N-gated Hacker News2d ago
🚨BREAKING NEWS🚨: Six "new" #CVEs in #curl, including one that's the digital equivalent of a fossil! 🦖 Congrats to #AISLE for discovering what we've all known since the dawn of time: software is never perfect. 😏 But hey, at least your toaster and Mars rover can now sleep soundly knowing curl is secure. 🌌🔧
https://aisle.com/blog/aisle-discovers-6-new-cves-in-curl-including-the-oldest-issue-ever-reported #BREAKINGNEWS #softwaresecurity #cybersecurity #HackerNews #ngated
AISLE Discovers 6 CVEs in curl, Including Oldest Issue Ever

AISLE's analyzer discovered 6 new CVEs in curl, more than 2x the nearest AI security platform and including the oldest security issue in the project.

AISLE
Blaze Trends3d ago
Formal verification uses math to prove software obeys its specs across all inputs. AI now generates these proofs automatically, making aerospace-grade security accessible to everyday developers. #Programming #ArtificialIntelligence #SoftwareSecurity
https://blazetrends.com/what-is-ai-assisted-formal-verification-how-automated-reasoning-secures-software/?fsp_sid=41378
What is AI-Assisted Formal Verification? How Automated Reasoning Secures Software

Amazon uses formal verification to guarantee up to 99% accuracy in AI guardrails, mathematically proving software security across every possible input instead of just guessing.

Blaze Trends
Arint - SEO+KI3d ago

RT @OpenAI: Wir erweitern OpenAI Daybreak, um das Patchen von Software mit Sicherheitslücken zu demokratisieren und dies in maschineller Geschwindigkeit zu ermöglichen:

mehr auf Arint.info

#AIPatching #Cybersecurity #Daybreak #InfoSec #OpenAI #SoftwareSecurity #arint_info

https://x.com/OpenAI/status/2069104283824640023#m

Arint - SEO+KI (@[email protected])

<p>RT @OpenAI: Wir erweitern OpenAI Daybreak, um das Patchen von Software mit Sicherheitslücken zu demokratisieren und dies in maschineller Geschwindigkeit zu ermöglichen:</p> <p><a href="https://arint.info/@Arint/116805981734281276">mehr</a> auf <a href="https://arint.info/">Arint.info</a></p> <p>#AIPatching #Cybersecurity #Daybreak #InfoSec #OpenAI #SoftwareSecurity #arint_info</p> <p><a href="https://x.com/OpenAI/status/2069104283824640023#m">https://x.com/OpenAI/status/2069104283824640023#m</a></p>

Mastodon Glitch Edition
Arint - SEO+KI4d ago

RT @OpenAI: Wir erweitern OpenAI Daybreak, um das Patchen von Software mit Sicherheitslücken zu demokratisieren und dies in maschineller Geschwindigkeit zu ermöglichen:

mehr auf Arint.info

#Cybersecurity #GPT #Infosec #OpenAI #PatchManagement #SoftwareSecurity #arint_info

https://x.com/OpenAI/status/2069104283824640023#m

Arint - SEO+KI (@[email protected])

<p>RT @OpenAI: Wir erweitern OpenAI Daybreak, um das Patchen von Software mit Sicherheitslücken zu demokratisieren und dies in maschineller Geschwindigkeit zu ermöglichen:</p> <p><a href="https://arint.info/@Arint/116797434912450146">mehr</a> auf <a href="https://arint.info/">Arint.info</a></p> <p>#Cybersecurity #GPT #Infosec #OpenAI #PatchManagement #SoftwareSecurity #arint_info</p> <p><a href="https://x.com/OpenAI/status/2069104283824640023#m">https://x.com/OpenAI/status/2069104283824640023#m</a></p>

Mastodon Glitch Edition
Analyst2075d ago

OpenAI Bolsters Cybersecurity Push with GPT-5.5-Cyber Update

OpenAI just unveiled its latest game-changer: GPT-5.5-Cyber, a powerhouse model that supercharges vulnerability detection and patching, while retaining its impressive general-purpose intelligence. This cutting-edge update is part of a broader push to revolutionize software security.

https://osintsights.com/openai-bolsters-cybersecurity-push-with-gpt-55-cyber-update?utm_source=mastodon&utm_medium=social

#Gpt55cyber #ArtificialIntelligence #SoftwareSecurity #VulnerabilityManagement #OpenSourceSecurity

OpenAI Bolsters Cybersecurity Push with GPT-5.5-Cyber Update

Discover OpenAI's GPT-5.5-Cyber update, enhancing vulnerability detection and patching. Learn how to bolster your cybersecurity now with the latest AI advancements.

OSINTSights
Show threadColin Watson5d ago

The Website App Edition, has also been joined by a deck to assist with threat modelling mobile app software, and the new Companion Edition. The Companion Edition adds suits with attacks related to Agentic AI, Cloud, Frontend, Large Language Models, DevOps and Automated Threats.

OWASP Cornucopia is open source, free to download/use.

2/2

#threatmodelling #threatmodeling #appsec #devops #softwaresecurity #owasp #owasp25thanniversary #cornucopia

@owasp
@adamshostack

CVEDatabase.comJun 12
Security Tip: Lock down your software builds by pinning dependencies. 🛡️ Relying on "latest" or loose version ranges is a security risk. Use lockfiles with cryptographic checksums to ensure that the code you tested is exactly what goes into production. This simple step helps prevent dependency confusion and malicious injections. Stay ahead of emerging threats and track vulnerabilities at https://cvedatabase.com #CyberSecurity #InfoSec #DevSecOps #CVE #SoftwareSecurity
CVEDatabase.com - Search & Analyze CVE Vulnerabilities

Search and analyze CVE vulnerabilities with instant access to CVSS scores, affected products, and AI-powered remediation guidance.

CVEDatabase.com
N-gated Hacker NewsJun 10
Breaking news! 🚨 #Notepad++ is apparently the Kryptonite of software, now with a zero-click #attack so sneaky, it’s like a ninja in a text editor. 🥷 Meanwhile, GitHub’s #AI #Copilot is standing by, ready to save us from the horrors of traversed paths, because clearly, humans can’t be trusted to code without breaking the universe. 🌌
https://github.com/notepad-plus-plus/notepad-plus-plus/security/advisories/GHSA-p58x-r3c9-x9p6 #ZeroClick #Cybersecurity #SoftwareSecurity #HackerNews #ngated
CVE-2026-48800 Bypass

## Vulnerability Summary **Product**: Notepad++ v8.9.6.1 (latest patched version) **Type**: CWE-42 (Path Traversal) / CWE-59 (Improper Link Resolution) **Impact**: Arbitrary Code Execution...

GitHub
ZevonixJun 9
Free software is never free. It just charges later. https://zurl.co/izoiP #SoftwareSecurity #RiskManagement
Tim GreenMay 30
AI is revolutionising coding, but at a cost: increased security flaws, technical debt, and reliance on flawed verification. Organisations must strengthen review and governance to navigate this verification crisis effectively.
Discover more at https://dev.to/rawveg/the-verification-crisis-e51
#HumanInTheLoop #AIGovernance #SoftwareSecurity #CodeQuality
The Verification Crisis

Software is eating the world, and now artificial intelligence is eating software. Cursor alone...

DEV Community