GitLab has rolled out emergency updates fixing 10 security flaws — including several high-severity XSS bugs and denial-of-service vulnerabilities — urging all self-managed customers to update without delay.

Fortinet, Ivanti, and SAP have issued urgent patches for high-severity vulnerabilities that could enable authentication bypass or remote code execution. Cybersecurity teams are urged to update systems immediately.

A Sophos investigation reveals nearly 40 intrusions linked to STAC6565, a threat cluster overlapping with the Gold Blade hacking group. The campaign shows a sharp shift toward Canadian targets and the deployment of the new QWCrypt ransomware.

Cybersecurity analysts have uncovered a new multi-stage malware campaign dubbed JS#SMUGGLER, which abuses compromised websites to silently deploy NetSupport RAT using obfuscated JavaScript, HTA loaders, and PowerShell stagers.

Security researchers have uncovered more than 30 vulnerabilities across major AI-powered IDEs such as Cursor, Windsurf, Copilot, Zed, and others—issues that could allow attackers to steal sensitive data, manipulate code, or trigger full remote code execution (RCE) through weaponized prompt injections.

The US and Canadian cybersecurity agencies have warned that China-linked hackers used a sophisticated malware tool called "Brickstorm" to steal login credentials and maintain long-term access inside government and IT networks, according to a joint advisory cited by Reuters.