CSO Online

Software developers: Prime cyber targets and a rising risk vector for CISOs

From technical compromise to AI-driven attacks, cyber criminals increasingly see software developers as prime targets, creating systemic risks CISOs must address.
DataBreachToday

Attackers Exploit LLM Guardrails to Breach Enterprise APIs

Attackers have shifted from classic exploits to abusing large language models and APIs. Menlo Security's Ramin Farassat and ...

Hackers exploit critical React Native Metro bug to breach dev systems

Hackers are targeting developers by exploiting the critical vulnerability CVE-2025-11953 in the Metro server for React Native ...
CSOonline

Researchers warn of long‑running FortiSIEM root exploit vector as new CVE emerges

A critical command injection issue in Fortinet FortiSIEM has been disclosed along with public exploit code, and researchers claim attackers could have been remotely achieving unauthenticated root ...
9to5google

Many Google Fast Pair devices need an update to patch exploits that allowed attackers to track you

Google’s Fast Pair protocol delivers one of the best Bluetooth experiences you’ll find today, automatically pairing wireless earbuds, speakers, and other accessories and sharing those details across ...
Hosted on MSN

Google warns that a well-known exploit for WinRAR is still in widespread use by Russian and Chinese threat actors

Google has warned that well-known and already-patched exploit for the WinRAR file archiving and compression tool for Windows remains in "widespread, active" use by "government-backed threat actors ...
WinBuzzer

Malicious VS Code Extensions Steal Code from 1.5M Developers

Two malicious VS Code extensions have exfiltrated code snippets, API keys, and proprietary algorithms from 1.5 million ...