Ravie

CERT/CC Warns binary-parser Bug Allows Node.js Privilege-Level Code Execution

AndyC 21 January 2026

Ravie LakshmananJan 21, 2026Open Source / Vulnerability A security vulnerability has been disclosed in the popular binary-parser npm library that,...

Three Flaws in Anthropic MCP Git Server Enable File Access and Code Execution

AndyC 21 January 2026

Ravie LakshmananJan 20, 2026Vulnerability / Artificial Intelligence A set of three security vulnerabilities has been disclosed in mcp-server-git, the official...

Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading

AndyC 21 January 2026

Ravie LakshmananJan 20, 2026Malware / Threat Intelligence Cybersecurity researchers have uncovered a new phishing campaign that exploits social media private...

Evelyn Stealer Malware Abuses VS Code Extensions to Steal Developer Credentials and Crypto

AndyC 21 January 2026

Ravie LakshmananJan 20, 2026Cloud Security / Developer Security Cybersecurity researchers have disclosed details of a malware campaign that's targeting software...

Cloudflare Fixes ACME Validation Bug Allowing WAF Bypass to Origin Servers

AndyC 21 January 2026

Ravie LakshmananJan 20, 2026Web Security / Vulnerability Cloudflare has addressed a security vulnerability impacting its Automatic Certificate Management Environment (ACME)...

Tudou Guarantee Marketplace Halts Telegram Transactions After Processing Over Billion

Tudou Guarantee Marketplace Halts Telegram Transactions After Processing Over $12 Billion

AndyC 21 January 2026

Ravie LakshmananJan 20, 2026Cryptocurrency / Artificial Intelligence A Telegram-based guarantee marketplace known for advertising a broad range of illicit services...