The Register on MSN

OpenClaw patches one-click RCE as security Whac-A-Mole continues

Researchers disclose rapid exploit chain that let attackers run code via a single malicious web page Security issues continue ...
SD Times

AI-Generated Code Poses Major Security Risks in Nearly Half of All Development Tasks, Veracode Research Reveals

Value stream management involves people in the organization to examine workflows and other processes to ensure they are deriving the maximum value from their efforts while eliminating waste — of ...

OpenSSL: 12 security gaps, one allows malicious code execution and is critical

IT researchers have discovered 12 security vulnerabilities in the open-source encryption library OpenSSL, one of which is considered critical. Attackers can use it to inject malicious code, for ...
The Hacker News

Fake Moltbot AI Coding Assistant on VS Code Marketplace Drops Malware

A fake VS Code extension posing as a Moltbot AI assistant installed ScreenConnect malware, giving attackers persistent remote ...
SecurityWeek

High-Severity Remote Code Execution Vulnerability Patched in OpenSSL

OpenSSL updates released on Tuesday patch a dozen vulnerabilities, including a high-severity remote code execution flaw.
The Hacker News

Malicious VS Code AI Extensions with 1.5 Million Installs Steal Developer Source Code

Security researchers found two AI-branded VS Code extensions with 1.5M installs that covertly send source code and files to ...
Business Wire

Orca Security Adds Source Code Posture Management Capabilities, Delivering Visibility for the Entire Cloud Lifecycle

PORTLAND, Ore.--(BUSINESS WIRE)--Orca Security, the pioneer of agentless-first cloud security, today announced new source code posture management capabilities, adding full visibility into source code ...
SecurityWeek

Cyber Insights 2026: Offensive Security; Where It Is and Where It’s Going

Expert insights on how cyber red teaming will change more in the next 24 months than it has in the past ten years.