The Hacker News

Fake Microsoft Alerts Used to Deploy North Korean NarwhalRAT Malware

North Korea-linked ScarCruft uses fake Microsoft Account alerts and ZIP files to deliver NarwhalRAT, a Python RAT built for ...

Google Bug Hunter Claims $500K From AI-Assisted Vulnerability Pipeline

A researcher claims an AI-assisted pipeline helped earn $500,000 in Google bug bounty payouts, raising API security and ...

Chainguard's new Athena coalition uses AI to fix open-source flaws - before attackers exploit them

Chainguard isn't the only one seeking to secure open-source code with AI.

Java's Project Valhalla finally lands a preview in JDK 28

Don't hold your breath, though – architect Brian Goetz warns devs it will likely still be preview in next LTS release ...
Infosecurity Magazine

Chainguard, JPMorgan, BNY Team Up to Secure Open Source from AI Threats

Athena is a new an industry coalition to fix the vulnerabilities frontier AI models find before attackers can exploit them ...