SecurityWeek

38 Vulnerabilities Found in OpenEMR Medical Software

Dozens of vulnerabilities were discovered recently in the open source electronic medical records platform OpenEMR.
Security Boulevard

The Invisible Threat: Business Logic Flaws in Modern Applications and Why Scanners Miss Them

In today's security landscape, some of the most dangerous vulnerabilities aren't flagged by automated scanners at all. These ...

Leaked Client Data, Bigger Mistakes: Agentic AI's Hidden Risks for Legal Teams

Agentic AI tools present the possibility of substantial efficiency gains for legal teams, but the risks they pose require ...
ThePrint

AI model Claude Mythos has alarmed the US. Why India must act now

There are moments when a technology does not merely advance the frontier — it erases it. The emergence of Claude Mythos, Anthropic’s new artificial intelligence model, is one such moment. The fact ...
The Hacker News

LiteLLM CVE-2026-42208 SQL Injection Exploited within 36 Hours of Disclosure

CVE-2026-42208 exploited within 36 hours of disclosure, exposing LiteLLM credentials, risking cloud account compromise.
SecurityWeek

Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure

Hackers rushed to target a critical LiteLLM SQL injection flaw to steal keys, credentials, and environment-variable ...
CSO Online

Prompt injection turned Google’s Antigravity file search into RCE

A prompt injection flaw in Google’s Antigravity IDE turns a file search tool into a remote code execution vector, bypassing ...
The Hacker News

ThreatsDay Bulletin: SMS Blaster Busts, OpenEMR Flaws, 600K Roblox Hacks and 25 More Stories

SMS blasters, npm supply chain hits, and unpatched Windows flaws. Stay ahead of new phishing kits and exposed servers.

From XSS to RCE: How to hijack a DotNetNuke server via a single script injection

Over 750,000 websites require patching following discovery of DotNetNuke XSS vulnerability ...