OpenAI launches Codex Security, an AI agent designed to detect vulnerabilities in software projects

Matthias Bastian / the-decoder - OpenAI's new Codex Security agent automatically hunts for vulnerabilities in code and has already found gaps in OpenSSH and Chromium.The article OpenAI launches Codex Security, an AI agent designed to detect vulnerabilities in software projects appeared f…

Bill Toulas / bleepingcomputer - Google Threat Intelligence Group (GTIG) tracked 90 zero-day vulnerabilities actively exploited throughout 2025, almost half of them in enterprise software and appliances. [...]

#cybersecurity #software #enterprise #infosec #cloudsec #google #business #security #patching #updates

NEW: Google said that last year, and for the first time, it found more zero-days used by spyware makers (15) rather than government-backed espionage groups (12) in the wild. The shift demonstrated “a slow but sure movement in the landscape” of how gove

29 hrs / bsky / @lorenzofb.bsky.social / lorenzofb.bsky.social

Google Threat Intelligence Group (GTIG) tracked 90 zero-day vulnerabilities actively exploited throughout 2025, almost half of them in enterprise software and appliances.

32 hrs / bsky / @bleepingcomputer.com / bleepingcomputer.com

Google says half of all zero-days it tracked in 2025 targeted buggy enterprise tech

33 hrs / techcrunch / Zack Whittaker

Google says 90 zero-days were exploited in attacks last year

36 hrs / bleepingcomputer / Bill Toulas

Google Threat Intelligence Group warns enterprise systems increasingly targeted by zero-day exploits

36 hrs / siliconangle / Duncan Riley

Google says 90 zero-days exploited in 2025 as commercial vendor activity grows

36 hrs / therecord

New Coruna Spyware Targets iPhone Users

Usman Qureshi / iphoneincanada - Google researchers have detailed Coruna, a dangerous iOS exploit kit used to install spyware on iPhones. Learn how it works and how to stay protected.The post New Coruna Spyware Targets iPhone Users first appeared on iPhone in Canada.

#cybersecurity #apple #iphone #ios #cybercrime #security #patching #updates #wallet #crypto

Leaked iPhone exploit kit linked to US tools hits 42,000 devices

43 hrs / betanews / Camila Nogueira

A Possible US Government iPhone-Hacking Toolkit Is Now in the Hands of Foreign Spies and Criminals

2 days / reddit / /u/mepper

Spyware-grade Coruna iOS exploit kit now used in crypto theft attacks

2 days / bsky / @infosec.skyfleet.blue / infosec.skyfleet.blue

Did the US Government Leak iPhone Hacking Tools? Why You Should Keep Your iPhone Updated

2 days / idropnews / Chris Hauk

Spyware-grade Coruna iOS exploit kit now used in crypto theft attacks

2 days / bleepingcomputer / Bill Toulas

New Coruna Spyware Targets iPhone Users

2 days / iphoneincanada / Usman Qureshi

Apple iPhone Hacking Kit Used By Spies, Crypto Scams Could Have US Intelligence Origins

2 days / decrypt / Callan Quinn

A calendar invite is all it took to hijack Perplexity's Comet browser and steal 1Password credentials

Maximilian Schreiner / the-decoder - Security researchers demonstrate how a manipulated calendar invite can trick Perplexity's agentic Comet browser into stealing local files and taking over a full 1Password account.The article A calendar invite is all it took to hijack Perplexity's Comet br…

#ai #cybersecurity #dataprivacy #browsers #genai #security #assistant #bugs #digitalprivacy #perplexity

Launch HN: Cekura (YC F24) – Testing and monitoring for voice and chat AI agents

3 days / ycombinator

Until last month, attackers could've stolen info from Perplexity Comet users just by sending a calendar invite

3 days / theregister / Thomas Claburn

DeepKeep launches AI agent attack surface scanner to map enterprise risk

3 days / siliconangle / Duncan Riley

A calendar invite is all it took to hijack Perplexity's Comet browser and steal 1Password credentials

