The Hacker News

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration

Claude Code flaws allow remote code execution and API key theft via untrusted repositories; three bugs fixed across 2025–2026 releases.

Millions at Risk as Android Mental Health Apps Expose Sensitive Data

Oversecured flagged 1,575 flaws in 10 Android health apps with 14.7M installs, putting chats, CBT notes, and mood logs at risk, per BleepingComputer.
The Hacker News

Trojanized Gaming Tools Spread Java-Based RAT via Browser and Chat Platforms

Trojanized gaming tools and new Windows RATs like Steaelite enable data theft, ransomware, and persistent remote control.
IEEE

Incorporating Domain Knowledge into GNNs for Advanced Vulnerability Detection in Java

Abstract: In recent years, security testing and vulnerability detection in source code have experienced a significant transformation with the adoption of data-driven techniques. This shift has reduced ...
GitHub

Red Hat VEX Downloader

The Red Hat VEX Downloader is a powerful Python tool designed to help security professionals, DevOps teams, and system administrators efficiently download, manage, and analyze Red Hat's Vulnerability ...