VibeSecCon Returns: The Security Summit Running From Prompt to Runtime. June 16th, 2026

Vulnerability Insights

The CVE Is Dead

May 27, 2026

The CVE Is Dead. Long live the Mythos Era.

Neatsun Ziv

From Auth Bypass to RCE A 4 Vulnerability Exploit Chain in DataEase (1)

May 25, 2026

From Auth Bypass to RCE: A 4-Vulnerability Exploit Chain in DataEase

Nir Zadok, Moshe Siman Tov Bustan

May 21, 2026

Megalodon: New CI/CD Malware Spreads Across GitHub, Infecting ~5,000+ Repositories

Moshe Siman Tov Bustan

May 20, 2026

North Korean-Linked Threat Actor Targets Developers with New npm Infostealer RAT

Moshe Siman Tov Bustan, Nir Zadok

How a Trojan VS Code Extension Brought Down GitHub

May 20, 2026

TeamPCP Strikes (again): How a Trojan VS Code Extension Brought Down GitHub

Nir Zadok

From Prompt to Runtime: Four Ways to Find NGINX Rift (CVE-2026-42945) with OX Security

May 14, 2026

From Prompt to Runtime: Four Ways to Find NGINX Rift (CVE-2026-42945) with OX Security

Moshe Siman Tov Bustan, Sagiv Peer

May 14, 2026

node-ipc npm Package Breached, Spreading Infostealer Malware

Moshe Siman Tov Bustan

May 12, 2026

Shai-Hulud Goes Open Source: Malware Creators Leak Their Own Code to GitHub

Moshe Siman Tov Bustan

May 12, 2026

CVE-2025-69443: Archon OS Vulnerable To Unauthenticated Web-To-Client Attack

Moshe Siman Tov Bustan, Nir Zadok

May 12, 2026

New MCP Security Flaws: Kubectl-mcp-server, Archon OS, and MarkItDown Vulnerabilities

Moshe Siman Tov Bustan, Nir Zadok

May 12, 2026

CVE-2025-65719: Critical RCE in Kubectl MCP Server

Moshe Siman Tov Bustan, Nir Zadok

May 12, 2026

MarkItDown MCP Exposes Developer Machines to File Theft

Moshe Siman Tov Bustan, Nir Zadok

Subscribe to Our Newsletter

Stay updated with the latest SaaS insights, tips, and news delivered straight to your inbox.