Anthropic's Mythos AI can spot weaknesses in almost every computer on earth. Uh-oh.

Could powerful AI models like Anthropic's Mythos give cybercriminals and other bad actors a roadmap for exploiting tech ...

13-year-old bug in ActiveMQ lets hackers remotely execute commands

Security researchers discovered a remote code execution (RCE) vulnerability in Apache ActiveMQ Classic that has gone ...
IEEE

Evaluating Retrieval-Augmented Generation for LLM-Based Vulnerability Detection: An Empirical Study on Real-World Java Vulnerabilities

Abstract: Software vulnerabilities are growing as fast as the digital platforms and applications that contain them. Thus, the timely and effective detection of software vulnerabilities is becoming ...
Eagle-Tribune

Point Wild Releases Free LiteLLM Vulnerability Scanner Within 24 Hours of Supply Chain Attack

BOSTON, March 26, 2026 /PRNewswire/ -- Point Wild, a leading global provider of AI-powered cybersecurity, today announced the immediate release of a free security tool, who-touched-my-packages (wtmp) ...
CBS News

DHS watchdog warned of risks in airport shoes-off policy. The report got buried.

An internal watchdog report in the Department of Homeland Security identified serious vulnerabilities in TSA's screenings at airports nationwide, among them, one created by a change in the shoes-off ...
CSOonline

Trivy vulnerability scanner backdoored with credential stealer in supply chain attack

‘If you suspect you were running a compromised version, treat all pipeline secrets as compromised and rotate immediately,’ Trivy maintainer says. Attackers have compromised the widely used open-source ...
thetechedvocate.org

Compromised Trivy Vulnerability Scanner Exposes Supply Chain Risks

The cybersecurity landscape has been shaken by a significant supply chain attack involving the popular Trivy vulnerability scanner, a tool widely used in DevOps environments. Developed by Aqua ...
Ars Technica

Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing supply chain attack that could have wide-ranging consequences for developers ...
The Hacker News

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy, a popular open-source vulnerability scanner maintained by Aqua Security, was compromised a second time within the span of a month to deliver malware capable of stealing sensitive CI/CD secrets.
Android

OpenAI’s Codex Security: An AI Agent That Hunts Down Vulnerabilities

OpenAI has launched Codex Security, an AI-powered vulnerability scanner, in research preview for ChatGPT Pro, Enterprise, and Edu users. Formerly known as Aardvark, the tool aims to reduce false ...
Business Wire

Armis Announces Armis Centrix™ for Vulnerability Management Detection and Response to Reduce Cyber Risk and Eliminate Operational Friction

SAN FRANCISCO--(BUSINESS WIRE)--Armis, the cyber exposure management & security company, today announced Armis Centrix™ for Vulnerability Management Detection and Response. The solution enables ...