3 days / the-decoder / Maximilian Schreiner

Zenity warns of inherent security risks in agentic browsers after Perplexity Comet findings

3 days / siliconangle / Duncan Riley

Android Security Update Fixes 129 Vulnerabilities, Including Actively Exploited Zero-Day

AnuPriya / cyberpress - Google released its March 2026 Android Security Bulletin, patching 129 vulnerabilities across the Android ecosystem. This update sets a record for the highest number of fixes in a single month. It splits into two patch levels: 2026-03-01 for core Android …

#cybersecurity #mobiletech #infosec #google #android #security #smartphone #qualcomm #patching #updates

Google patches scores of vulnerabilities with March Android Security Bulletin

3 days / betanews / Sofia Elizabella Wyciślik-Wilson

Android gets patches for Qualcomm zero-day exploited in attacks

3 days / bleepingcomputer / Sergiu Gatlan

Android Security Update Fixes 129 Vulnerabilities, Including Actively Exploited Zero-Day

3 days / cyberpress / AnuPriya

OpenClaw Zero-Click Flaw Lets Attackers Take Over Developer AI Agents via Malicious Sites

AnuPriya / cyberpress - OpenClaw, a popular open-source AI personal assistant with over 100,000 GitHub stars, recently suffered a critical 0-click vulnerability. This flaw lets malicious websites silently hijack developers’ AI agents without plugins, extensions, or user interact…

#ai #cybersecurity #dataprivacy #browsers #genai #security #patching #api #developertools #openclaw

Flaw in OpenClaw allows complete takeover of AI agent

4 days / techzine / Mels Dees

ClawJacked flaw lets malicious sites hijack OpenClaw, steal data

4 days / dataconomy / Emre Çıtak

IronCurtain Takes a Security-First Approach to AI Agents With Sandboxing and Plain-English Policy

4 days / techstrong / Tom Smith

OpenClaw Zero-Click Flaw Lets Attackers Take Over Developer AI Agents via Malicious Sites

4 days / cyberpress / AnuPriya

Please, please, please stop using passkeys for encrypting user data

Simon Willison / simonwillison - Please, please, please stop using passkeys for encrypting user dataBecause users lose their passkeys all the time, and may not understand that their data has been irreversibly encrypted using them and can no longer be recovered.Tim Cappalli:To the wider i…

#cybersecurity #dataprivacy #infosec #cloudsec #security #ux #technology #encryption

Don't use passkeys for encrypting user data

6 days / ycombinator

Please, please, please stop using passkeys for encrypting user data

7 days / simonwillison / Simon Willison

Apple's iPhone and iPad become first consumer devices to receive NATO security clearance

techspot - The clearance puts Apple in an exclusive position – no other consumer smartphone or tablet maker has ever reached the same security threshold under the alliance's information assurance standards.Read Entire Article

#cybersecurity #infosec #apple #defensetech #government #iphone #ios #security #ipad #encryption

Governments Can Now Access NATO Classified Files From iPads (And It's A Big Deal)

7 days / bgr

Apple's iPhone and iPad become first consumer devices to receive NATO security clearance

7 days / techspot

Apple iPhone and iPad become first to handle NATO restricted data

7 days / dataconomy / Aytun Çelebi

NATO thinks stock iPhones and iPads are secure enough for classified data

7 days / digitaltrends

Researchers discover massive Wi-Fi vulnerability affecting multiple access points — AirSnitch lets attackers on the same network intercept data and launch machine-in-the-middle attacks

tomshardware - A team of researchers discovered that they can break cryptographic client isolation on a number of wireless routers by taking advantage of how Wi-Fi networks work.

