SecurityWeek

Critical ScreenConnect Vulnerability Exposes Machine Keys

ConnectWise has patched a critical ScreenConnect flaw that allowed attackers to obtain machine keys and compromise servers.

Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...
InfoQ

AWS Launches Managed Openclaw on Lightsail amid Critical Security Vulnerabilities

AWS launched managed OpenClaw on Lightsail for AI agent deployment while security concerns mount. The 250k-star GitHub project is affected by CVE-2026-25253, which enables one-click RCE, with 17,500+ ...

New DarkSword iOS exploit used in infostealer attack on iPhones

A new exploit kit for iOS devices and delivery framework dubbed "Darksword" has been used to steal a wide range of personal information, including data from cryptocurrency wallet app.
PCMag on MSN

No, the Aura Data Breach Did Not Expose Your SSN or Password. Here's What Happened

Notorious hacking group ShinyHunters says it's behind the compromise. Aura says only marketing lists were breached, not the ...
GitHub

A Model Context Protocol (MCP) server for creating, reading, and manipulating Microsoft Word documents. This server enables AI assistants to work with Word documents through a ...

Office-Word-MCP-Server implements the Model Context Protocol to expose Word document operations as tools and resources. It serves as a bridge between AI assistants and Microsoft Word documents, ...