Infosecurity Magazine

Zero-Click FreeScout Bug Enables Remote Code Execution

Ox Security warns that Mail2Shell could enable threat actors to hijack FreeScout systems without user interaction ...
WinBuzzer

Anthropic Debuts Claude Code Security, JFrog Falls 25%

Anthropic has launched Claude Code Security, an AI vulnerability scanner that found 500+ undetected bugs, plus desktop automation and GitHub PR auto-merge.
Krebs on Security

18 Popular Code Packages Hacked, Rigged to Steal Crypto

At least 18 popular JavaScript code packages that are collectively downloaded more than two billion times each week were briefly compromised with malicious software today, after a developer involved ...
Infosecurity-magazine.com

Popular LLMs Found to Produce Vulnerable Code by Default

Some of the world’s most popular large language models (LLMs) are producing insecure code by default, according to a new analysis by Backslash Security. The findings demonstrate the security risks ...
SiliconANGLE

HackerOne advances offensive security with agentic AI system, general availability of HackerOne Code

Offensive security solutions firm HackerOne Inc. today announced the expansion of its artificial intelligence-driven offensive security platform. The updates includes the evolution of its Hai AI ...
Business Wire

AI-Generated Code Poses Major Security Risks in Nearly Half of All Development Tasks, Veracode Research Reveals

BURLINGTON, Mass.--(BUSINESS WIRE)--Veracode, a global leader in application risk management, today unveiled its 2025 GenAI Code Security Report, revealing critical security flaws in AI-generated code ...
InfoWorld

How GlassWorm wormed its way back into developers’ code — and what it says about open source security

Pervasive, evasive malware thought to have been eliminated has wormed its way back into development environments. Just a little over two weeks after GlassWorm was declared “fully contained and closed” ...