60 stories tagged with #vulnerabilities, in publish-time order across the WeSearch catalog. Tag pages update as new stories ingest.
⌘ RSS feed for this tag → or search "Vulnerabilities"
Feds announce several election-fraud investigations in California while revealing ‘serious structural vulnerabilities’
Los Angeles' top federal prosecutor announced his office is pursuing several election fraud investigations with the FBI as questions swirl over California's sluggish vote count.…
Found Security Vulnerabilities in my university website
AI Found 3,900 Critical Open Source Bugs. IBM Is Paying $5B to Fix Them
40,000 CVEs published in 2024. 59,000 projected by 2026. IBM and Red Hat think they have a $5 billion answer to the open source security crisis. Here is what they are actually buil…
Microsoft is threatening legal action for disclosing exploits
What qualifies as “responsible disclosure” though?…
Coordinated, Until It Isn't: Moksha's 89-vuln XAPI drop
Everyone has a take on Moksha's 89-vuln XAPI drop. Almost everyone misses the same thing: it wasn't one decision, it was four: go public, go Day-0, withhold patches from Citrix, le…
OWASP Vulnerableapp
OWASP VulnerableApp Project: Break it. Scan it. Reproduce it. Benchmark against it. Improve it. - SasanLabs/VulnerableApp…
Microsoft: Protecting customers through Coordinated Vulnerability Disclosure
CVE-Bench: testing LLM agents on real-world vulnerability patches
Benchmarking LLMs on real-world CVE patching…
Microsoft under fire for threatening security researcher with criminal investigation
A public spat between Microsoft and an independent security researcher reopens a long-running debate over who is responsible for securing software.…
Which LLM is the best at finding real vulnerabilities?
A few weeks ago, I built a framework that allows me to automatically decompile and apps, binaries and audit code.…
Google just patched 150+ Chrome vulnerabilities, 22 of them critical
Google patched 151 security flaws in Chrome 148, including 22 critical ones. None are being exploited yet, but update now just in case.…
This Week in Security: Ubiquiti Fixes, and FreeBSD Joins the Club you Don’t Want to Join
Ubiquiti released a new security bulletin detailing fixes for six security issues, including one rated 9.1 (critical) and one scoring a perfect 10.0 on the CVE risk scale. The vuln…
We built 24 apps with AI. Three platforms. 561 vulnerabilities.
The experiment Most of what's now being built on top of AI gets called vibe coding. Type...…
An AI Audit of FreeBSD
15 kernel bugs, including 3 RCEs, 5 LPEs, and 1 bhyve escape.…
Dirty Frag: getting root after AF_ALG was blocked and public poc failed
a public Dirty Frag PoC failed, so the server looked safe. a cheap DeepSeek-V4-Flash feedback loop found the missed path -> fcrypt mismatch, nscd cache, and root in ~90 minutes.…
You vibe code. Aigent.ly handles the vulnerabilities.
I kept seeing vibe coders ship vulnerabilities they didn't write AI coding tools are incredible....…
173 Undocumented Security Findings in TerraGoat: What Standard IaC Scanners Miss (and Why Post-Quantum Matters)
TerraGoat is the canonical vulnerable Terraform repository maintained by Bridgecrew (now Prisma...…
Microsoft Threatens Researcher Over Bug Reports, Triggers Cybersecurity Uproar
Microsoft says it will coordinate 'as needed with law enforcement' after a disgruntled researcher exposed Windows bugs without proper coordination.…
Disgruntled 0-day hunter 'humiliated' by Microsoft pledges 'bone shattering drop' as Redmond calls cops
Six 0-days, three under active exploitation, more to come on July 14?…
ECB vice president flags energy shock risks as euro area financial vulnerabilities deepen
ECB Vice President Luis de Guindos warns energy supply shock poses dual inflation and growth risks as the May 2026 Financial Stability Review omits crypto.…
India's cyber agency sets clock at 12 hours to tackle exploited bugs as AI turns up the heat
CERT-In says internet-facing or critical systems should be patched, mitigated, or cut off within half a day where feasible…
A Flask Vulnerability Walkthrough
Machine Problem 3 Group Members: Deen, Ligero, Torres Web applications, even simple ones, can carry...…
Iran war fallout amplifying Europe’s financial vulnerabilities, ECB warns
Microsoft Edge Multiple Vulnerabilities
Multiple vulnerabilities were identified in Microsoft Edge. A remote attacker could exploit some of these vulnerabilities to trigger remote code execution, denial of service condit…
Anthropic releases security-guidance plugin for Claude Code to catch vulnerabilities in real time
Anthropic's new security-guidance plugin for Claude Code flags 25 dangerous code patterns in real time, letting developers fix vulnerabilities without leaving their terminal.…
AI eyes scanning for bugs create a worrisome Linux security trend
Dirty Frag, Copy Fail, and Fragesia show the new reality…
‘No security breach’: CBSE clarifies after Class 12 student claims ‘vulnerabilities’ in OSM portal
CBSE clarified that the portal used for evaluation answer sheets has a different URL than the one visible on the teenager's screenshots. | India News…
Critical vulnerabilities left government systems, sensitive data, open to cyberattacks during war
Englman: Israel must be ready for Iranian cyber threats; audit finds failures in Foreign Min. systems, Housing Min. databases, remote-work security, digital services.…
Stenberg: The pressure
Curl maintainer Daniel Stenberg writes about the stress of keeping up with the current flood of [...]…
Desktop Monitoring and Notifications for CISA KEV
Monitors the CISA KEV catalog for changes and alerts you via desktop notification. - quantumcore/kev_monitor…
Anthropic’s Mythos AI model detects 23,000 vulnerabilities across 1,000 open source projects
