Top 10 threats for 2030, End-of-life containers can mean 400+ CVEs per year, A review of zero-day in-the-wild exploits, and more!
xz/liblzma backdoor, PyPi suspends user registrations, OSV-Scanner offers guided remediation, and Chief AI Officers
Semgrep Assistant, GitHub Copilot, Active Exploitation Targeting the Ray AI Framework, Stay Safe from Repo-Jacking, and more!
Manager admits to SIM Swapping, GitGuarding State of Secrets, Comparing Dependabot/Semgrep/Snyk
Ex-Google Software Engineer Charged, Secure Software Development Attestation Form, NVD vulnerability reviews on pause
DevSecOps Automation Matrix, Cloudflare's Firewall for AI, $22M Ransomware Payment, Waymo approved in Los Angeles
Measuring security debt, Google is 'absurdly woke', Wyze home security customers seeing wrong footage, and more!
Recognizing My Dream for Perpetual Learning
LLMs are hackers and Ransomware groups under attack!
Temu Suspicion, AI Threat Model, Flipper Zeros Ban, OpenSSF Securing Software Repositories
A global overview of vulnerability databases and disclosure practices
Deepfake video conference, Vision Pro kernel vulnerability, Ivanti under active exploit