Security vulnerabilities stories - Page 4

Google's GTIG reports 75 zero-day exploits in 2024, highlighting a rising threat to enterprise tech despite a slight overall decrease from 2023.

GitHub Copilot has exceeded 15 million users, growing rapidly as Microsoft advances its AI tools in software development and cloud services.

Diligent teams up with Cloudflare and Qualys to launch Cyber Risk Report, offering real-time threat insights for boards and executives on one platform.

Anetac launches Human Link Pro, unifying human and non-human identity management with AI to combat rising security risks amid workforce shifts globally.

BeyondTrust launches free Identity Security Risk Assessment, helping organisations identify and address vulnerabilities across cloud, hybrid, and on-premise environments.

Checkmarx integrates its Application Security Posture Management into IDEs, enhancing developer experience by streamlining vulnerability management and boosting AppSec efficiency.

Skyfire and Cequence Security partner to enable secure, compliant access and transactions for AI agents across digital services globally.

Qualys unveils Policy Audit to boost compliance efficiency, cut costs, and reduce risks amid rising regulatory demands and system complexities.

Datadog reveals updated DevSecOps report showing Java's vulnerabilities and announces Metaplane acquisition to boost data observability and AI monitoring.

Armis launches free Vulnerability Intelligence Database to help security teams anticipate and tackle cyber threats with real-time, AI-driven insights.

Perforce Software updates Puppet Enterprise Advanced to accelerate vulnerability fixes and boost collaboration amid rising cyber threats and AI-driven attacks.

Cycode launches AI Teammates and CI/MON runtime protection to enhance software supply chain security and threat detection in application security.

Tenable Research revealed a privilege escalation flaw in Google Cloud Composer, risking unauthorised access to key cloud resources before Google's fix.

Socket has acquired cybersecurity startup Coana to enhance its supply chain security platform, cutting false positives by up to 80% for faster threat remediation.

Lasso has unveiled its MCP Gateway, the first security tool tailored for Model Context Protocol, aiming to bolster safety in generative AI workflows.

Cobalt's 2025 State of Pentesting Report reveals that 31% of serious security vulnerabilities remain unaddressed, despite 81% of leaders' confidence in their security.

Microsoft's recent Patch Tuesday sparked scrutiny with a 40-minute delay in updates and notable vulnerabilities, including a critical zero-day in the CLFS Driver.

Research by CYFOX has uncovered critical vulnerabilities in smart TVs that threaten corporate networks, highlighting a broader industry security concern.

A recent cyber attack has compromised over 23,000 GitHub repositories, raising alarms over software supply chain security and the exploitation of trusted components.

Tenable Research has raised alarms over security vulnerabilities in the generative AI model DeepSeek R1, warning it could simplify malware creation.