#cybersecurity #networking #dataprivacy #infosec #wireless #security #hack #encryption #patching #research

Researchers discover massive Wi-Fi vulnerability affecting multiple access points — AirSnitch lets attackers on the same network intercept data and launch machine-in-the-middle attacks

8 days / tomshardware

New AirSnitch attack breaks Wi-Fi encryption in homes, offices, and enterprises

8 days / ycombinator

New AirSnitch attack breaks Wi-Fi encryption in homes, offices, and enterprises

8 days / arstechnica / Dan Goodin

Secfix raises $12M to cut compliance work 90% for European SMBs

Abhinaya Prabhu / techfundingnews - Munich-based Secfix has closed an oversubscribed $12 million Series A led by Alstin Capital, with participation from Bayern…

#vc #cybersecurity #saas #enterprise #infosec #cloudsec #business #security #europe #regulation

Secfix Raises $12M to Slash SMB Compliance Work by 90%

9 days / ventureburn / Ekemini

Secfix Secures $12M Series A To Expand Security Compliance Platform

9 days / startuprise / Kailee Rainse

Secfix raises $12M Series A to build end-to-end security compliance platform

9 days / tech / Tamara Djurickovic

Secfix raises $12M to cut compliance work 90% for European SMBs

9 days / techfundingnews / Abhinaya Prabhu

Anthropic released Claude Code Security as research preview

Erin / testingcatalog - What's new? Anthropic introduced Claude Code Security for security teams and maintainers to spot code gaps; it uses Claude Opus 4.6 with layered checks and patch proposals;

#ai #cybersecurity #software #infosec #anthropic #genai #stockmarket #business #security #developertools

Developer ecosystem — Claude expands into tools: compilers, IDEs, PowerPoint (7)
Market reaction — Traders dump cybersecurity stocks after Anthropic demo (4)
Pentagon friction — Defense confronts Anthropic over safeguards and military use (2)
Security risks — Vulnerability scanning raises misuse and real-world exploit concerns (2)

Developer ecosystem — Claude expands into tools: compilers, IDEs, PowerPoint

The Claude C Compiler: What It Reveals About the Future of Software

12 days / simonwillison / Simon Willison

Claude in PowerPoint Arrives, But Beta Bugs Linger

12 days / winbuzzer / Markus Kasanmascheff

Notion tests custom agents with Computer Use and Claude Code

12 days / testingcatalog / Alexey Shabanov

AI agents are thriving in software development but barely exist anywhere else, Anthropic study finds

12 days / the-decoder / Matthias Bastian

How I use Claude Code: Separation of planning and execution

13 days / ycombinator

When Code is Free, Why is Claude is an Electron app?

13 days / ycombinator

Epstein Files, Anthropic, xAI, More: Tuesday ResearchBuzz, February 17, 2026

17 days / researchbuzz / ResearchBuzz

Market reaction — Traders dump cybersecurity stocks after Anthropic demo

Anthropic Debuts Claude Code Security, JFrog Falls 25%

11 days / winbuzzer / Markus Kasanmascheff

Anthropic Debuts Security Tool as Cybersecurity Stocks Fall

12 days / pymnts / PYMNTS

Anthropic released Claude Code Security as research preview

13 days / testingcatalog / Erin

Obedient Traders Respond to Claude Code Cybersecurity Plugin by Selling Cybersecurity Stocks

13 days / gizmodo / Mike Pearl

Pentagon friction — Defense confronts Anthropic over safeguards and military use

Scoop: Hegseth to meet Anthropic CEO as Pentagon threatens banishment

11 days / axios / Dave Lawler

Anthropic’s Pentagon Problems

12 days / wsj / Keach Hagey

Security risks — Vulnerability scanning raises misuse and real-world exploit concerns

User accidentally gains control of over 6,700 robot vacuums while tinkering with their own device to enable control with a PlayStation controller — security flaw reveals floor plans and live video feeds

11 days / tomshardware

Claude can now scan for complex vulnerabilities, but who will find them?

