Search

blog.google › security

Rust in Android: move fast and fix things

Android Security Rust in Android: move fast and fix things Nov 13, 2025 · Jeff Vander Stoep Android Last year, we wrote about why a memory safety strategy that focuses on vulnerability prevention…

Nov 13, 2025 · Jeff Vander Stoep

Top stories

pcworld.com

Chrome 149 fixes 429 security flaws, the most ever in one update

1d ago

pcworld.com

Google just patched 150+ Chrome vulnerabilities, 22 of them critical

1w ago

kubernetes.io

Reconciling the Past: Correcting Records for Unfixed Kubernetes CVEs

1w ago

appleinsider.com

Previous OS updates contained security patches which have now been detailed by Apple

1w ago

about.gitlab.com › blog

3 GitLab features to level up DevSecOps workflows

…October 29, 2024 4 min read 3 GitLab features to level up DevSecOps workflows Fix broken pipelines faster, better understand security vulnerabilities, and filter out false positives with our latest platform improvements…

Oct 29, 2024 · Salman Ladha

wired.com › story

The AI Era Is Creating a Bug-Hunting Arms Race

…hard-won standards like 90-day disclosure deadlines (fixed windows between finding bugs and disclosing them publicly that often quicken patch releases). As security researcher Himanshu Anand wrote earlier this month, “The…

May 25, 2026 · Lily Hay Newman

neowin.net › news

Exchange Server has a "critical" security bug, but Microsoft does not have a proper fix yet

…Basically, there is a security vulnerability in Exchange Server 2016, 2019, and SE, which enables an attacker to execute arbitrary JavaScript code in the victim's browser context by sending them a…

May 16, 2026 · Usama Jawad

Discussions and forums

Hacker News · u/ggattip · 1d ago

Show HN: I benchmarked LLM agents on fixing real-world security vulnerabilities

I built a benchmark with 20 real CVEs across 18 Python projects (Pillow, GitPython, yt-dlp, urllib3, etc). I've run it over 5 LLM agents (3 OpenAI, 2 poolside) and 3 different prompts (full advisory, locate, diagnose) wi…

4 4

r/linux · u/we_are_mammals · 3w ago

Will the sudden flood of AI-discovered security fixes overwhelm distros like Debian that backport security fixes to old software versions?

If Firefox is any indication, the new AI discovers two years' worth of vulnerabilities in a short period of time. Firefox seems to be an early adopter of this technology, but we should see a huge flux of newly discovered…

r/selfhosted · u/0x3e4 · May 3, 2026

Vaultwarden 1.36.0 patches vulnerabilities

Security fixes This release contains security fixes for the following advisories. We strongly advice to update as soon as possible. SSO Login CSRF - GHSA-pfp2-jhgq-6hg5, GHSA-w6h6-8r66-hcv7 User/Organization Enumeration …

Hacker News · u/randersson1000 · Apr 22, 2026

Speed Matters: Why AI Software Vulnerability Exploitation is going be bad

I co-founded a successful security company close to the Mythos ecosystem and have spoken with participants in the know and I am deeply concerned. We, collectively, have answers for some but not all of the problems ahead …

13 5

r/cybersecurity · u/raptorhunter22 · 1w ago

7-Zip CVE-2026-48095: NTFS Heap Overflow Can Trigger Through Renamed Files

A new 7-Zip vulnerability, CVE-2026-48095, affects 7-Zip 26.00 and earlier and is fixed in 26.01. The attack surface: The malicious file does not necessarily need to look like an NTFS image. A crafted NTFS disk image can…

tweaktown.com › news › 110926 › …

Anthropic's Claude Mythos AI has discovered thousands of vulnerabilities in every OS and browser

…Anthropic's unreleased Claude Mythos AI excels at identifying critical vulnerabilities across major operating systems and browsers, posing significant cybersecurity risks. It's being deployed with top tech partners for defensive security…

Apr 8, 2026 · Kosta Andreadis

about.gitlab.com › blog

Agentic coding is only as good as its context

…For platform teams, context becomes even more crucial when security is invoked. Coding agents produce more code, faster. More code means more vulnerabilities introduced, more findings flagged by scanners, and more fix…

May 28, 2026 · Jessica Taylor

phoronix.com › news › X.Org-Server-21.1.22

X.Org Server 21.1.22 Released Due To Five New Security Vulnerabilities

X.Org Server 21.1.22 Released Due To Five New Security Vulnerabilities Written by Michael Larabel in X.Org on 14 April 2026 at 09:59 AM EDT. 62 Comments X…

Apr 14, 2026

bleepingcomputer.com › news › security

Ubiquiti patches three max severity UniFi OS vulnerabilities

…Secure Workload flaw gives Site Admin privileges Hackers bypass SonicWall VPN MFA due to incomplete patching Drupal critical update to fix bug with high exploitation risk Microsoft rejects critical Azure vulnerability report…

May 22, 2026 · Sergiu Gatlan

theregister.com › security › 2026 › …

Ransomware scum, other crims exploit 4 old Microsoft bugs

…CVE-2012-1854 , an insecure library loading vulnerability in Microsoft Visual Basic for Applications that allows RCE. Microsoft pushed a security fix for this one in July 2012, and then a second…

Apr 13, 2026 · Jessica Lyons

9to5mac.com › 2026 › 03 › …

Apple confirms today’s iOS and iPadOS updates fix Coruna exploit - 9to5Mac

…Now, Apple has published the security content for the updates, confirming that they address kernel and WebKit vulnerabilities associated with the Coruna exploit, and that they fix it on “devices that cannot…

Mar 12, 2026 · Marcus Mendes