NSAuditor AI EE 0.15.3 Closes the 4th and Final S3 Public-Exposure Vector with Object-Level ACL Enumeration and a BucketOwnerEnforced Upstream Short-Circuit 
NSAuditor AI EE 0.15.x Cumulative — NEW Plugin 1222 Azure Key Vault Deep Auditor (27 → 28), Plus Audit-Accuracy Calibration and CloudTrail Hardening Across 0.15.0, 0.15.1, and 0.15.2 
Malicious npm Package Stole Files From Claude AI User Directory via GitHub 
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users 
NSAuditor AI EE 0.14.1: Closing the Azure NSG Public-UDP Blind Spot — SNMP, CLDAP, NTP, IPMI, Memcached, rpcbind Now Flagged 
“NSAuditor AI EE 0.6.7 Update Tackles AWS Security Group Audit Inflation and CloudWatch Logs False Positives”
NSAuditor AI EE 0.6.7 Addresses Key Cloud Security Concerns In a significant update, NSAuditor AI EE version 0.6.7 has rolled...
Compromised Nx Console 18.95.0 Targeted VS Code Developers with Credential Stealer
What's new: A compromised version of the Nx Console extension (version 18.95.0) for Visual Studio Code has been identified, which...
SEPPMail Secure E-Mail Gateway Vulnerabilities Enable RCE and Mail Traffic Access
What's new: Critical vulnerabilities have been disclosed in SEPPMail Secure E-Mail Gateway that could allow remote code execution (RCE) and...
Drupal to Release Urgent Core Security Updates on May 20, Sites Told to Prepare
What's new: Drupal will release urgent core security updates on May 20, 2026, from 5-9 p.m. UTC. The updates will...
The New Phishing Click: How OAuth Consent Bypasses MFA
What's new: A phishing-as-a-service platform named EvilTokens has compromised over 340 Microsoft 365 organizations by exploiting OAuth consent screens. Users...