SecurityWeek

900 Sangoma FreePBX Instances Infected With Web Shells

Hackers exploited CVE-2025-64328, a FreePBX command injection vulnerability, to infect hundreds of instances with web shells.

Agentplace wants to replace the entire web with autonomous agents, and anyone can build one

As frontier models converge and infrastructure commoditizes, power is shifting away from the AI itself and toward the platforms that control how agents are built, governed, and deployed. The next ...

Fake Next.js job interview tests backdoor developer's devices

The Microsoft Defender team has discovered a coordinated campaign targeting software developers through malicious repositories posing as legitimate Next.js projects and technical assessment materials, ...