https://invaders.ie/resources/blog/vulnerability/nginx-ui-cve-2026-33032-full-nginx-takeover Invaders Security en 2026-04-15T20:31:18.382Z CVE-2026-33032 in nginx-ui Enables Full Nginx Server Takeover via Unauthenticated MCP Access nginx-ui, CVE-2026-33032, Authentication Bypass, Nginx, MCP, Server Takeover https://invaders.ie/resources/blog/cloud-and-application-security/malicious-chrome-extensions-oauth-token-risk Invaders Security en 2026-04-15T08:06:03.540Z Malicious Chrome extensions turn OAuth tokens into enterprise risk Chrome Web Store malicious extensions, OAuth token theft, browser security, credential theft, command and control, Google account abuse, browser extensions https://invaders.ie/resources/blog/vulnerability/cve-2026-5194-wolfssl-certificate-trust-risk Invaders Security en 2026-04-14T08:05:04.421Z CVE-2026-5194 weakens wolfSSL certificate trust in embedded deployments CVE-2026-5194, wolfSSL vulnerability, certificate validation flaw, embedded security, IoT TLS library, cryptography patching