11 days / techzine / Erik van Klinken

After Search Party backlash, Ring is still avoiding the bigger questions

Jennifer Pattison Tuohy / theverge - Ring founder Jamie Siminoff has been on an "explanation tour," as The New York Times puts it, following the fallout from its Super Bowl ad and the introduction of its Search Party feature. In an interview with The Times this week, Siminoff explained that …

#dataprivacy #techpolicy #amazon #camera #security #privacy #media #superbowl #ring #advertising

Your Ring doorbell’s next job might not be finding lost pets

14 days / digitaltrends

The Fulu Foundation, a nonprofit that pays out bounties for removing user-hostile features, is hunting for a way to keep Ring cameras from sending data to Amazon—without breaking the hardware. www.wired.com/story/a-10k-...

14 days / bsky / @wired.com / wired.com

Want to make a quick $10K? Just hack a Ring camera www.wired.com/story/a-10k-...

14 days / bsky / @boone.bsky.social / boone.bsky.social

“There’s now a group offering to dole out a $10,000 bounty to wrest back control of the user data Ring controls.” Great piece from @boone.bsky.social for @wired.com: www.wired.com/story/a-10k-...

14 days / bsky / @thiccreese.bsky.social / thiccreese.bsky.social

"A $10K Bounty Awaits Anyone Who Can Hack Ring Cameras to Stop Sharing Data With Amazon" www.wired.com/story/a-10k-...

14 days / bsky / @socialmedialab.ca / socialmedialab.ca

A $10K Bounty Awaits Anyone Who Can Hack Ring Cameras to Stop Sharing Data With Amazon

15 days / wired / Boone Ashworth

Talk about bringing back hackathons! Watch someone quit working at Amazon, solve it using insider info and then take a job at Microsoft, lol

15 days / bsky / @jacky.wtf / jacky.wtf

A $10K+ bounty is waiting for anyone who can unplug Ring doorbells from Amazon’s cloud

15 days / theverge / Emma Roth

After Search Party backlash, Ring is still avoiding the bigger questions

15 days / theverge / Jennifer Pattison Tuohy

Ring could be planning to expand Search Party feature beyond dogs

15 days / engadget / Lawrence Bonk

A leaked internal email shows Ring's plan targets more than pets

15 days / appleinsider

Ring Cancels Flock Safety Partnership Following Public Boycott

bgr - Ring ended a controversial partnership that would have sent customer data to Flock Safety, a move that coincides with the start of a consumer boycott.

#dataprivacy #amazon #camera #security #privacy #superbowl #smarthome #ring #safety #ads

Analysis: Ring’s split with Flock won’t fix systemic issues (1)
On the ground: Ring cancels Flock after privacy boycott (4)
Police: Flock shared access with federal agencies, sparking furor (1)
Reporter: Super Bowl ad fuels dystopian privacy outrage (3)
All Other Stories

Analysis: Ring’s split with Flock won’t fix systemic issues

Ring’s Flock breakup doesn’t fix its real problem

20 days / theverge / Jennifer Pattison Tuohy

On the ground: Ring cancels Flock after privacy boycott

Amazon's Ring ends deal with surveillance firm after backlash

21 days / bbc

Ring Cancels Flock Safety Partnership Following Public Boycott

21 days / bgr

Ring Cancels Flock Safety Partnership Amid Backlash Over ‘Creepy’ Super Bowl Ad

21 days / gizmodo / Bruce Gil

Ring ends partnership plans with Flock days after privacy blowback from Super Bowl ad

21 days / therecord

iOS 26.3 Arrives with Android Switching, Cellular Privacy, and More

Jesse Hollington / idropnews - Apple releases iOS 26.3 with a new Transfer to Android tool, offline lyrics for Apple Music, and a breakthrough "Limit Precise Location" privacy setting.Read More...