Anthropic's Claude Mythos Preview found 23,000 potential vulnerabilities in 1,000 open source projects, with over 1,000 confirmed as critical severity flaws.…
HT interview: CBT can eliminate 95% vulnerabilities in NEET exam, says Bansal
Computer-based testing (CBT) can eliminate nearly 95% of vulnerabilities that allow paper leaks, and students will see “fundamental shifts” in the way the National Testing Agency (…
Vulnerability report written by AI hacker agent
Our AI Hacker found this, fixed it, and then (bragged) wrote about it: one endpoint, leaking tech stack info, whispering all its secrets to anyone who knew how to listen!…
How to scan for vulnerabilities with GitHub Security Lab's AI-powered framework
GitHub Security Lab Taskflow Agent is very effective at finding Auth Bypasses, IDORs, Token Leaks, and other high-impact vulnerabilities.…
'After one month, most partners have each found hundreds of critical- or high-severity vulnerabilities': Anthropic claims Mythos has found over ten thousand major security vulnerabilities across 'the most systemically important software in the world'
Anthropic illustrates the first months of Mythos Preview, saying it discovered thousands of critical and high-severity bugs.…
AI now finds software vulnerabilities faster than they get patched
AI made vulnerability discovery cheap enough to break the disclosure-and-patch system that fixes software. At the same time, the developer workstation became the enterprise's softe…
Most ransomware attacks are opportunistic. Here’s how you can stop attackers
Ransomware thrives on weak cyber hygiene gaps…
The AI Era Is Creating a Bug Hunting Arms Race
As attackers ramp up their AI exploit development, the search for software vulnerabilities is changing rapidly.…
The Three-Body Problem: AI Code, Supply Chain Attacks, and the Talent Exodus
In physics, the three-body problem describes a system where three objects interact gravitationally in...…
Finding Security Bugs in OSS with LLMs on a Budget
Nicholas Carlini used Claude to find CVEs by scanning every file in a repo. Here's how to reproduce most of the benefit for under $20 using LLM-guided triage.…
Anthropic to release Mythos-class models to the public
AI flaw-finder still under lock and key for now while company figures out guardrails, but extends access to more users including governments…
AI-Discovered Vulnerabilities Need A Triage Queue, Not A Panic Channel
Originally published on TechSaaS Cloud Originally published on TechSaaS Cloud ...…
I Scanned 1 Million AI Services. Here's What Worries Me More Than the Vulnerabilities
Your error rate just spiked 40%. Three weeks of debugging, two engineers on call rotation, and the...…
How My minimal, memory-safe Go rsync steers clear of vulnerabilities
Back in January 2025, multiple different security researchers published a total of 6 security vulnerabilities in rsync, some of which allow arbitrary code execution and file leaks,…
New Zealand at wild frontier of AI superhacking
NZ's National Cyber Security Centre warns organisations to get ready for 'a significant increase in vulnerabilities and incidents'.…
¿Qué significan esas letras del CVSS? Guía para entenderlo de una vez
Cada vez que sale un CVE importante, alguien pega el vector CVSS en el chat del equipo y todos hacen...…
Anthropic’s Project Glasswing uncovers over 10,000 software vulnerabilities using AI
Anthropic's Project Glasswing used Claude Mythos Preview AI to find over 10,000 critical software vulnerabilities, including decades-old zero-day flaws.…
Anthropic’s Project Glasswing uncovers over 10,000 software vulnerabilities using Claude AI
Anthropic's Project Glasswing used its Claude Mythos Preview AI to find over 10,000 critical software vulnerabilities, including decades-old zero-days, in just one month.…
Anthropic says Mythos has already found more than 10,000 vulnerabilities
Anthropic says Mythos has already found more than 10,000 vulnerabilities
Anthropic's coordinated vulnerability disclosure dashboard
Hardening against future module security issues with ModuleJail
Your Linux server may be carrying kernel code for hardware, filesystems, cryptographic interfaces, and network features it will never use.…
We audited 12K n8n templates: most have critical vulnerabilities
Anthropic says Mythos has already found more than 10,000 vulnerabilities
Anthropic has published an initial update about Project Glasswing, which it says has helped partners find bugs high and critical in severity.…
Claude Mythos Preview Uncovers 10k High-Risk Software Vulnerabilities
Anthropic said 50 partners using Claude Mythos Preview uncovered over 10,000 critical software vulnerabilities, exposing a growing cybersecurity patching challenge.…
Mitigated Vulnerabilities by Vendor as Feed
Why your vulnerability dashboard is lying to you (and how to fix it)
You open your vulnerability dashboard on a Monday morning and see 47 critical CVEs across 12 assets....…
Deepsec: The security harness for finding vulnerabilities in your codebase
Today we're open sourcing deepsec, an AI security harness that runs on your infrastructure, with your keys, against your code.…
Project Glasswing identifies over 10,000 critical vulnerabilities in first month using AI
Anthropic's Project Glasswing used AI to find over 10,000 critical software vulnerabilities in one month, backed by Apple, Microsoft, Google, and AWS.…
Anthropic says Claude Mythos Preview has been used to find more than 10,000 high- or critical-severity vulnerabilities since the launch of Project Glasswing (Anthropic)
Anthropic : Anthropic says Claude Mythos Preview has been used to find more than 10,000 high- or critical-severity vulnerabilities since the launch of Project Glasswing — Last mont…