Yubico announced its significant role in securing the AI frontier as OpenAI mandates the use of passkeys for individuals that are part of their Trusted Access for Cyber (TAC) program. As a leading global AI research and development company, OpenAI is setting a precedent for empowering its users to take control of their own security posture with more secure authentication options. Starting June 1, 2026, individuals in TAC with access to OpenAI’s most powerful and … More →
The post OpenAI requires stronger authentication for users of its most powerful AI models appeared first on Help Net Security.
IBM has disclosed a critical security vulnerability in its WebSphere Application Server ecosystem that could allow attackers to execute arbitrary code through specially crafted HTTP requests. The flaw, tracked as CVE-2026-8633, affects environments that use the optional Web Server Plug-ins component, significantly elevating the risk for enterprise deployments that rely on WebSphere infrastructure. The vulnerability […]
The post IBM WebSphere Server Vulnerable to Remote Code Execution Attack Via Crafted Request appeared first on Cyber Security News.
A critical security vulnerability has been discovered in a widely used Magento caching plugin that allows attackers to remotely execute malicious code with no login, configuration changes, or admin access required. Security researchers at Sansec uncovered an unauthenticated PHP object injection flaw in Mirasvit Cache Warmer, a full-page cache extension used by thousands of Magento and […]
The post Critical Magento Cache Plugin Vulnerability Enables Remote Code Execution Attacks appeared first on Cyber Security News.
A newly disclosed vulnerability, tracked as CVE-2026-9739, is raising security concerns across enterprise environments using MCP Toolbox, particularly those that rely on Server-Sent Events (SSE) for database connectivity. The flaw, currently awaiting NVD enrichment, allows attackers to exploit a DNS rebinding weakness that could lead to unauthorized access to backend systems. Security researchers identified that […]
The post Critical MCP Toolbox Vulnerability Impacts Enterprise Database onnectors appeared first on Cyber Security News.
You must login to view this content
Football fans are counting down the days until the FIFA World Cup begins, and scammers are doing the same. Last week, the FBI warned that cybercriminals are spoofing FIFA websites to steal personal information, sell fake tickets, and promote fraudulent hospitality packages ahead of the tournament. With millions of supporters expected to travel to the United States, Canada, and Mexico for the 2026 World Cup, fraudsters are likely to target demand for tickets, accommodation, and … More →
The post Meta tries to get ahead of scammers before the World Cup begins appeared first on Help Net Security.