#cybersecurity #dataprivacy #apple #android #iphone #ios #security #patching #updates #operatingsystems

Apple releases iOS 26.3: New wallpapers, Transfer to Android

22 days / mashable

Apple Releases iOS 26.3 Update to Address Security Vulnerabilities - India News Network

22 days / indianewsnetwork

iOS 26.3 Arrives with Android Switching, Cellular Privacy, and More

22 days / idropnews / Jesse Hollington

Apple's iOS 26.3 Security Update Addresses A Huge iPhone Exploit

22 days / bgr

Apple patches decade-old iOS zero-day, possibly exploited by commercial spyware

22 days / ycombinator

Apple patches decade-old iOS zero-day, possibly exploited by commercial spyware

22 days / theregister / Connor Jones

Apple calls for urgent update of iPhones: iOS 26.3 update fixes critical security flaws - Gulf News

22 days / gulfnews

Apple ships emergency updates across iOS, macOS, visionOS, after exploitation - Cryptopolitan

22 days / cryptopolitan

Apple's Siri Stumbles Again: Inside the Technical Snags Threatening Cupertino's AI Ambitions - WebProNews

22 days / webpronews

6 Things You Must Do First After Installing iOS 26.3 on Your iPhone - Geeky Gadgets

22 days / geeky-gadgets

iOS 26.3 launches: Android transfer gets easier, location privacy improves

22 days / tbreak / Abbas Jaffar Ali

Israel charges two over Polymarket bets on classified military operations

ft - Civilian and reservist charged with security offences, bribery and obstructing justice after ‘red line’ crossed with online gambling

#cybersecurity #crypto #defensetech #government #finance #security #law #tradesecrets #polymarket

SEC Chair Atkins calls prediction markets a ‘huge issue’ amid growing legal spotlight

22 days / theblock / Sarah Wynn

Israel Accuses Two Polymarket Bettors of Trading on Classified Military Operations

22 days / gizmodo / AJ Dellinger

Israelis Arrested Over Alleged Insider Polymarket Trades on IDF Military Secrets

22 days / decrypt / Sander Lutz

Israel charges two over Polymarket bets on classified military operations

22 days / ft

Israeli defense reservist, civilian indicted over alleged insider betting on Polymarket: reports

22 days / theblock / Naga Avan-Nomayo

Homeland Security Spying on Reddit Users

ycombinator - Comments

#dataprivacy #techpolicy #government #DHS #internet #security #reddit #privacy #law #digitalprivacy

Homeland Security Spying on Reddit Users

26 days / reddit / /u/CantStopPoppin

Homeland Security Spying on Reddit Users

26 days / ycombinator

Homeland Security Spying on Reddit Users

27 days / reddit / /u/space_cheese1

Moltbook, the Social Network for AI Agents, Exposed Real Humans’ Data

Andy Greenberg, Lily Hay Newman / wired - Plus: Apple’s Lockdown mode keeps the FBI out of a reporter’s phone, Elon Musk’s Starlink cuts off Russian forces, and more.

#ai #cybersecurity #dataprivacy #techpolicy #social #aiethics #security #privacy #contentmoderation #digitalprivacy

Moltbook: AI bots use social network to create religions, but are some really humans in disguise?

26 days / techxplore

Moltbook was peak AI theater

27 days / reddit / /u/Logical_Welder3467

Is this the future? RentAHuman.ai

27 days / reddit / /u/mycall

Moltbook, Reddit, and The Great AI-Bot Uprising That Wasn't

27 days / slashdot / EditorDavid

OpenClaw and Moltbook: A DIY AI agent and social media for bots

27 days / techxplore

A new social media platform creates buzz – but it's just for AI bots

27 days / npr / John Ruwitch

Security concerns and skepticism are bursting the bubble of Moltbook, the viral AI social forum

27 days / techxplore

Moltbook, the Social Network for AI Agents, Exposed Real Humans’ Data

27 days / wired / Andy Greenberg, Lily Hay Newman

Moltbook, the viral AI sensation, isnt exactly Skynet. So what is it?

