Threat actors abused trusted Trivy distribution channels to inject credential‑stealing malware into CI/CD pipelines worldwide ...

RSAC 2026 Thousands of organizations' cloud environments have been infected with secret-stealing malware as a result of the Trivy supply-chain attack last week, and now the crims that compromised the ...

The Allen Institute for AI is releasing MolmoWeb, an open-source web agent that navigates browsers by interpreting ...

Aqua Security is scrambling to recover from supply chain attacks that first compromised the vendor's Trivy vulnerability ...

Aqua Security’s Trivy vulnerability scanner was compromised in a supply chain attack, leading to information-stealing ...

Attackers have hijacked 75 of 76 GitHub Actions tags for Aqua Security's Trivy scanner, distributing credential-stealing ...

A newly disclosed vulnerability dubbed 'PolyShell' affects all Magento Open Source and Adobe Commerce stable version 2 ...

OpenAI launches Codex Security, an AI agent-vulnerability scanner that helps developers find and fix high-impact holes in their code.

The new AI-driven AppSec tool reportedly uncovered hundreds of critical flaws and thousands of high-severity issues during early testing.

OpenAI has introduced Codex Security, a new application security agent designed to identify complex vulnerabilities in software systems. The tool is currently rolling out in research preview for ...

Artificial intelligence designed to audit software security has identified 22 vulnerabilities in Mozilla’s Firefox browser within a two-week testing period, highlighting the growing role of automated ...

In a recent security partnership with Mozilla, Anthropic found 22 separate vulnerabilities in Firefox — 14 of them classified as “high-severity.” Most of the bugs have been fixed in Firefox 148 (the ...