Max severity Flowise RCE vulnerability now exploited in attacks

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for ...
HealthcareInfoSecurity

Grafana AI Bug Leaks Data With Zero-Click Exploit

A Grafana AI flaw enables zero-click data exfiltration by hiding malicious prompts in URLs, said a Noma Security report.

Artemis II is in orbit - what happens next?

Here's what the next 24 hours should look like for Artemis II. Commander Reid Wiseman, Victor Glover, Christina Koch and ...
CSO Online

Hackers exploit a critical Flowise flaw affecting thousands of AI workflows

The design flaw in Flowise’s Custom MCP node has allowed attackers to execute arbitrary JavaScript through unvalidated ...
Indianapolis Business Journal

EPA grants permit for proposed carbon storage project in Indiana

Denver-based Vault 44.01 and Cardinal Ethanol plan to jointly develop the One Carbon Partnership CCS project about 95 miles ...
Infosecurity Magazine

How Security Leaders Can Safeguard Against Vibe Coding Security Risks

Infosecurity outlines key recommendations for CISOs and security teams to implement safeguards for AI-assisted coding ...
The Caledonian-Record

Nexus Pharmaceuticals Launches Cyclophosphamide Injection, 2.5 mL and 5 mL

Nexus Pharmaceuticals, LLC announces the launch of Cyclophosphamide Injection, available in ready to dilute 2.5 mL fill and 5 ...
SecurityWeek

Critical Vulnerability in Claude Code Emerges Days After Source Leak

Within days of each other, Anthropic first leaked the source code to Claude Code, and then a critical vulnerability was found ...

Artemis II blasts out of Earth's orbit... and heads to the Moon

Artemis II is now on a looping path that will carry the crew around the far side of the Moon and back again. It is the first ...
Security Boulevard

The OWASP Top 10 for LLM Applications (2025): Explained Simply

The OWASP Top 10 for LLM Applications is the most widely referenced framework for understanding these risks. First released in 2023, OWASP updated the list in late 2024 to reflect real-world incidents ...