Cycode, the leading AI-native application security platform, today released its State of Product Security for the AI Era 2026 ...

They’ve been around for more than 30 years and became popular during the COVID pandemic, but experts warn, when you scan a QR code and you’re not careful, you ...

Wazuh provides ransomware protection and file recovery on monitored Windows endpoints using its command module and the ...

AI promises to find bugs and gaps in your apps After helping expand the modern software attack surface with the rise of AI services prone to data poisoning and prompt injection, OpenAI has thrown a ...

Currently in private beta, the GPT-5-powered security agent scans, reasons, and patches software like a real researcher, ...

Eclipse Foundation, which maintains the open-source Open VSX project, said it has taken steps to revoke a small number of ...

Researchers outline how the PhantomRaven campaign exploits hole in npm to enable software supply chain attacks.

A comparison of Snyk and SonarQube for cloud-native security. Learn which tool is better for container scanning, IaC, and ...

Essential security practices like threat modeling and code scanning must be applied to all new software development methods.

An attack on the NuGet package registry shows how advanced open-source software supply chain attacks have become.

The Cybersecurity and Infrastructure Security Agency on Wednesday issued a sweeping emergency order directing all federal agencies to immediately patch critical vulnerabilities in certain devices and ...

Cybersecurity firm F5 Networks says government-backed hackers had “long-term, persistent access” to its network, which allowed them to steal the company’s source code and customer information. In a ...