The Hacker News

Oracle Patches Critical CVE-2026-21992 Enabling Unauthenticated RCE in Identity Manager

Oracle fixes CVE-2026-21992 (CVSS 9.8) flaw enabling unauthenticated RCE via HTTP, risking full system compromise.
The Hacker News

ThreatsDay Bulletin: FortiGate RaaS, Citrix Exploits, MCP Abuse, LiveChat Phish & More

ThreatsDay roundup covering stealthy attacks, phishing trends, exploit chains, and rising security risks across the threat ...
Bloomberg L.P.

OpenAI Buying AI Security Startup Promptfoo to Safeguard AI Agents

OpenAI has agreed to buy Promptfoo, a startup that helps large businesses find and fix security issues in artificial intelligence models. The acquisition will integrate Promptfoo's technology into ...
Investing

OpenAI to acquire Promptfoo for AI security testing

Investing.com -- OpenAI announced plans to acquire Promptfoo, an AI security platform that helps enterprises identify and fix vulnerabilities in AI systems during development. The company said it will ...
Yahoo

Israel strikes command centres linked to Iran's security forces

Add Yahoo as a preferred source to see more of our stories on Google. Smoke billows following an explosion in Tehran. The US and Israel struck targets across Iran on Saturday, including on the capital ...
Business Line

OpenAI releases AI agent security tool for research preview

OpenAI is introducing an AI agent that’s meant to help security teams find and patch vulnerabilities in large databases, potentially cutting into demand for legacy cyber firms. The agent, called Codex ...
Seeking Alpha

SentinelOne: AI Is A Cybersecurity Prompt, Not A Threat

SentinelOne enters FQ4 earnings with shares trading at a yearly low due in part to AI-driven sector fears. The cybersecurity company has made a strong transition to AI-native products via internal ...
Nextgov

How Cyber Command contributed to Operation Epic Fury against Iran

The digital combatant command was among the “first movers” in the operation against Iran, Joint Chiefs Chair Dan Caine said. Joint Chiefs of Staff Chairman Gen. Dan Caine said U.S. Cyber Command, ...
Wired

You Can Now Install—and Update—Microsoft Store Apps Using the Command Line

I can't stand opening the Microsoft Store. It's slow to load, confusing to browse, and full of ads for things I don't care about. Luckily, thanks to a new feature, I don't have to open the Microsoft ...
Hosted on MSN

Undercover CEO exposes a rude manager who crossed the line

A manager thinks they can get away with rude behavior and crossing boundaries with their team. What they don’t know is that the new employee they’ve been mistreating is actually an Undercover CEO, ...
Security Systems News

‘Backend’ breakthrough in Guthrie case pushes home security to the front line

TUCSON, Ariz.—The abduction of 84-year-old Nancy Guthrie, mother of TODAY Show co-anchor Savannah Guthrie, has pushed home security squarely into the national spotlight, raising difficult questions ...
Dark Reading

ClickFix Attacks Abuses DNS Lookup Command to Deliver ModeloRAT

ClickFix attacks have evolved to meet the latest defense measures by using a new command to circumvent security and make people infect their own devices with malware — in this case, a remote access ...