The Next Web

Hackers are mass-exploiting a Gravity SMTP flaw to steal API keys from 100,000 WordPress sites

Wordfence has blocked 17M+ exploit attempts targeting a Gravity SMTP bug that leaks API keys, OAuth tokens, and full system reports without authentication.
Decrypt

OpenRouter's Fusion Promises Claude Fable-Level AI for Cheap—Right as Fable 5 Goes Dark

OpenRouter's compound-model API stacks budget AI models—and beat GPT-5.5 and Claude Opus 4.8 outright in benchmark testing.
techtimes

ServiceNow Data Breach: Gated Advisory Left Customers Unaware of Exploited Zero-Auth API

Enterprise security teams are auditing logs and rotating credentials this week after ServiceNow confirmed that attackers successfully queried sensitive customer instance data through an ...
Tech Times

MiniMax M3 Takes Open-Weight AI Lead: Sparse Attention Architecture Now Verified

MiniMax M3 sparse attention is now verified by Artificial Analysis, which ranks M3 first among open-weight AI models with an ...
The Hacker News

LiteLLM Flaw CVE-2026-42271 Exploited in the Wild, Chains to Unauthenticated RCE

CISA added CVE-2026-42271, a high-severity LiteLLM command injection flaw, to its KEV catalog after evidence of active ...

N2N Services Launches Helios, an AI Agent Platform Built for Higher Education

The successor to N2N's decade-old Illuminate platform, Helios lets institutions build, govern, and ship their own AI ...

Copilot searched your mailbox. LiteLLM handed out admin keys. Run this 5-check audit before your stack is next

SearchLeak and a three-CVE LiteLLM chain broke the same AI trust boundary in two weeks. A 5-check audit maps each gap to a ...

Jack Nicklaus thinks PGA Tour scheduling is 'going to be a problem'

"I hate to see tournaments bunched too much together with too many big tournaments too close together. That's a problem, I ...
WeLiveSecurity

FishMonger’s arsenal upgraded: SprySOCKS for Windows

ESET researchers have discovered SprySOCKS for Windows, FishMonger’s backdoor weaponizing a kernel driver for advanced ...
CSO Online

Governing the ghost workforce

Every enterprise security team is fighting a workforce problem they cannot see on any org chart. Bots, service accounts, API ...
TMCnet

Finix Review: An In-Depth Walkthrough

The first thing worth noticing about Finix is what your customers do not see. When a platform runs payments through it, each ...