NHS England withdraws public software over AI hacking fears
NHS England가 AI 기반 해킹 우려로 인해 공개 소프트웨어 저장소를 임시로 철회하고 내부 개발 소프트웨어를 공개 플랫폼에서 제거하도록 지시했다. 이는 기존의 공개 소스 정책에서 전환된 조치로, 모든 소스 코드 저장소를 기본적으로 비공개로 전환하고 예외적인 경우에만 공개를 허용한다. 직원들은 5월 11일까지 이 지침을 준수해야 하며, AI 도구가 시스템 취약점을 악용할 가능성에 대한 선제적 대응이다.
#nhsengland #aisecurity #opensource #softwaresecurity #cybersecurity
3S aims to make software security comprehensible, measurable and comparable for end users The Agentur für Innovation in der Cybersicherheit GmbH (Cyberagentur) published the call for proposals for the “Software Security Score (3S)” research program on 28 April 2026. The aim of the program is to make software security traceable, measurable and comparable. A virtual […]
3S aims to make software security comprehensible, measurable and comparable for end users The Agentur für Innovation in der Cybersicherheit GmbH (Cyberagentur) published the call for proposals for the “Software Security Score (3S)” research program on 28 April 2026. The aim of the program is to make software security traceable, measurable and comparable. A virtual […]
Security Tip: Your security is only as strong as your deepest dependency. 🛡️
While auditing direct libraries is standard, transitive dependencies (libraries your dependencies rely on) are often overlooked. Regularly generate dependency trees to visualize these hidden layers and identify vulnerable sub-components.
Stay ahead of emerging threats at https://cvedatabase.com
Warning: CVE-2025-40739 (CWEs: ['CWE-125']) found no CAPEC relationships.
Warning: CVE-2025-40741 (CWEs: ['CWE-121']) found no CAPEC relationships.
KI-Modell findet 271 Sicherheitslücken in Firefox 150 – Mozilla sieht Zeitenwende für Softwaresicherheit
Seit Februar arbeitet das Firefox-Sicherheitsteam mit KI-Modellen von Anthropic zusammen, um latente Schwachstellen im Browsercode aufzudecken.
#firefox #anthropic #mozilla #softwaresicherheit #softwaresecurity
Mozilla hat 271 Sicherheitslücken in Firefox 150 entdeckt, dank KI-gestützter Schwachstellenanalyse mit Claude Mythos Preview.
📌 Added to the BSides Luxembourg 2026 Lineup
🛠️🔐 𝗢𝗨𝗧 𝗢𝗙 𝗦𝗘𝗖𝗨𝗥𝗜𝗧𝗬 𝗘𝗫𝗖𝗘𝗣𝗧𝗜𝗢𝗡: 𝗪𝗛𝗔𝗧 𝗧𝗢 𝗗𝗢 𝗪𝗜𝗧𝗛𝗢𝗨𝗧 𝗔𝗡 𝗘𝗫𝗣𝗘𝗥𝗧 𝗧𝗢 𝗦𝗘𝗖𝗨𝗥𝗘 𝗬𝗢𝗨𝗥 𝗦𝗢𝗙𝗧𝗪𝗔𝗥𝗘 — Lisi Hocke ( @lisihocke )
💡 Take control in this Talk (40 min) and learn how development teams can build secure software even without dedicated security experts.
Security shouldn’t be a blocker waiting on experts. This session shows how everyday engineering activities—like planning features, collaborating across teams, and maintaining code—can be leveraged to significantly improve your product’s security posture without slowing down delivery.
Discover how to integrate threat modeling into regular workflows, catch vulnerabilities earlier through collaboration, and use production insights to detect malicious behavior. This talk empowers teams to shift from dependency on security teams to building “secure enough” systems through practical, developer-driven approaches.
Lisi Hocke (@lisihocke ) is a security engineer focused on product security, with a passion for quality, collaboration, and continuous learning. A strong advocate for whole-team approaches, she shares her experiences to help teams build resilient and secure software while delivering real value.
📅 Conference Dates: 6–8 May 2026 | 09:00–18:00
📍 14, Porte de France, Esch-sur-Alzette, Luxembourg
🎟️ Tickets: https://2026.bsides.lu/tickets/
📅 Schedule Link: https://pretalx.com/bsidesluxembourg-2026/schedule/
📲 View full schedule & build your agenda: https://hackertracker.app/schedule?conf=BSIDESLUX2026
#BSidesLuxembourg2026 #SecureDevelopment #AppSec #DevSecOps #SoftwareSecurity #CyberSecurity
sayzard
Cyberagentur
Science News
idw
CVEDatabase.com
hackmac
datatofu
AllAboutSecurity
Tim Green
BSidesLuxembourg