Anthropic's new Claude Security tool scans your codebase for flaws - and helps you decide what to fix first

It uses Opus 4.7 to scan, validate, and generate patches, helping fix dangerous flaws before they can be exploited.
Communications of the ACM

Why Periodic Testing Fails Modern Apps

A 90-day testing cycle does not just fall short of that number. It runs straight into it. The reality is that modern ...
SecurityWeek

Fresh LiteLLM Vulnerability Exploited Shortly After Disclosure

Hackers rushed to target a critical LiteLLM SQL injection flaw to steal keys, credentials, and environment-variable ...
SecurityWeek

38 Vulnerabilities Found in OpenEMR Medical Software

Dozens of vulnerabilities were discovered recently in the open source electronic medical records platform OpenEMR.

Checkmarx confirms LAPSUS$ hackers leaked its stolen GitHub data

Application security company Checkmarx has confirmed that the LAPSUS$ threat group leaked data stolen from its private GitHub ...

Facial recognition data is a key to your identity – if stolen, you can’t just change the locks

You can change a stolen password or credit card, but you can’t reset your face when your biometric data is breached.

How Mythos’ Vulnerability Apocalypse Will Play Out

Two weeks in, Mythos' potential vulnerability apocalypse is still being figured out. What's likely to happen next and in the ...
Dark Reading

Glasswing Secured the Code. The Rest of Your Stack Is Still on You

Forgotten integrations, shadow IT, SaaS, and now shadow AI and agents are everywhere, and attackers don't need sophisticated ...
LinuxInsider

Percona, Chainguard Advance Secure-by-Default Open-Source Databases

Percona and Chainguard aim to cut CVE patching and reduce overhead with secure-by-default images for open-source databases.
Morning Overview on MSN

Security researchers warn Anthropic’s Mythos could accelerate hacking

When Anthropic quietly told a small group of cybersecurity firms in early April 2026 that it had built an AI tool capable of ...
SiliconANGLE

NIST shifts National Vulnerability Database to risk-based triage as CVE submissions hit record levels

The U.S. National Institute of Standards and Technology today announced an overhaul of how it processes cybersecurity vulnerabilities in its National Vulnerability Database . NIST is abandoning its ...