Security vulnerabilities stories

Legacy VPNs are emerging as a prime security liability as hybrid work, identity‑based attacks and cloud apps expose their design flaws.

Qodo 2.0 launches multi-agent AI code review to boost trust in autogenerated code, claiming 11% better detection of critical issues.

Developers granting AI agents broad, unsupervised access to code and systems are creating new software supply chain and data exposure risks.

ENCS and DIVD have agreed a new cyber pact to uncover and disclose vulnerabilities in Europe’s high-impact energy and critical systems.

Apex Computing turns firewall upgrades into planned security strategy, helping clients avoid breaches, downtime and costly distressed buys.

LF Energy’s audit of the widely used EVerest EV charging stack finds and fixes security flaws, boosting confidence in open source grids.

GitLab releases Duo AI Agent Platform to orchestrate AI across the full DevOps lifecycle, promising faster, governed software delivery.

Hyperautomation helps MSPs boost margins, overcome skills shortages and unlock new revenue by automating audits, compliance and network management.

Neighbourly breach puts up to a million users at risk as stolen GPS data and messages hit dark web, experts urge extreme vigilance online.

Government orders urgent review into ManageMyHealth cyber breach as hackers threaten to leak 400,000 patient files over NZD $60,000.

AI-written code introduces 1.7 times more bugs than human work, a CodeRabbit study warns, with security and performance flaws surging.

A vast Coupang data breach and mass camera hacks in South Korea expose Asia’s widening cyber security gaps and weak identity defences.

Ausgrid slashed its Java licensing costs by 80% and cut security vulnerabilities by 99% after migrating from Oracle to Azul Platform Core in just two months.

Organisations face rising risks from ungoverned non-human identities and AI demands, exposing them to cyber threats, regulatory pressure, and operational disruptions.

AI adoption is set to double ROI by 2026 as businesses move to focused integration amid security challenges, says Harness Field CTO Martin Reynolds.

Organisations risk security breaches not just from hacks, but from poor third-party access management, causing trust and efficiency to erode over time.

Chinese AI coding tool DeepSeek-R1 produces up to 50% more insecure code on sensitive topics, revealing supply chain risks for enterprises using AI assistants.

Manifest and NetRise have partnered to enhance software supply chain security with deep firmware analysis, improving risk monitoring across critical sectors like healthcare.

Cloudhouse launches Foundry, a platform automating legacy app packaging to ease compatibility issues and speed up cloud adoption for enterprises.

Singapore’s Government Bug Bounty Programmemes, partnered with YesWeHack, rewarded cybersecurity researchers over USD $250,000 for uncovering system vulnerabilities.