Ongoing supply-chain attack 'explicitly targeting' security, dev tools

Software security testing outfit Checkmarx has become the latest organization caught up in an ongoing attack on security-tool providers. The biz said data posted online appears to have come from one ...

India’s open-code approach faces an AI stress test as new tools like Anthropic's Mythos expose hidden flaws

Anthropic, OpenAI and others have developed AI tools that can spot hidden gaps in software for fixing. India’s use of ...
Security Boulevard

AI Vulnerability Chaining – Why Your Security Stack Cannot Detect What Comes Next

Mythos combined four separate low-severity bugs into a complete browser sandbox escape. Traditional scanners evaluate ...
Security Boulevard

The Invisible Threat: Business Logic Flaws in Modern Applications and Why Scanners Miss Them

In today's security landscape, some of the most dangerous vulnerabilities aren't flagged by automated scanners at all. These ...
Decrypt

Anthropic’s Alarming Mythos Findings Replicated With Off-the-Shelf AI, Researchers Say

Security researchers used GPT-5.4 and Claude Opus 4.6 in an open-source harness to reproduce Anthropic's Mythos vulnerability ...
The Next Web

OpenAI opens its cybersecurity model to thousands of defenders in race with Anthropic’s Mythos

OpenAI launches GPT-5.4-Cyber with binary reverse engineering for verified defenders, scaling access to thousands as it ...
MacRumors

Anthropic's AI to Help Apple Find iOS, macOS, and Safari Vulnerabilities

Anthropic on Tuesday announced Project Glasswing, a new initiative that will enable tech companies to use its new AI model Mythos Preview to find and fix security vulnerabilities or weaknesses across ...
Mashable

Google launches Gemma 4, a new open-source model: How to try it

Google just released its newest AI model Gemma 4, which is now both open and open source. Credit: Thomas Fuller/SOPA Images/LightRocket via Getty Images Google just released the latest version of its ...
TechCrunch

North Korean hackers blamed for hijacking popular Axios open source project to spread malware

A suspected North Korean hacker has hijacked and modified a popular open source software development tool to deliver malware that could put millions of developers at risk of being compromised. On ...
The Hacker News

Wazuh for Proactive Vulnerability Management

Vulnerability management is the continuous process of identifying, assessing, prioritizing, and addressing security weaknesses across systems, applications, and infrastructure. It extends beyond ...
TechCrunch

Cohere launches an open source voice model specifically for transcription

Enterprise AI company Cohere on Thursday launched its first voice model: Transcribe is an open source automatic speech recognition model that can be used for tasks like note-taking and speech analysis ...
Bleeping Computer

GitHub adds AI-powered bug detection to expand security coverage

GitHub is adopting AI-based scanning for its Code Security tool to expand vulnerability detections beyond the CodeQL static analysis and cover more languages and frameworks. The developer ...