News — Pixelift

Daily news from the world of AI, image editing and new model releases.

Security

112 articles

Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems

Critical vulnerability CVE-2025-32975 has received the highest possible threat score—CVSS 10.0—meaning hackers can gain full control over...

SecurityMar 21

FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks

SecurityMar 21

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

SecurityMar 21

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

SecurityMar 20

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

SecurityMar 20• The Hacker News

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

More than 20 hours — that is how much time passed from the disclosure of a critical CVE-2026-33017 vulnerability in Langflow to the first...

SecurityMar 20

Google Adds 24-Hour Wait for Unverified App Sideloading to Reduce Malware and Scams

SecurityMar 20

The Importance of Behavioral Analytics in AI-Enabled Cyber Attacks

SecurityMar 20

Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover

SecurityMar 20

DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS Attacks

SecurityMar 20• The Hacker News

Apple Warns Older iPhones Vulnerable to Coruna, DarkSword Exploit Kit Attacks

Older iPhone models are exposed to attacks using Corona and DarkSword exploit kits — according to an Apple warning. The security...

SecurityMar 20

Feds Disrupt IoT Botnets Behind Huge DDoS Attacks

SecurityMar 19

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

SecurityMar 19

54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security

SecurityMar 19

ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More

SecurityMar 19• The Hacker News

New Perseus Android Banking Malware Monitors Notes Apps to Extract Sensitive Data

# New Malicious Perseus Software Threatens Android Users New malicious software Perseus threatens Android users by stealing sensitive data...

SecurityMar 19

How Ceros Gives Security Teams Visibility and Control in Claude Code

SecurityMar 19

DarkSword iOS Exploit Kit Uses 6 Flaws, 3 Zero-Days for Full Device Takeover

SecurityMar 19

CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware Attacks

SecurityMar 18

OFAC Sanctions DPRK IT Worker Network Funding WMD Programs Through Fake Remote Jobs

SecurityMar 18• The Hacker News

Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access

Hackers behind the Interlock ransomware are exploiting a new security vulnerability in Cisco Firewall Management Center (FMC) software to...

SecurityMar 18

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE

SecurityMar 18

Claude Code Security and Magecart: Getting the Threat Model Right

SecurityMar 18

Security

Hackers Exploit CVE-2025-32975 (CVSS 10.0) to Hijack Unpatched Quest KACE SMA Systems

FBI Warns Russian Hackers Target Signal, WhatsApp in Mass Phishing Attacks

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

Trivy Supply Chain Attack Triggers Self-Spreading CanisterWorm Across 47 npm Packages

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Google Adds 24-Hour Wait for Unverified App Sideloading to Reduce Malware and Scams

The Importance of Behavioral Analytics in AI-Enabled Cyber Attacks

Magento PolyShell Flaw Enables Unauthenticated Uploads, RCE and Account Takeover

DoJ Disrupts 3 Million-Device IoT Botnets Behind Record 31.4 Tbps Global DDoS Attacks

Apple Warns Older iPhones Vulnerable to Coruna, DarkSword Exploit Kit Attacks

Feds Disrupt IoT Botnets Behind Huge DDoS Attacks

Speagle Malware Hijacks Cobra DocGuard to Steal Data via Compromised Servers

54 EDR Killers Use BYOVD to Exploit 34 Signed Vulnerable Drivers and Disable Security

ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More

New Perseus Android Banking Malware Monitors Notes Apps to Extract Sensitive Data

How Ceros Gives Security Teams Visibility and Control in Claude Code

DarkSword iOS Exploit Kit Uses 6 Flaws, 3 Zero-Days for Full Device Takeover

CISA Warns of Zimbra, SharePoint Flaw Exploits; Cisco Zero-Day Hit in Ransomware Attacks

OFAC Sanctions DPRK IT Worker Network Funding WMD Programs Through Fake Remote Jobs

Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access

Critical Unpatched Telnetd Flaw (CVE-2026-32746) Enables Unauthenticated Root RCE

Claude Code Security and Magecart: Getting the Threat Model Right

9 Critical IP KVM Flaws Enable Unauthenticated Root Access Across Four Vendors