The Hacker News

AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE

DNS flaw in Amazon Bedrock and critical AI vulnerabilities expose data and enable RCE, risking breaches and infrastructure ...

Microsoft Confirms SQL Zero-Day Security Vulnerability—Here’s The Fix

Microsoft has confirmed that a hacker who successfully exploits a zero-day SQL vulnerability could gain system administrator privileges. Here’s how to fix it.

Microsoft blocking a Windows 11 & Server 2025 automatic installation feature0 0

Microsoft is blocking a method to deploy and automate Windows 11 and Server 2025 installations. The company has explained why ...
The Hacker News

The Firewall Isn't Blind — It Just Needs to See Inside the Session

Firewall visibility gap grows as SaaS and AI traffic move to encrypted HTTPS sessions, exposing enterprise data without session-level inspection.

CISA flags Wing FTP Server flaw as actively exploited in attacks

CISA warned U.S. government agencies to secure their Wing FTP Server instances against an actively exploited vulnerability that may be chained in remote code execution attacks.
SecurityWeek

Critical N8n Vulnerabilities Allowed Server Takeover

Two critical-severity n8n vulnerabilities could have led to unauthenticated remote code execution, sandbox escape, and credential theft.