Security Flaw in WordPress Plugin Puts 400,000 Websites at Risk

A security flaw in the Ally WordPress plugin used on more than 400,000 sites could allow attackers to extract sensitive data ...

OpenAI’s Codex Security: An AI Agent That Hunts Down Vulnerabilities

OpenAI launches Codex Security, an AI agent-vulnerability scanner that helps developers find and fix high-impact holes in their code.
The Hacker News

The Zero-Day Scramble is Avoidable: A Guide to Attack Surface Reduction

Attack surface exposure leaves services reachable as exploits appear within 24–48 hours after disclosure, increasing breach risk.
The Hacker News

OpenAI Codex Security Scanned 1.2 Million Commits and Found 10,561 High-Severity Issues

OpenAI launches Codex Security AI agent that scanned 1.2M commits, finding 792 critical and 10,561 high-severity vulnerabilities in open-source projec ...
The Motley Fool

Why CrowdStrike Plunged For the Second Day In A Row

Cybersecurity stocks fell for a second day in a row after Anthropic unveiled Claude Code Security on Friday. CrowdStrike's CEO pushed back on the disruption fears in a LinkedIn post over the weekend.
USA Today

Which full-body MRI scan should I get? Compare major companies like Prenuvo.

Full-body MRIs are all the rage. Celebrities and influencers tout the benefits of such scans that could find asymptomatic aneurysms and cancers lurking in your body. Sometimes, they're life-saving.
SiliconANGLE

VulnCheck raises $25M to expand real-time exploit intelligence platform

Cyberthreat intelligence provider VulnCheck Inc. today announced that it had raised $25 million in new funding to scale growth and expand its intelligence capabilities. Founded in 2021, Vulncheck ...
CSOonline

Critical BeyondTrust RS vulnerability exploited in active attacks

Researchers have detected attacks that compromised Bomgar appliances, many of which have reached end of life, creating problems for enterprises seeking to patch. Researchers warn that a critical ...
The Verge

Microsoft fixes Notepad flaw that could trick users into clicking malicious Markdown links

Bad actors could use the flaw to remotely load and execute malicious files on a victim’s computer. Bad actors could use the flaw to remotely load and execute malicious files on a victim’s computer. is ...
HHS

Feds Signal Shift in Vulnerability Oversight

The U.S. federal government is rethinking how to support its globally adopted vulnerability tracking ecosystem after years of backlogs, funding scares and growing doubts about whether the existing ...
webtv.un.org

UN announces new Expert Advisory Panel to advance efforts in quantifying countries’ multidimensional vulnerabilities

New York, 27 January 2026 — United Nations Secretary-General António Guterres has appointed 15 leading experts to the Independent Expert Advisory Panel for the Multidimensional Vulnerability Index ...
CSOonline

EU vulnerability database goes live

GCVE database aims to facilitate vulnerability reporting The platform brings together information from various public resources. These include the sources of the GCVE Numbering Authority (GNA) model.