Iranian government, not hacktivist group, breached LA Metro system, security firm says

A report by Israel-based Gambit Security dismisses the hackers’ claims of being patriotic but unaffiliated activists.

Drupal: Critical SQL injection flaw now targeted in attacks

Drupal is warning that hackers are attempting to exploit a "highly critical" SQL injection vulnerability announced earlier ...

CISA orders feds to patch actively exploited Drupal vulnerability

CISA has given U.S. government agencies until Wednesday evening to secure their servers against an SQL injection ...
eWeek

AI App Builders Cheat Sheet: Best No-Code, Full-Stack, and Mobile App Tools

Compare top AI app builders for prototyping, mobile apps, internal tools, backend depth, security, pricing, and code ...

AWS whips out Graviton-powered Redshift instances, claims 7x speed for data warehouse

AI agents asking questions in natural language apparently issue a lot more queries than your average SQL jockey ...
InfoWorld

Taming the generative AI back end

Writing code that interacts with LLM services requires bridging two different worlds. Use these tips and techniques to bind ...
Tech Times

Ghost CMS SQL Injection Hits 700 Sites: Harvard, DuckDuckGo Serve Fake Cloudflare Malware

Ghost CMS SQL injection campaign has compromised 700+ websites — including Harvard University, Oxford University, and DuckDuckGo — using a CVSS 9.4 flaw to inject ClickFix malware lures that trick ...
GovInfoSecurity

AI Agents Are the New Insiders

AI systems are no longer passive tools. They make decisions, execute multi-step workflows and access sensitive data ...

Merck and Mastercard are seeing real agentic AI results. Both say the plumbing came first.

Merck cut a drug discovery cycle by 33% and ships compliant marketing 80% faster. Mastercard is rethinking fraud disputes.

Pick n Pay delivery app breached and limited shopper credit card details leaked online

Pick n Pay has confirmed that a version of its Asap! on-demand delivery platform was breached and customer card details are now being sold online.
SecurityWeek

Drupal Vulnerability in Hacker Crosshairs Shortly After Disclosure

Drupal warns users that it has seen attempts to exploit CVE-2026-9082 and security firms are seeing attacks against thousands ...