Decrypt

AI Is Helping Discover Tech Vulnerabilities—And Zcash Is Just the Latest Example

Frontier AI models have evolved into bug-finding tools, uncovering vulnerabilities across the tech world—and now in crypto ...

Mythos was the critical trigger for IBM's open-source cybersecurity push, Krishna says

IBM has signed Goldman Sachs, Morgan Stanley, JPMorgan and Bank of America onto its open-source cybersecurity effort called ...
The Next Web

An AI agent found 21 zero-days in FFmpeg for $1,000. Chrome just patched a record 429 bugs.

A startup's autonomous AI agent found 21 zero-days in FFmpeg for ~$1,000. Meanwhile Chrome 149 patched a record 429 vulnerabilities in a single release.
ZDNet

AI is getting scary good at finding hidden software bugs - even in decades-old code

AI is proving better than expected at finding old, obscure bugs. Unfortunately, AI is also good at finding bugs for hackers to exploit. In short, AI still isn't ready to replace programmers or ...
CSOonline

Cybersecurity in the age of instant software

As AI advances, the rise of instant, customized, and often ephemeral software solutions will alter the dynamics of vulnerability hunting and patching, and thus the battle between attackers and ...
Dark Reading

Flaw-Finding AI Assistants Face Criticism for Speed, Accuracy

Anthropic's announcement of limited research preview of Claude Code Security — a tool that reads code, finds vulnerabilities, and proposes fixes — has caused no small amount of turmoil in the ...
CSO Online

Project Glasswing has uncovered 10,000 vulnerabilities: Anthropic

This means organizations that still treat patching as a quarterly exercise are operating with materially more risk than they were even a short time ago, says an analyst.
Morningstar

Xint Code Demonstrates Human-like Discovery and Prioritization of Business Logic ...

Unlike traditional SAST, code scanners or pen testers, Xint Code uses multi-LLM reasoning and orchestration for human-like contextual understanding, identification and prioritization of hidden ...
SecurityWeek

Open Source DockSec Uses AI to Cut Through Vulnerability Noise in Docker Images

DockSec correlates findings from container security scanners and uses AI to generate remediation guidance and exact Dockerfile fixes.

IBM invests $5 billion to protect open-source software from AI threats, CEO Arvind Krishna ...

IBM is investing $5 billion in Project Lightwell, a cybersecurity initiative to shield open-source software from advanced AI threats. Driven by concerns over AI models like Anthropic's Mythos, the ...
Ars Technica

Mozilla: Anthropic’s Mythos found 271 security vulnerabilities in Firefox 150

Earlier this month, Anthropic said its Mythos Preview model was so good at finding cybersecurity vulnerabilities that the company was limiting its initial release to “a limited group of critical ...
TechRadar

Anthropic confirms it leaked 512,000 lines of Claude Code source code — spilling some of ...

Anthropic employee accidentally leaked Claude Code source via npm map file Leak exposed 1,900 TypeScript files with 500K+ lines of code, quickly mirrored on GitHub ...