Anthropic's Claude Code Security is available now after finding 500+ vulnerabilities: how security leaders should respond

Anthropic's Claude Opus 4.6 surfaced 500+ high-severity vulnerabilities that survived decades of expert review. Fifteen days later, they shipped Claude Code Security. Here's what reasoning-based ...
InfoWorld

8 vendors bringing AI to devsecops and application security

From autonomous vulnerability remediation to real-time scrutiny of AI-generated code, AI is impacting security at every stage of the software development process. At Black Hat USA 2025 and DEF CON 33, ...
SDxCentral

Orca Security Enhances Cloud-Native Application Protection by Revolutionizing Application Security (AppSec)

The Orca Cloud Security Platform bridges the gaps between cloud and application security with new Static Application Security Testing (SAST), OSS License Scanning, and AI-Driven remediation ...

Entire launches with $60M to build an AI-focused code management platform

Entire Inc., a startup led by former GitHub chief executive Thomas Dohmke, launched today with $60 million in funding.
Security Boulevard

OpenClaw Open Source AI Agent Application Attack Surface and Security Risk System Analysis

Background In early 2026, OpenClaw (formerly known as Clawdbot and Moltbot), an open-source autonomous AI agent project, quickly attracted global attention. As an automated intelligent application ...
CSOonline

Arnica’s real-time, code-risk scanning tools aim to secure supply chain

Software supply chain security provider Arnica has added new real-time scanning tools to its namesake code-security suite, including static application security testing (SAST), infrastructure as code ...
SiliconANGLE

Palo Alto Networks announces Cortex Cloud Application Security Posture Management

Palo Alto Networks Inc. kicked off the annual Black Hat USA security conference in Las Vegas this week with today’s announcement of its Cortex Cloud Application Security Posture Management solution.
VentureBeat

Trend Micro brings open source vulnerability data to security teams

Cybersecurity giant Trend Micro has announced a new software-as-a-service (SaaS) product that offers security teams “continuous insight” into open source vulnerabilities and compliance risks. Designed ...
Dark Reading

How to Reduce Code Risk Using Pipelineless Security

Secrets embedded in source code pose a risk to developers and the organizations they work for. Secrets can be used to take over both user and service accounts, which can lead to sensitive data ...
Computer Weekly

API management: Assessing reliability and security

Application programming interfaces (APIs) have had their status upgraded from the domain of programming tool to the proverbial icing on the cake to top a digitisation business plan. APIs allow ...
InfoWorld

VCS buyer’s guide: How version control systems are evolving for devops beyond Git

Version control is critical for managing changes to source code over time. Tools that manage changes to source code, programs, documents, or other collections of information are known by a variety of ...
CSOonline

Source code and vulnerability info stolen from F5 Networks

IT and security leaders should install latest patches from the application delivery and security vendor after suspected nation-state hack. CSOs with equipment from F5 Networks in their environment ...