SecurityWeek

Gogs Zero-Day Exposes Servers to Remote Code Execution

Open source Git service Gogs is affected by a critical-severity zero-day vulnerability that exposes servers to remote code execution.

Mistral Vibe: Trying out the new agentic Work and Code interfaces

French AI manufacturer Mistral renames the user interface of its LLM models, stepping into the agentic era of AI applications. Moving away from a purely chat-focused interface towards a central ...
Microsoft

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, and ...