Socket Raises $60M as AI Code Creates Supply Chain Crisis
Socket hit a $1B valuation blocking 1,000+ supply chain attacks weekly. Here’s why AI coding tools are the new attack surface — and ...
Google API Keys Active 23 Minutes After Deletion — Won’t Fix
Deleted Google API keys stay active up to 23 minutes. Google closed the report as ...
Microsoft Defender CVE-2026-41091: Patch Now or Lose SYSTEM
CVE-2026-41091 and CVE-2026-45498 actively exploited in the wild. Check your Defender engine version now — ...
Semantic Kernel CVE-2026-25592 & CVE-2026-26030: Patch Now
Microsoft disclosed two critical Semantic Kernel RCE flaws on May 7. Learn how prompt injection ...
Mini Shai-Hulud Hits @antv npm: 16M Downloads Poisoned
TeamPCP’s Mini Shai-Hulud worm poisoned 637 npm packages across the @antv ecosystem on May 19. ...
Flipper One Arrives: Pocket Linux Network Security Tool
Flipper One is official: RK3576, 8GB RAM, Wi-Fi 6E, 5G M.2, built-in AI accelerator in a pocket device. Here is what security researchers ...
Docker AI Governance: Secure AI Agents at Runtime
Docker AI Governance enforces runtime-level policy across network, filesystem, credentials, and MCP tools — so ...
Claude Mythos Found Zero-Days in Every OS — Act Now
Anthropic’s Claude Mythos Preview found thousands of zero-days across every major OS and browser. Here’s ...
Microsoft RAMPART & Clarity: Secure AI Agents Now
Microsoft open-sourced RAMPART and Clarity on May 20, 2026 — pytest-native tools that add security ...
AI Slop Is Killing Bug Bounty Programs — Act Now
cURL ended its bug bounty. Nextcloud followed. Linus Torvalds says Linux security lists are unmanageable. ...