Microsoft Security Blog published a comprehensive remediation guide following the compromise of the Axios npm package by the North Korean group UNC1069. Detection via package-lock.json, secret rotation, WAVESHAPER.V2 elimination: here are the essential steps.
Fortinet FortiClient Enterprise Management Server is under active attack. Exploitation confirmed by Defused. Verification and remediation guide.
Three vulnerabilities discovered in LangChain and LangGraph expose filesystem data, environment secrets, and conversation history. 52 million weekly downloads.
Google, Amazon, Microsoft, Anthropic and OpenAI collectively invest $12.5M to secure open source. Big Sleep and CodeMender find vulnerabilities automatically.
MISP 2.5.35, released March 19, 2026, brings a UI overhaul, massive performance gains, and MISP Workbench for large-scale threat intelligence analysis.