Cloud Security

Google Patches Critical CVSS 10 Gemini CLI CI RCE Flaw as Cursor Vulnerabilities Enable Code Execution

Google has resolved a critical security issue with a maximum severity rating that impacted its Gemini CLI ecosystem, a flaw that could have enabled attackers to execute unauthorized commands on affected systems. According to a report published by Novee Security, the vulnerability allowed attackers without privileges to inject malicious configurations into Gemini CLI environments. This manipulation […]

Google Patches Critical CVSS 10 Gemini CLI CI RCE Flaw as Cursor Vulnerabilities Enable Code Execution Read More »

LiteLLM CVE-2026-42208 SQL Injection Vulnerability Exploited Within 36 Hours of Disclosure

A critical security flaw in the LiteLLM Python package has been rapidly exploited by threat actors shortly after its public disclosure, highlighting the growing speed at which attackers weaponize newly revealed vulnerabilities. The issue, tracked as CVE-2026-42208 with a severity score of 9.3, affects LiteLLM, an open-source AI gateway developed by BerriAI. Nature of the Vulnerability

LiteLLM CVE-2026-42208 SQL Injection Vulnerability Exploited Within 36 Hours of Disclosure Read More »

Researchers Uncover Critical GitHub CVE-2026-3854 RCE Vulnerability Exploitable Through a Single Git Push

Security researchers have revealed a high-impact vulnerability affecting GitHub that could enable attackers to execute arbitrary code using nothing more than a single git push command. Tracked as CVE-2026-3854, the flaw carries a CVSS score of 8.7 and impacts both GitHub.com and GitHub Enterprise Server environments. Nature of the Vulnerability The issue is classified as a command injection flaw.

Researchers Uncover Critical GitHub CVE-2026-3854 RCE Vulnerability Exploitable Through a Single Git Push Read More »

Critical Unpatched Vulnerability Exposes Hugging Face LeRobot to Unauthenticated Remote Code Execution

A serious security vulnerability has been identified in LeRobot, an open-source robotics platform developed by Hugging Face, potentially allowing attackers to execute arbitrary code without authentication. Tracked as CVE-2026-25874, the flaw carries a high severity rating of 9.3 and raises significant concerns for organizations using AI-driven robotics systems. Root Cause of the Vulnerability The issue

Critical Unpatched Vulnerability Exposes Hugging Face LeRobot to Unauthenticated Remote Code Execution Read More »

Microsoft Fixes Entra ID Role Vulnerability That Allowed Service Principal Takeover

Microsoft has addressed a critical security weakness in its Entra ID platform that could have allowed attackers to gain control over service principals and escalate privileges within enterprise environments. The issue, uncovered by cybersecurity firm Silverfort, involved a built-in administrative role designed for managing artificial intelligence driven identities. Understanding the Role and the Risk The vulnerability

Microsoft Fixes Entra ID Role Vulnerability That Allowed Service Principal Takeover Read More »

Vercel Discovers Additional Compromised Accounts in Breach Linked to Context.ai

Vercel has disclosed new findings in its ongoing investigation into a recent security incident, confirming that more customer accounts were affected than initially believed. Expanded Investigation Reveals More Impact The company reported that after broadening its analysis, including reviewing network activity and environment variable access logs, it discovered an additional group of accounts showing signs of

Vercel Discovers Additional Compromised Accounts in Breach Linked to Context.ai Read More »

SystemBC C2 Infrastructure Exposes Over 1,570 Victims Linked to The Gentlemen Ransomware Operation

Cybersecurity researchers have uncovered new evidence connecting a large-scale botnet to the rapidly growing ransomware group known as The Gentlemen. The discovery reveals that attackers are leveraging the SystemBC proxy malware to strengthen their operations and expand their reach globally. Large Botnet Discovered Through SystemBC Server A recent investigation by cybersecurity firm Check Point exposed

SystemBC C2 Infrastructure Exposes Over 1,570 Victims Linked to The Gentlemen Ransomware Operation Read More »

Iran-Linked Password Spraying Campaign Targets Over 300 Israeli Microsoft 365 Organizations

A large-scale cyber operation believed to be connected to Iran has been identified targeting Microsoft 365 environments, primarily focusing on organizations in Israel and the United Arab Emirates. The campaign comes amid rising geopolitical tensions in the Middle East and highlights the increasing use of cloud-focused cyberattacks. According to findings released by Check Point Software Technologies,

Iran-Linked Password Spraying Campaign Targets Over 300 Israeli Microsoft 365 Organizations Read More »

Vertex AI Vulnerability Exposes Sensitive Google Cloud Data and Private Artifacts

A newly identified security weakness in Google Vertex AI has raised serious concerns about potential data exposure and cloud infrastructure compromise. Security researchers have revealed that artificial intelligence agents operating within the platform could be manipulated to access sensitive information without authorization. Misconfigured Permissions Create a Hidden Risk The issue stems from how permission controls are implemented

Vertex AI Vulnerability Exposes Sensitive Google Cloud Data and Private Artifacts Read More »

Device Code Phishing Targets 340+ Microsoft 365 Organizations Across Five Countries via OAuth Abuse

A widespread device code phishing campaign is actively targeting Microsoft 365 identities in more than 340 organizations across the U.S., Canada, Australia, New Zealand, and Germany. According to Huntress researchers, the campaign was first observed on February 19, 2026, and has accelerated since. The threat actors exploit Cloudflare Workers redirects combined with Railway.com PaaS infrastructure to turn legitimate authentication flows into credential-harvesting mechanisms. Targeted

Device Code Phishing Targets 340+ Microsoft 365 Organizations Across Five Countries via OAuth Abuse Read More »