Critical vulnerability in Ruby's standard library ERB:attackers can execute code

The Ruby vulnerability is not easy to exploit, but allows an attacker to read sensitive data, start code, and install ...

How Mythos’ Vulnerability Apocalypse Will Play Out

Two weeks in, Mythos' potential vulnerability apocalypse is still being figured out. What's likely to happen next and in the ...
The Hacker News

Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain

Cybersecurity researchers have discovered a critical "by design" weakness in the Model Context Protocol's (MCP) architecture ...

Malicious code vulnerability with maximum rating threatens Firebird

The open-source database management system Firebird is vulnerable in several ways. It can allow malicious code onto systems.
The Hacker News

Cohere AI Terrarium Sandbox Flaw Enables Root Code Execution, Container Escape

CVE-2026-5752 CVSS 9.3 flaw in Terrarium enables root code execution via Pyodide prototype traversal, risking container ...
CSO Online

April Patch Tuesday roundup: Zero day vulnerabilities and critical bugs

This month’s threat landscape is ‘defined by immediate, real-world exploitation rather than just theoretical vulnerabilities, ...

CrowdStrike unveils coalition to tackle AI-driven software vulnerabilities

CrowdStrike (NASDAQ:CRWD) announced the launch of Project QuiltWorks, a new coalition bringing together technology and ...

ProjectDiscovery's "2026 AI Coding Impact Report" Reveals AI-Generated Code Is Outpacing Security Teams' Ability to Keep Up

ProjectDiscovery, a leader in vulnerability detection and autonomous security testing, today released findings from its "2026 ...
Security Boulevard

500,000 Vulnerabilities, 14 That Matter: How Exploit Chain Analysis Cuts Through the Noise

When 500,000 Findings Hide 14 Real Threats Modern enterprises ingest vulnerability data from dozens of sources: endpoint ...

Researchers warn Microsoft Defender vulnerability is already being exploited

A security researcher known as Chaotic Eclipse recently disclosed a vulnerability dubbed "Red Sun" affecting Microsoft ...

India’s open-code approach faces an AI stress test as new tools like Anthropic's Mythos expose hidden flaws

Anthropic, OpenAI and others have developed AI tools that can spot hidden gaps in software for fixing. India’s use of ...

Anyone can code with AI. But it might come with a hidden cost.

Apps and platforms allow novice and veteran coders to generate more code more easily, presenting significant quality and security tradeoffs.