27 days / mashable

Moltbook Could Have Been Better

27 days / reddit / /u/Suchitra_idumina

Russian Spy Satellites Have Intercepted EU Communications Satellites

msmash / slashdot - European security officials believe two Russian space vehicles have intercepted the communications of at least a dozen key satellites over the continent. From a report: Officials believe that the likely interceptions, which have not previously been report…

#cybersecurity #defensetech #aerospace #security #europe #russia #telecommunications #encryption #eu #satellite

Russia suspected of intercepting EU satellites

4 wks / semafor / Tom Chivers

Russian Spy Satellites Have Intercepted EU Communications Satellites

4 wks / slashdot / msmash

Russian spy satellites have intercepted EU communications satellites

4 wks / arstechnica / Sam Jones, Peggy Hollinger, and Ian Bott, Financial Times

Russian Luch satellites target European vital connectivity

4 wks / telecomstechnews / Ryan Daws

Moltbook, the viral social network for AI agents, has a major security problem

Chris Stokel-Walker / fastcompany - The rise of OpenClaw, a proactive agentic AI controlled through interfaces more familiar to the average user than tools like Anthropic’s Claude Code, which enthralled early adopters over the holiday period, has been one of the most seismic shifts in the A…

#ai #cybersecurity #dataprivacy #infosec #social #aiethics #genai #security #hack #api #openclaw

AI governance and identity (2)
Emerging AI agent communities (3)
Moltbook security failures (4)
OpenClaw: risks and buzz (5)
All Other Stories

AI governance and identity

Pactum CEO Warns Moltbook Agents Have "Crossed the Rubicon," Calls for Immediate Guardrails

4 wks / implicator / Marcus Schuler

AI Agent Identity Management: A New Security Control Plane for CISOs

4 wks / bleepingcomputer / Sponsored by Token Security

Emerging AI agent communities

When AI Bots Form Their Own Social Network: Inside Moltbook's Wild Start

4 wks / cnet / Macy Meyer

I Infiltrated Moltbook, the AI-Only Social Network Where Humans Aren’t Allowed

4 wks / wired / Reece Rogers

Agent-Only Social Media Is Here

4 wks / pymnts / PYMNTS

Moltbook security failures

Moltbook, the viral social network for AI agents, has a major security problem

4 wks / fastcompany / Chris Stokel-Walker

AI social network Moltbook exposed data of 6,000 users, Wiz says

4 wks / reddit / /u/app1310

The rise of Moltbook suggests viral AI prompts may be the next big security threat

4 wks / arstechnica / Benj Edwards

Wiz uncovers Moltbook flaw exposing 1.5M API tokens

4 wks / dataconomy / Emre Çıtak

OpenClaw: risks and buzz

Here’s this week’s Better Offline, I’m joined by @davidgerard.co.uk for Hater Season to talk about the stupidity of Openclaw, how seemingly smart people keep being “one-shotted” by AI, and why we’ve been headed toward a calamity in the markets since 2008.

4 wks / bsky / @edzitron.com

Clouds rush to deliver OpenClaw-as-a-service offerings

4 wks / theregister / Simon Sharwood

OpenClaw Security Fallout: 341 Malicious Skills and Enabling One-Click Remote Code Execution

4 wks / winbuzzer / Markus Kasanmascheff

Openclaw Hit 100,000 GitHub Stars in Two Months. Here Is What You Need to Know.

4 wks / implicator / Marcus Schuler

OpenClaw is a major leap forward for AI—and a cybersecurity nightmare

4 wks / fastcompany / Chris Stokel-Walker

All Other Stories

OpenClaw is a major boon for everyday users - but also a huge security risk. My latest for @fastcompany.com www.fastcompany.com/91485326/ope...

4 wks / bsky / @stokel.bsky.social / stokel.bsky.social

OpenClaw: all the news about the trending AI agent

Emma Roth / theverge - An open-source AI agent called OpenClaw (formerly known as both Clawdbot and Moltbot) that runs on your own computer and “actually does things” is taking off inside tech circles. Users interact with OpenClaw via messaging apps like WhatsApp, Telegram, Sig…