Tuesday , July 14 2026

Recent Posts

Critical GCP Dialogflow Vulnerability Allows Malicious Code Injection

Dialogflow

A critical flaw in Google Cloud Platform’s Dialogflow CX lets attackers add harmful code to a company’s AI chatbot system. The flaw, called “Rogue Agent,” was revealed by Varonis Threat Labs. It could secretly steal conversations and allow big phishing attacks, needing just one edit permission to start. GCP Dialogflow …

Read More »

CIRT identified 153 publicly exposed FortiGate devices in Bangladesh

FortiGate

CIRT identified 153 publicly exposed FortiGate devices in Bangladesh. In an advisory CIRT said, the campaign has been observed globally, affecting organizations across 194 countries. The systems have the “fortibleed” label, meaning they might be at risk for losing login details and being accessed without permission due to issues with …

Read More »

Thousands of MCP Servers Exposed to File Access and Injection Attacks

MCP Servers

Thousands of Model Context Protocol (MCP) servers have serious security flaws like file access issues, command injection, server-side request forgery (SSRF), and SQL injection. This raises big worries about the safety of AI supply chain security. A big study of 9,695 MCP servers from well-known sites like GitHub, Glama, Lobehub, …

Read More »