SecurityWeek

Critical Marimo Flaw Exploited Hours After Public Disclosure

A threat actor started exploiting CVE-2026-39987, an unauthenticated RCE vulnerability in Marimo, nine hours after public disclosure.
WinBuzzer

OpenAI Halves ChatGPT Pro Price to $100, Targeting Claude Code

OpenAI has launched a $100-per-month ChatGPT Pro plan with 5x Codex usage, directly challenging Anthropic's Claude Code at ...

Cloud Storage Security Announces the Official Launch of DataDefender(TM), a Novel DSPM Platform Focused on Data Stored in the Cloud

Prevent unintended exposure of sensitive data stored in the cloud, from innocent misconfigurations and internal saboteurs, to thwarting the most sophisticated malicious attacks. ROCHESTER, N.Y., April ...
Dark Reading

'BlueHammer' Windows Zero-Day Exploit Signals Microsoft Bug Disclosure Issues

Chaotic Eclipse' released a PoC exploit for a zero-day flaw that allows for system takeover by a local user, citing an ...
College of Computing - Georgia Tech

Bad Vibes: AI-Generated Code is Vulnerable, Researchers Warn

Of the 74 confirmed cases uncovered so far by the tool, 14 are critical risks, and 25 are high. These vulnerabilities include ...

Tame your AI gremlins before the chaos becomes permanent

AI agents are moving fast, but without clear identity and control, they become chaos machines.

Claude Code’s thinking depth dropped 67%: Here’s what Anthropic actually changed and how to fix it

Have the past few weeks of using Claude Code made you want to switch to ChatGPT or Codex? If so, then you may be right in ...

New framework lets AI agents rewrite their own skills without retraining the underlying model

Memento-Skills lets AI agents rewrite their own skills using reinforcement learning, hitting 80% task success vs. 50% for ...

GitButler raises $17M to simplify Git workflows for developers

Developer workflow startup GitButler Inc. revealed today that it had raised $17 million in new funding to accelerate product ...
Virtualization Review

Expert Consultant Details How to Secure the Machine Identity Attack Surface

Sergey Chubarov explained how unmanaged non-human identities such as service accounts, API keys and tokens can become a major attack vector and outlined practical steps to improve visibility, ...