Three AI coding agents leaked secrets through a single prompt injection. One vendor's system card predicted it

A prompt injection attack hit Claude Code, Gemini CLI, and Copilot simultaneously. Here's what all three system cards reveal ...
The Next Web

Lovable left thousands of projects exposed for 48 days, and the vibe coding security crisis is only getting worse

Lovable's API exposed source code and database credentials for 48 days after the company closed a bug report. Up to 62% of AI ...

Rentec Direct Launches Open API to Power Automated, AI-Driven Property Management

Rentec Direct, an industry-leading property management software platform serving more than 18,000 landlords and property managers, has launched an Open API, now available to clients at no additional ...

Postman Announces Collaboration with Microsoft to Expand AI Model Choice, Accelerate Developer Workflows, and Unify API Governance

Postman, a leading API platform, today announced a collaboration with Microsoft that expands AI model choice in Postman's Agent Mode, deepens integration across the Microsoft developer ecosystem ...

The AI governance mirage: Why 72% of enterprises don’t have the control and security they think they do

VentureBeat research finds 72% of enterprises are running multiple "primary" AI platforms with no clear owner — creating ...
SecurityWeek

Progress Patches Multiple Vulnerabilities in MOVEit WAF, LoadMaster

The security defects could be exploited for remote code execution, OS command injection, and WAF detection bypass.
Security Boulevard

Breaking Into IAM: How to Pivot Your Developer Career Toward Security

Learn how developers can pivot into IAM security, build in-demand skills, and transition into a rewarding cybersecurity career path.

CISA flags new SD-WAN flaw as actively exploited in attacks

CISA has given U.S. government agencies four days to secure their systems against another Catalyst SD-WAN Manager ...

Main themes from MCP Dev Summit

Late last year, social media debated whether MCP is dead because applications can use a command line interface (CLI) instead ...

OpenAI’s New GPT-5.4-Cyber Raises The Stakes For AI And Security

Described by OpenAI as a new model tuned for defensive cybersecurity tasks, GPT-5.4-Cyber is being offered first to vetted ...
Microsoft

Detection strategies across cloud and identities against infiltrating IT workers

The shift to remote and hybrid work since the pandemic expanded global hiring and accelerated digital onboarding, increasing ...
THE Journal

Anthropic Intros Opus 4.7 AI Model, Focusing on Coding, Visual Tasks, and Cybersecurity Guardrails

Anthropic has unveiled Claude Opus 4.7, an updated large language model that it says outperforms its predecessor on software engineering tasks, image analysis, and multi-step autonomous work.