New coalition aims to streamline open source bug fixes
The Athena coalition, led by Chainguard, will leverage artificial intelligence to proactively address vulnerabilities in open source code.
20 articles
The Athena coalition, led by Chainguard, will leverage artificial intelligence to proactively address vulnerabilities in open source code.
By fighting AI with AI, teams can stay one step ahead in the great innovation race.
One of the flaws, DirtyClone, is a variant of the DirtyFrag vulnerability class.
The operation, a collaboration between Poland's Cybercrime Bureau (CBZC) and U.S.
CL-STA-1062 employs a hybrid toolkit, combining open-source tools like SoftEther VPN, Mimikatz, and VNT with a newly discovered custom backdoor named TinyRCT.
As outlined in CyberScoop, the Bureau of Alcohol, Tobacco, Firearms and Explosives (ATF) has canceled a contract with Penlink that utilized ad-surveillance t...
STOCKSTAY, written in .NET and utilizing the Windows Forms framework, communicates with its command-and-control (C2) server via a secure WebSocket connection.
The attack exploited a zero-day vulnerability in Oracle PeopleSoft, an enterprise resource planning software.
The cyberattack on Jaguar Land Rover (JLR), a major UK employer, caused production to halt for months, resulting in an estimated $2.5 billion loss to the Bri...
Security firms Malwarebytes and NordVPN have identified a surge of sophisticated fake websites offering "VIP Early Access" to Grand Theft Auto VI.
Scammers are impersonating well-known brands like Norton, McAfee, Apple, and PayPal by adding fake orders to the Shop app, which is popular in North America ...
The report, based on surveys of approximately 450 cybersecurity professionals, indicates that 78% of respondents observed automated tools failing to detect c...
The vulnerability, tracked as CVE-2026-12957, allowed attackers to execute arbitrary commands by embedding malicious code in workspace configuration files.
The update includes fixes for issues discovered through AI-assisted analysis, with AISLE identifying six CVEs, including the oldest known bug, CVE-2026-8932,...
AI won't replace credential security, but it demands stronger identity safeguards.
ICIT: Hidden infrastructure concentration threatens U.S.
The shift from M2M to A2A communication heralds an entirely new operational model for enterprise computing.
The initial public draft of the updated guidelines, titled "IoT Product Cybersecurity Guidelines for the Federal Government: Establishing IoT Product Cyberse...