Max severity Flowise RCE vulnerability now exploited in attacks

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for ...
The Hacker News

$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation

M stolen after six-month DPRK social engineering campaign began fall 2025, exposing Drift’s contributors and cloud assets.
Security Boulevard

Fuzzing to Zero-Day: Pwning V8CTF With TurboFan Type Confusion, CVE-2025-2135

The bug was assigned CVE-2025-2135, and we successfully used it to pwn Google’s V8CTF as a zero-day. The root cause lies in TurboFan’s InferMapsUnsafe() function, which fails to handle aliasing when ...

Innovative AS400 Modernization with AS/Forward Platform

Golden Path Digital, a frontrunner in enterprise modernization solutions, has today unveiled AS/Forward, a sophisticated intelligence and automated transpilation platform designed to address a ...
FedScoop

Trump anti-fraud order eyes stronger data-sharing on federal programs

President Donald Trump speaks before signing an executive order on fraud in the Oval Office at the White House in Washington, D.C., on March 16, 2026, as Vice President JD Vance looks on. (Photo by ...