Anthropic’s AI-run espionage report shows why enterprises need stronger governance for AI agents, MCP connectors, and ...
Several AI coding assistants were tricked into facilitating developer machine hacking via an attack technique that has been ...
Multiple Tenda firmware versions contain a backdoor (CVE-2026-11405) that provides access to the device’s web management ...
Learn how Microsoft uses AI to proactively harden its own cloud services through the Secure Future Initiative (SFI).
Read five key learnings from the Frost & Sullivan 2025 Frost Radarâ„¢ for CSPM to learn how CSPM is evolving from point-in-time ...
Unsure how modern login works? Read our simple guide to OpenID Connect, explaining how this essential identity layer ...
DeepSeek speculative decoding framework DSpark went live June 27 on V4-Flash and V4-Pro, reporting up to 85 percent faster ...
A security flaw in the Gravity SMTP WordPress plugin has drawn more than 17 million automated exploit attempts since early May 2026 — and every site that ran an unpatched version while those attacks ...
Threat actors are exploiting an unauthenticated information disclosure vulnerability in the WordPress plugin Gravity SMTP, active on 100,000 sites. The flaw is tracked as CVE-2026-4020 and received a ...
Any development environment that installed or imported one of the 172 compromised npm or PyPI packages published since May 11 should be treated as potentially compromised. On affected developer ...
A pre‑authentication bug in SAML Web SSO, combined with weak access controls and cryptography, allows attackers to escalate privileges and achieve remote code execution. Security researchers are ...
Every enterprise running AI coding agents has just lost a layer of defense. On March 31, Anthropic accidentally shipped a 59.8 MB source map file inside version 2.1. ...