Kali Linux 2026.1 drops with 8 new offensive security tools, a kernel bump to 6.18, and a BackTrack nostalgia mode that recreates the legendary BT5 desktop. Here is what is worth installing and what to skip.
TeamPCP compromised the Trivy vulnerability scanner and used stolen credentials to poison LiteLLM on PyPI. Over 1,000 cloud environments are confirmed affected, with Mandiant warning the number could reach 10,000. Here is the timeline, the blast radius, and what you need to do right now.
RSAC 2026 opened with a clear message: AI agents are the new enterprise attack surface. Microsoft, Straiker, and SOCRadar all launched agent security products in the first 24 hours. Here is what happened, who is affected, and what your security team should do this week.
CVE-2026-33017 gives attackers unauthenticated remote code execution on Langflow AI platforms with a single HTTP request. Exploitation began 20 hours after disclosure, no proof-of-concept needed.