Rising Attack: The Silent Saboteur Threatening AI Vision
By Gaurav Duggal, PhD | Advisor on AI and Cybersecurity A new class of attack, dubbed Rising Attack, has emerged from the halls of academia with startling implications for the…
By Gaurav Duggal, PhD | Advisor on AI and Cybersecurity A new class of attack, dubbed Rising Attack, has emerged from the halls of academia with startling implications for the…
Tenable has identified a Remote Code Execution (RCE) vulnerability in Oracle Cloud Infrastructure (OCI) Code Editor, a service designed for developers working within Oracle’s Cloud Shell ecosystem. This vulnerability could have…
Tenable Research has identified a critical remote code execution vulnerability (CVE-2025-49596) in Anthropic’s widely adopted MCP Inspector, an open-source tool crucial for AI development. With a CVSS score of 9.4,…
GerriScary allowed unauthorised code submission to at least 18 popular Google projects Tenable has identified a vulnerability in Google’s open-source code review system, Gerrit, dubbed GerriScary. The vulnerability allowed unauthorised…
Vulnerability exploitation surged as the initial access vector for 20% of breaches—a 34% increase year over year and now rivalling the top initial access vector (credential abuse), according to the…
ConfusedComposer Exploits Hidden Cloud Service Dependencies Tenable, the cloud exposure management company, has uncovered a privilege escalation vulnerability in Google Cloud Composer (GCP) named ConfusedComposer. The vulnerability lets attackers with…
Tenable has disclosed that its Tenable Cloud Security Research team has discovered a medium-severity Server Message Block (SMB) force-authentication vulnerability that exists in all versions of Open Policy Agent (OPA)…
Tenable has disclosed that its Tenable Research team has discovered a critical remote code execution (RCE) vulnerability, dubbed CloudImposer, that could have allowed malicious attackers to execute code on potentially…
Tenable has disclosed that its Tenable Research Team has discovered a critical information disclosure vulnerability in Microsoft’s Copilot Studio via a server-side request forgery (SSRF), which allowed researchers access to…
Kaspersky’s GReAT team discovered a vulnerability in Apple System on a chip, or SoC, that has played a critical role in the recent iPhone attacks, known as Operation Triangulation, allowing…
This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Read More