Hackers are exploiting a critical LiteLLM pre-auth SQLi flaw

Hackers are targeting sensitive information stored in the LiteLLM open-source large-language model (LLM) gateway by ...
The Hacker News

Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push

CVE-2026-3854 (CVSS 8.7) enabled GitHub RCE via git push, risking cross-tenant access to millions of repositories.
Hosted on MSN

Robinhood phishing exploit used Gmail alias and HTML injection

Robinhood confirmed a phishing campaign that exploited its account creation process and Gmail’s dot alias feature to send convincing fake security alerts from its official email address. Attackers ...