News

GitLab ‘Vulnerability Highlights the Double-Edged Nature of AI Assistants’
A remote prompt injection flaw in GitLab Duo allowed attackers to steal private source code and inject malicious HTML. GitLab ...
CSO Online3h
Code security in the AI era: Balancing speed and safety under new EU regulations
Organizations face the challenge of securing AI-generated code while maintaining a rapid development pace to meet market ...
The Manila Times4h
RapidFort and Carahsoft Partner to Streamline Public Sector Compliance and Bolster Federal Software Defenses
Partnership Strengthens Software Security and Streamlines Compliance With Critical Regulatory Frameworks. SAN FRANCISCO and RESTON, Va., May 27, 2025 (GLOBE NEWSWIRE) -- RapidFort ...
Communications of the ACM5h
Is AI Security Work Best Done In Academia or Industry? Part 2
We left off in Part 1 with arguments for why industry has become the place for major leaps in AI, though with several notable exceptions, both historical and ongoing. In Part 2, we will consider the ...
SecurityWeek6h
DragonForce Ransomware Hackers Exploiting SimpleHelp Vulnerabilities
A DragonForce ransomware operator chained three vulnerabilities in SimpleHelp to target a managed service provider.
PTA Warns Against Critical Security Flaws in Microsoft Office Apps
The Pakistan Telecommunication Authority (PTA) has released Cyber Security Advisory No. 368, warning users about serious ...
Update for ManageEngine ADAudit Plus fixes high-risk security vulnerabilities
In ManageEngine ADAudit Plus, manufacturer Zoho has patched two vulnerabilities classified as high risk. There are two ...
Infosecurity Magazine1d
How to Incentivize Security by Design
Technology operators and vendors must be better incentivized to invest in building products and services that are secure by ...
OpenAI’s o3 AI Found a Zero-Day Vulnerability in the Linux Kernel, Official Patch Released
A security researcher has discovered a security flaw in the Linux kernel using the OpenAI o3 reasoning model. An official ...
19 billion passwords have leaked online: How to protect yourself
Massive password leak reveals cybersecurity flaws. Learn how to protect your accounts with strong passwords, two-factor ...
The Hacker News4d
Critical Versa Concerto Flaws Let Attackers Escape Docker and Compromise Hosts
Three critical Versa Concerto flaws disclosed after 90 days allow remote code execution via reverse proxy misconfigurations.
American Banker5d
How banks can fight the rising tide of data breaches in 2025
Threat actors using artificial intelligence and other tools are putting a greater strain on banks' cybersecurity systems, and ...