CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...
WinBuzzer

Microsoft April 2026 Patch Tuesday Fixes 167 Flaws, 2 Zero-Days

Microsoft has fixed 167 vulnerabilities in its April 2026 Patch Tuesday update, including an actively exploited SharePoint ...

Anthropic won't own MCP 'design flaw' putting 200K servers at risk, researchers say

A design flaw – or expected behavior based on a bad design choice, depending on who is telling the story – baked into ...
SecurityWeek

In Other News: Satellite Cybersecurity Act, $90K Chrome Flaw, Teen Hacker Arrested

ShinyHunters targets Rockstar Games, ShowDoc vulnerability exploited in the wild, and EPA to boost cybersecurity budget to $19 million ...

Dangerous Fake Microsoft Windows Update Confirmed—Do Not Download

As security researchers warn about a dangerous Microsoft Windows update that isn’t legitimate, users must pay close attention ...
NPR

Code Switch

What's CODE SWITCH? It's the fearless conversations about race that you've been waiting for. Hosted by journalists of color, our podcast tackles the subject of race with empathy and humor. We explore ...
TechRepublic

TIOBE Index for April 2026: Top 10 Most Popular Programming Languages

TIOBE Index for April 2026: Top 10 Most Popular Programming Languages Your email has been sent Python remains on top despite another dip; C gains ground in second place, and April keeps the same top ...
Network World

Flawed Cisco update threatens to stop APs from getting further patches

Cisco admins are scrambling to patch a critical flash memory overflow vulnerability in over 200 Cisco Systems IOS XE-based ...
CSO Online

Behind the Mythos hype, Glasswing has just one confirmed CVE

As hype builds around Anthropic’s offensive AI model, VulnCheck’s analysis finds just one confirmed CVE tied directly to ...
The Hacker News

April Patch Tuesday Fixes Critical Flaws Across SAP, Adobe, Microsoft, Fortinet, and More

Critical SAP, Adobe, Fortinet, and Microsoft flaws disclosed in April Patch Tuesday, enabling RCE and data theft risks.

Best bluetooth trackers: Apple Air Tag vs. Samsung SmartTag 2

Like many tech categories, Apple didn’t invent the Bluetooth tracking devices, but it made it a lot more popular when it ...
Forbes

Best Personal Loans Of 2026: Compare Top Lenders

Angelica Leicht is a personal finance editor focused on distilling complex financial topics into smart, relatable insights. With nearly two decades of experience in digital journalism, Angelica has ...