5,000 vibe-coded apps just proved shadow AI is the new S3 bucket crisis

RedAccess found 380,000 exposed vibe-coded apps — roughly 5,000 contained sensitive corporate data including patient records ...

AWS Rex Is a Big Step for Agentic AI Security, But Not the Final Layer

AWS Rex adds runtime guardrails for agentic AI, but security leaders still need data-layer controls to satisfy compliance and ...

Microsoft: Windows 11 Still Runs on 1990s Code

Microsoft says Win32 remains central to Windows decades later, showing how compatibility still shapes Windows 11 and ...

OpenAI introduces GPT‑5.5‑Cyber for high-impact cybersecurity research

GPT‑5.5‑Cyber, as the model is called, made its debut on Thursday. It’s available in limited preview through a program called ...

Anthropic's Mythos set off a cybersecurity 'hysteria.' Experts say the threat was already here

The arrival of Anthropic's Mythos jolted banks, software giants and governments into reckoning with a new era of cyber ...

OpenAI Expands Cyber-Focused GPT-5.5 Access As AI Security Race Intensifies

OpenAI is widening access to a more permissive version of its GPT-5.5 artificial intelligence model for vetted cybersecurity ...

Who Is ShinyHunters? Hacker Group Claiming Canvas, Vimeo, Pornhub Attacks

The group has also been linked with attacks on Ticketmaster, Rockstar Games, Salesforce, and Australian flag carrier Qantas.
Security Boulevard

Why the approaching flood of vulnerabilities changes everything — and what to do about it

AI-driven discovery, NIST’s retreat from universal enrichment, and the end of “good enough” vulnerability managementKey takeawaysAI-driven discovery tools are accelerating CVE volume, resulting in an ...
eWeek

Vibe Coding Cheat Sheet: Tools, Prompts, Security Tips, and More

This vibe coding cheat sheet explains how plain-language prompts can build apps fast, plus the planning, testing, and ...
The Next Web

The AI industry’s model and agent skill repositories are full of malware. The infrastructure built to accelerate development is now the vector for compromising it.

Hugging Face hosts 352,000 unsafe model issues. ClawHub's registry contains 341 malicious AI agent skills. The AI supply chain is now the most attractive target in software security.
Nextgov

Pentagon will ‘never again’ rely on a single AI provider, official says

Defense Under Secretary for Research and Engineering Emil Michael said new agreements with Big Tech companies are a ...

Trump jumps from 'anything goes' to 'strict regulation' AI policy

While Trump has yet to issue a new AI Executive Order, we know his crew is forming an AI working group of tech execs and ...