Threat actors are operationalizing AI to scale and sustain malicious activity, accelerating tradecraft and increasing risk for defenders, as illustrated by recent activity from North Korean groups ...

One of the affected developers shared the incident on Reddit. According to the post, the Google Cloud API key was compromised between February 11 and February ...

A phishing campaign is using a fake Google Account security page to deliver a web-based app capable of stealing one-time ...

OpenAI unveiled Codex Security on Friday, an advanced application security tool that detects complex software vulnerabilities. Available in research preview to ChatGPT Enterprise, Business, and Edu ...

A new phishing campaign is impersonating Google’s account security checks to trick users into installing a malicious web app that steals passwords, passcodes, and other sensitive data directly from ...

Aave labs spends $1.5M on a year-long audit ahead of V4 launch, with 900+ researchers reviewing the code to strengthen DeFi security.

Developers can activate OpenAI’s new tool by giving it access to the code repository they wish to scan. According to the ChatGPT developer, Codex Security creates a temporary copy of the repository in ...

OpenAI released Codex Security on March 6, an AI-powered application security agent that scans codebases for vulnerabilities, validates findings in sandboxed environments, and proposes patches. The ...

A new report out today from Zenity Labs, the research arm of agentic security company Zenity Ltd., details a family of ...

DPRK worker scams are old hat, but they're still working, thanks to AI tools that help with everything from face swapping to daily emails.