Anthropic has launched Claude Code Security, an AI vulnerability scanner that found 500+ undetected bugs, plus desktop automation and GitHub PR auto-merge.

Vercel has launched "react-best-practices," an open-source repository featuring 40+ performance optimization rules for React and Next.js apps. Tailored for AI coding agents yet valuable for developers ...

A developer-targeting campaign leveraged malicious Next.js repositories to trigger a covert RCE-to-C2 chain through standard ...

Inspired by the Japanese art of kirigami, an MIT team has designed a technique that could transform flat panels into medical devices, habitats, and other objects without the use of tools.

Mobile platforms operate under fundamentally different trust assumptions than we relied on for web security. Your mobile ...

The Microsoft Defender team has discovered a coordinated campaign targeting software developers through malicious repositories posing as legitimate Next.js projects and technical assessment materials, ...

AI agents have moved from experimental to operational. Now security teams must verify agent identity, intent, and trust before automation becomes exploitation.

Introduction: The Evolution of Browser Security For two decades, the web browser served as the primary security frontier for digital interactions. The logic was clear: the browser represented the lens ...

Objective To assess whether post-authorisation studies registered with the European Medicines Agency (EMA) adhere to legislation and recommendations to publicly post study protocols and results.

Zero-day exploits, AI-driven Android malware, firmware backdoors, password manager trust gaps, rising DDoS define this week’s critical cyber threats.