CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...

Anthropic won't own MCP 'design flaw' putting 200K servers at risk, researchers say

A design flaw – or expected behavior based on a bad design choice, depending on who is telling the story – baked into ...
ANTARA News

Indonesia to maintain subsidized fuel prices through 2026

Subsidized fuel prices in Indonesia will remain unchanged through the end of 2026, Energy and Mineral Resources Minister ...
ANTARA News

Indonesia pushes ethics in AI use, development

The Indonesian government has urged stakeholders to incorporate ethical considerations into the development and use of ...

'They mopped the floor with me and pulled every childish game they could': Disgruntled researcher releases second major Windows zero-day — claims Mi…

Researcher “Chaotic Eclipse” discloses new Microsoft Defender zero‑day dubbed RedSun Flaw enables local privilege escalation ...

CISA tells feds to patch 13-year-old Apache ActiveMQ bug under active attack

The US cybersecurity agency added the bug, tracked as CVE-2026-34197, to its Known Exploited Vulnerabilities (KEV) catalog on ...

GitLab Extends Agentic AI with New Automated Security Remediation, Pipeline Setup, and Delivery Analytics

GitLab 18.11 helps address those gaps with platform-native agents that have access to the code, pipelines, issues, and ...