The Hacker News

Researchers Discover Critical GitHub CVE-2026-3854 RCE Flaw Exploitable via Single Git Push

CVE-2026-3854 (CVSS 8.7) enabled GitHub RCE via git push, risking cross-tenant access to millions of repositories.
The Hacker News

Microsoft Confirms Active Exploitation of Windows Shell CVE-2026-32202

CVE-2026-32202 actively exploited after April 27 advisory fix, exposing NTLMv2 hashes via zero-click SMB authentication.
DataBreachToday

Researchers Find 38 Flaws in OpenEMR. They've Been Fixed

Researchers at security firm AISLE said they recently identified 38 vulnerabilities, including two maximum-severity zero-day ...
Hosted on MSN

CISA orders urgent patch for exploited SharePoint flaw

Microsoft’s April 2026 security release addressed 169 vulnerabilities, including an actively exploited SharePoint Server spoofing flaw tracked as CVE-2026-32201. The U.S. Cybersecurity and ...
Cyber Daily

Anthropic Mythos: The model, the myth and the mundane

In 1995, Dan Farmer and Wietse Venema released a tool called SATAN (the Security Administrator Tool for Analyzing Networks) ...

GitHub patches critical 'git push' remote code execution bug

Microsoft-owned open source code hosting platform GitHub has acknowledged and patched a critical vulnerability that allowed ...