Skip to content

Arrest Warrant Rejected: AI Match Only a Vague Clue for Judge

A district court should restrict the use of facial recognition technology and strengthen the rights of defendants against opaque IT-based investigative tools, as automated search results in criminal prosecution alone do not satisfy legal requirements without robust safeguards and technical transparency.

Share on:

“Fragnesia”: Next Privilege Escalation Vulnerability in Linux Kernel

Microsoft warns of “Fragnesia,” a new Linux kernel vulnerability (CVE-2026-46300, CVSS 9.9) that represents a variant of the Dirty Frag flaw; it affects the XFRM-ESP subsystem in IPsec and allows attackers to gain root privileges, discovered by William Bowling using an AI-powered tool, with exploit code and patches alr

Share on:

F5 BIG-IP: Quarterly Security Update Closes Multiple Vulnerabilities

F5 has published its quarterly security update closing vulnerabilities in BIG-IP, BIG-IQ Centralized Management, NGINX Plus and NGINX Open Source, with a particularly critical flaw in NGINX allowing unauthenticated code execution via crafted HTTP requests that could enable DoS, privilege escalation and access to protec

Share on:

Patch Now! Attackers Targeting Cisco Catalyst SD-WAN Controller

Attackers are actively exploiting a critical vulnerability (CVE-2026-20182) in the Cisco Catalyst SD-WAN Controller rated with a CVSS score of 10 out of 10, which allows remote attackers to bypass authentication and gain unauthorized access through a flaw in the peering authentication mechanism.

Share on:

CISA Adds Critical Cisco SD-WAN Vulnerability to KEV Catalog

CISA has added a critical authentication vulnerability (CVE-2026-93) in Cisco SD-WAN Controller to its KEV catalog; federal agencies must patch by May 2026, and threat group UAT-8616 is already actively exploiting it while at least ten threat groups are exploiting related vulnerabilities and installing web shells on sy

Share on: