Microsoft

New Clickfix variant ‘CrashFix’ deploying Python Remote Access Trojan

CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable ...

Kali Linux vs. Parrot OS: Which security-forward distro is right for you?

Whether you're interested in penetration testing or simply curious about cybersecurity, I recommend one of these specialized Linux distributions. Let's compare.
GitHub

Windows CLI MCP Server

PROJECT DEPRECATED - No longer maintained. Use https://github.com/wonderwhy-er/DesktopCommanderMCP instead for similar functionality. This MCP server provides direct ...
GitHub

️ Enterprise-Grade Security Scanner for MCP Servers

Performance: Stable 7.8s scan time, zero new dependencies, 38% faster than v1.0.0 despite 676% code growth.
Bleeping Computer

Exploit code public for critical FortiSIEM command injection flaw

Technical details and a public exploit have been published for a critical vulnerability affecting Fortinet's Security Information and Event Management (SIEM) solution that could be leveraged by a ...
bitnewsbot

Fortinet fixes critical FortiSIEM OS command injection flaw.

On Jan 14, 2026, Fortinet published updates to fix a critical vulnerability in FortiSIEM that could allow unauthenticated attackers to execute code on vulnerable appliances, affecting Super and Worker ...
SecurityWeek

Hackers Exploit Zero-Day in Discontinued D-Link Devices

An OS command injection vulnerability in discontinued D-Link gateway devices has been exploited in the wild as a zero-day. Tracked as CVE-2026-0625 (CVSS score of 9.3), the security defect exists ...
Bleeping Computer

New D-Link flaw in legacy DSL routers actively exploited in attacks

Threat actors are exploiting a recently discovered command injection vulnerability that affects multiple D-Link DSL gateway routers that went out of support years ago. The vulnerability is now tracked ...