The Contagious Interview campaign weaponizes job recruitment to target developers. Threat actors pose as recruiters from crypto and AI companies and deliver backdoors such as OtterCookie and ...

Microsoft confirms Authenticator flaw could allow disclosure of your one-time codes. iOS and Android users are urged to update now.

Two critical n8n flaws (CVSS 9.4, 9.5) enable RCE via expression sandbox escape and public forms, risking credential exposure ...

An SQL injection vulnerability in Ally, a WordPress plugin from Elementor for web accessibility and usability with more than 400,000 installations, could be exploited to steal sensitive data without ...

Yesterday was Patch Tuesday for March, with Microsoft releasing security updates that addressed 84 security vulnerabilities. In addition to Windows and Office, Microsoft’s cloud services were also ...

Microsoft has confirmed that a hacker who successfully exploits a zero-day SQL vulnerability could gain system administrator privileges. Here’s how to fix it.

A former NHS analyst and convicted child rapist could have profiled his victims through NHS database queries that were unaudited. Paul Lipscombe, from Rothley, Leicestershire, who was 51 at the time ...

In a welcome relief for sysadmins, Microsoft released security updates for just 79 vulnerabilities in this month’s Patch Tuesday yesterday, including two publicly disclosed zero-days. Microsoft ...

Zero-days in .NET and SQL Server, and a handful of critical RCE bugs, form the nucleus of Microsoft's March Patch Tuesday update.

Today is Microsoft's March 2026 Patch Tuesday with security updates for 79 flaws, including 2 publicly disclosed zero-day ...

Nine “LeakyLooker” flaws in Google Looker Studio allowed cross-tenant SQL access across GCP services before being patched.

Building an open-source data lakehouse costs $520K/year in engineering time, before licenses and infra. The real all-in cost ...