Security vulnerabilities stories - Page 4

Google's GTIG reports 75 zero-day exploits in 2024, highlighting a rising threat to enterprise tech despite a slight overall decrease from 2023.

GitHub Copilot has exceeded 15 million users, growing rapidly as Microsoft advances its AI tools in software development and cloud services.

Legit Security has launched AI features in its platform to help developers quickly identify and fix software vulnerabilities, enhancing app security and compliance.

Diligent teams up with Cloudflare and Qualys to launch Cyber Risk Report, offering real-time threat insights for boards and executives on one platform.

Anetac launches Human Link Pro, unifying human and non-human identity management with AI to combat rising security risks amid workforce shifts globally.

NetRise launches ZeroLens, an AI tool that detects undisclosed software weaknesses in compiled code, aiming to prevent cyberattacks before vulnerabilities emerge.

BeyondTrust launches free Identity Security Risk Assessment, helping organisations identify and address vulnerabilities across cloud, hybrid, and on-premise environments.

Checkmarx integrates its Application Security Posture Management into IDEs, enhancing developer experience by streamlining vulnerability management and boosting AppSec efficiency.

Skyfire and Cequence Security partner to enable secure, compliant access and transactions for AI agents across digital services globally.

Qualys unveils Policy Audit to boost compliance efficiency, cut costs, and reduce risks amid rising regulatory demands and system complexities.

Datadog reveals updated DevSecOps report showing Java's vulnerabilities and announces Metaplane acquisition to boost data observability and AI monitoring.

Armis launches free Vulnerability Intelligence Database to help security teams anticipate and tackle cyber threats with real-time, AI-driven insights.

The Cloud Native Computing Foundation has awarded its highest maturity status to in-toto, a security framework ensuring integrity in software development workflows.

Perforce Software updates Puppet Enterprise Advanced to accelerate vulnerability fixes and boost collaboration amid rising cyber threats and AI-driven attacks.

Cycode launches AI Teammates and CI/MON runtime protection to enhance software supply chain security and threat detection in application security.

Tenable Research revealed a privilege escalation flaw in Google Cloud Composer, risking unauthorised access to key cloud resources before Google's fix.

Socket has acquired cybersecurity startup Coana to enhance its supply chain security platform, cutting false positives by up to 80% for faster threat remediation.

Lasso has unveiled its MCP Gateway, the first security tool tailored for Model Context Protocol, aiming to bolster safety in generative AI workflows.

Cobalt's 2025 State of Pentesting Report reveals that 31% of serious security vulnerabilities remain unaddressed, despite 81% of leaders' confidence in their security.

Microsoft's recent Patch Tuesday sparked scrutiny with a 40-minute delay in updates and notable vulnerabilities, including a critical zero-day in the CLFS Driver.