InfoQ

Microsoft Brings AI-Powered Vulnerability Remediation to Azure DevOps with Copilot Autofix

Microsoft has announced the limited public preview of Copilot Autofix for GitHub Advanced Security for Azure DevOps, ...

The attack that hijacked Claude Code came through Sentry. Datadog, PagerDuty, and Jira have the same exposure.

Tenet Security hijacked Claude Code in 85% of tests via a fake Sentry error — no stolen credentials, no alerts. Datadog and ...
The Currency Analytics

Qihoo 360 and Z.ai Both Launch AI Vulnerability Tools With Opposite Strategies

Qihoo 360 dropped a new AI tool this week built to hunt for software vulnerabilities. Same week, Z.ai went a different ...
winbuzzer.com

GLM-5.2 Tops Claude Code in Semgrep IDOR Benchmark

GLM-5.2, Z.ai’s open-weight model, has reached 39% F1 on Semgrep’s IDOR benchmark, beating Anthropic’s Claude Code coding assistant in the prompt-only lane. Claude Code scored 37% F1 with Opus 4.6 and ...
Tech Times

China Builds AI Vulnerability Scanner to Counter Mythos: Every Zero-Day Goes to Beijing by Law

China AI vulnerability scanner Tulongfeng was unveiled June 28 by sanctioned Qihoo 360 at ISC.AI 2026 using a multi-agent ...
CoinTelegraph

Can AI drain DeFi? Separating Claude Mythos hype from reality

Claude Mythos has raised concerns about AI-driven attacks on DeFi protocols. However, the same AI tools are also available to security teams, not just attackers. When Anthropic introduced Claude ...

IBM and Red Hat partner with Deloitte to fix open-source vulnerabilities

Deloitte Touche Tohmatsu Ltd. is joining an initiative that IBM Corp. and its Red Hat unit launched in May to fix open-source ...

AI Is Flooding Security Teams With Findings—That Doesn’t Mean They’re Safer

Faster does not always mean safer, and finding more vulnerabilities is not the same thing as reducing meaningful exposure.
TMCnet

IBM, Red Hat, and Deloitte Announce Lightwell Collaboration to Help Strengthen Open Source Software Supply Chain Trust

Deloitte, IBM, and Red Hat today announced a collaboration to help protect the software supply chain against increasingly automated cyber threats. Deloitte joins the initiative as an integration ...
Dark Reading

In Less Than 24 Hours, Attackers Weaponize Cisco CUCM Flaw

The flaw enables server-side request forgery (SSRF) and escalates privileges to root, impacting Cisco Unified CM and Unified ...
Infosecurity Magazine

Trust in Automated AI Vulnerability Scanning Collapses to 9%, New Study Finds

Cobalt study finds 20-percentage-point drop in number of organizations relying solely on AI automation for testing ...

Frontier AI is rewriting the economics of software supply chain security

When AI-assisted vulnerability discovery makes it dramatically easier to identify weaknesses hidden inside modern dependency ...