CISA flags critical Microsoft SCCM flaw as exploited in attacks

CISA ordered federal agencies on Thursday to secure their systems against a critical Microsoft Configuration Manager vulnerability patched in October 2024 and now exploited in attacks.
ExtremeTech

Microsoft Fixes Windows 11 Bug That Let Attackers Run Remote Code in Notepad

The vulnerability comes from the way Notepad handles Markdown hyperlinks. Attackers craft malicious .md files with embedded ...

Oklahoma carries out its first execution of 2026 on a man convicted of double killing

Oklahoma has carried out its first execution of the year on a man convicted of killing two men in a drive-by shooting.
LawBeat

Supreme Court: Can't Execute Court Order Against People Who Weren't Part Of The Case

Court rules execution must strictly conform to decree, cannot shift liability to company directors or shareholders not made parties to original complaint ...
GitHub

FortiWeb Remote Code Execution (RCE) Exploit via CVE-2025-64446 + CVE-2025-58034 Chain

An authenticated attacker (using the account created in step 1) can execute arbitrary OS commands as root via crafted HTTP requests. By combining these two vulnerabilities, an attacker can go from ...
Fox News

State Department demands Iran halt execution of 19-year-old wrestling star

Iran is seeking to execute a decorated Iranian wrestler for merely peacefully protesting against the regime in early January, prompting the U.S. State Department on Wednesday to demand that Tehran ...
FOX 11 Los Angeles on MSN

California governor debate: Meet the candidates

Candidates participating in the debate include Steve Hilton, Matt Mahan, Tom Steyer, Xavier Becerra, Tony Thurmond, Antonio ...
SecurityWeek

Anthropic MCP Server Flaws Lead to Code Execution, Data Exposure

New research from Cyata reveals that flaws in the servers connecting LLMs to local data via Anthropic’s MCP can be exploited to achieve remote code execution and unauthorized file access. All three ...