulnerabilities has been disclosed in mcp-server-git, the official Git Model Context Protocol (MCP) server maintained by Anthropic, that could be exploited to read… 

Read More »Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution
Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading

Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading

Ravie LakshmananJan 20, 2026Malware / Threat Intelligence Cybersecurity researchers have uncovered a new phishing campaign that exploits social media private messages to propagate malicious payloads, likely with the intent to deploy a remote access trojan… 

Read More »Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading
Evelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and Crypto

Evelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and Crypto

Ravie LakshmananJan 20, 2026Cloud Security / Developer Security Cybersecurity researchers have disclosed details of a malware campaign that’s targeting software developers with a new information stealer called Evelyn Stealer by weaponizing the Microsoft Visual Studio… 

Read More »Evelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and Crypto
Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers

Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers

Ravie LakshmananJan 20, 2026Web Security / Vulnerability Cloudflare has addressed a security vulnerability impacting its Automatic Certificate Management Environment (ACME) validation logic that made it possible to bypass security controls and access origin servers. “The… 

Read More »Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers
Tudou Guarantee Marketplace Halts Telegram Transactions After Processing Over Billion

Tudou Guarantee Marketplace Halts Telegram Transactions After Processing Over $12 Billion

Ravie LakshmananJan 20, 2026Cryptocurrency / Artificial Intelligence A Telegram-based guarantee marketplace known for advertising a broad range of illicit services appears to be winding down its operations, according to new findings from Elliptic. The blockchain… 

Read More »Tudou Guarantee Marketplace Halts Telegram Transactions After Processing Over $12 Billion
Google Gemini Prompt Injection Flaw Exposed Private Calendar Data via Malicious Invites

Google Gemini Prompt Injection Flaw Exposed Private Calendar Data via Malicious Invites

Cybersecurity researchers have disclosed details of a security flaw that leverages indirect prompt injection targeting Google Gemini as a way to bypass authorization guardrails and use Google Calendar as a data extraction mechanism. The vulnerability,… 

Read More »Google Gemini Prompt Injection Flaw Exposed Private Calendar Data via Malicious Invites
Fortinet Exploits, RedLine Clipjack, NTLM Crack, Copilot Attack & More

Fortinet Exploits, RedLine Clipjack, NTLM Crack, Copilot Attack & More

Ravie LakshmananJan 19, 2026Hacking News / Cybersecurity In cybersecurity, the line between a normal update and a serious incident keeps getting thinner. Systems that once felt reliable are now under pressure from constant change. New… 

Read More »Fortinet Exploits, RedLine Clipjack, NTLM Crack, Copilot Attack & More