Microsoft Azure CTO says Claude found vulns in Apple II code
…The fix would be to check the carry flag, which is set if the line is not found, and branch to an error. The existence of the vulnerability in Apple II type…
Search
All sources
pcworld.com
16
bleepingcomputer.com
15
phoronix.com
14
theregister.com
9
github.blog
8
about.gitlab.com
7
theverge.com
5
androidauthority.com
5
neowin.net
4
tweaktown.com
4
appleinsider.com
3
techradar.com
3
Videos
More videos
This Linux Bug Gives Attackers Root
Security-driven Rapid Release - Pwn2Own Documentary (Part 4)
The World's Hardest Hacking Competition - Pwn2Own Documentary (Part 1)
I finally found a use case for OpenClaw…
A Vulnerability to Hack The World - CVE-2023-4863
Millions of WordPress sites just got hacked... again
Top stories
Google just patched 150+ Chrome vulnerabilities, 22 of them critical
1w agoReconciling the Past: Correcting Records for Unfixed Kubernetes CVEs
1w agoPrevious OS updates contained security patches which have now been detailed by Apple
1w agoFreeBSD 15.1-RC1 Released: Fixes With Now Seeing More AI-Discovered Security Issues
1w agoLinux Kernel Adds Documentation For What Qualifies As A Security Bug, Responsible AI Use
…Linux 7.1-rc4 Released With Many Fixes, New Documentation For Security/AI Topics Linux 7.0.8 Released & LTS Kernels Updated For ssh-keysign-pwn Linux's Latest Vulnerability Allows Reading…
Application security Archives
…critical vulnerabilities first. How we’re making security easier for the average developer Security should be native to your workflow, not a painful separate process. Found means fixed: Reduce security debt at…
Instagram accounts continue to be hacked as hackers claim Meta only removed a UI button
…Some developers claim the company only removed the frontend “Get Support” button, leaving API endpoints vulnerable. The security lapse follows Meta’s massive corporate layoffs and reassignments to AI initiatives, which reportedly…
Discussions and forums
Show HN: I benchmarked LLM agents on fixing real-world security vulnerabilities
I built a benchmark with 20 real CVEs across 18 Python projects (Pillow, GitPython, yt-dlp, urllib3, etc). I've run it over 5 LLM agents (3 OpenAI, 2 poolside) and 3 different prompts (full advisory, locate, diagnose) wi…
4
4
Will the sudden flood of AI-discovered security fixes overwhelm distros like Debian that backport security fixes to old software versions?
If Firefox is any indication, the new AI discovers two years' worth of vulnerabilities in a short period of time. Firefox seems to be an early adopter of this technology, but we should see a huge flux of newly discovered…
Vaultwarden 1.36.0 patches vulnerabilities
Security fixes This release contains security fixes for the following advisories. We strongly advice to update as soon as possible. SSO Login CSRF - GHSA-pfp2-jhgq-6hg5, GHSA-w6h6-8r66-hcv7 User/Organization Enumeration …
Speed Matters: Why AI Software Vulnerability Exploitation is going be bad
I co-founded a successful security company close to the Mythos ecosystem and have spoken with participants in the know and I am deeply concerned. We, collectively, have answers for some but not all of the problems ahead …
13
5
7-Zip CVE-2026-48095: NTFS Heap Overflow Can Trigger Through Renamed Files
A new 7-Zip vulnerability, CVE-2026-48095, affects 7-Zip 26.00 and earlier and is fixed in 26.01. The attack surface: The malicious file does not necessarily need to look like an NTFS image. A crafted NTFS disk image can…
Microsoft fixes Remote Desktop bug in April's Windows 11 update
…While these updates were intended to address various security vulnerabilities and introduce improvements, they're also causing display errors for some users. Security feature with side effects With KB5083769, Microsoft introduced additional…
Microsoft shares mitigation for YellowKey Windows zero-day
…aware of a security feature bypass vulnerability in Windows publicly referred to as "YellowKey". The proof of concept for this vulnerability has been made public violating coordinated vulnerability best practices," Microsoft said…
Dependency scanning with GitHub MCP Server is in public preview - GitHub Changelog
…Install the advanced-security plugin for GitHub Copilot for a more tailored dependency vulnerability scanning experience. For example: In GitHub Copilot CLI , run /plugin install advanced-security@copilot-plugins . In Visual Studio…
Linux Sound Subsystem Also Seeing Many Fixes Driven By AI/LLMs
…3 Comments It's not only the Linux networking subsystem where many fixes have been appearing -- including several notable security fixes for local privilege escalation issues -- leading to "craziness" from AI / LLMs…
The global cybersecurity gap deepens as AI-powered attacks surge
…Now, when a software firm releases a security patch, “AI can reverse-engineer that patch, identify the vulnerability it fixes, and generate a working weaponized exploit in minutes,” wrote Sergej Epp, founder…
How Cloudflare responded to the “Copy Fail” Linux vulnerability
…fix ( commit a664bf3d603d ) reverts the 2017 in-place optimization, removing the exploit. How we responded When the vulnerability was disclosed, many workstreams started in parallel: Mapping the blast radius: Our security team…