Google identified the first malicious AI use for a zero-day 2FA bypass in an open-source admin tool, accelerating threat ...

Exploitation of open-source tools allows attackers to maintain persistent access after initial social engineering, warn ...

Google's GTIG identified the first zero-day exploit developed with AI and stopped a mass exploitation event. The report documents state actors using AI for vulnerability research and autonomous ...

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...

A cybercriminal group came close to launching a mass attack earlier this year, armed with a software exploit that an AI model ...

Google says attackers are using AI for zero-day research, malware development, reconnaissance, and access to premium AI tools ...

Four research teams found the same confused deputy failure in Claude across three surfaces in 48 hours. This audit matrix ...

May the best coding AI win!

I stopped manually cleaning spreadsheets after Claude did it in minutes, and it's what it does better than any other AI.

In recent weeks, alarm bells have been ringing repeatedly over critical vulnerabilities in the Linux kernel. Why is that? Do we have AI to thank for these discoveries? And should we expect similar ...

Turla turns Kazuar into a 3-module P2P botnet, enabling stealthy C2, resilient tasking, and persistent access.

Researchers at Google Threat Intelligence Group (GTIG) say that a zero-day exploit targeting a popular open-source web ...