20 articles
In November 2024, Amazon Web Services (AWS) was the first major cloud service provider to announce the ISO/IEC 42001 accredited certification for AI services...
AI agents have traditionally faced three core limitations: they can’t retain learned information or operate autonomously beyond short periods, and they requi...
IBM's 2026 X-Force report reveals 44% rise in cyber-attacks on public apps, driven by AI and flaws
Amid a privacy backlash, a US $10,000 reward has been offered for anyone who can find a way to run Ring doorbell cameras locally, cutting off the flow of vid...
Commercial AI services are enabling even unsophisticated threat actors to conduct cyberattacks at scale—a trend Amazon Threat Intelligence has been tracking ...
March 10, 2026: This post has been updated to note that Amazon Q Detector Library describes the detectors used during code reviews to identify security and q...
Flashpoint warns of a dramatic drop in the average time between vulnerability disclosure and exploitation
Learn about how ClawSec, by Prompt Security, secures OpenClaw agents, stopping malicious skills with zero-trust defenses.
Flaws in GitHub Codespaces allow RCE via crafted repositories or pull requests
Pillar Security discovered two new critical vulnerabilities in n8n that could lead to supply chain compromise, credential harvesting and complete takeover at...
December 2, 2019: Original publication date of this post. At AWS, we encourage you to use automation.
A recent update has fixed 12 vulnerabilities in OpenSSL, some existing in the codebase for years
Two critical security flaws in n8n have exposed sandboxing vulnerabilities, enabling remote code execution for attackers
The US law firm Hagens Berman will lead a class action lawsuit against Coupang over security failures that led to a June 2025 data breach
VulnCheck analysts found that vulnerabilities exploited before being publicly disclosed rose from 23.6% in 2024 to 28.
2 security vulnerabilities in the Chainlit framework expose risks from web flaws in AI applications
A critical AWS CodeBuild misconfiguration has exposed core repositories to potential attack
December 2025 saw a 120% surge in critical CVEs, with 22 exploited flaws and React2Shell (CVE-2025-55182) dominating threat activity across Meta’s React fram...
As 2025 draws to a close, Tony looks back at the cybersecurity stories that stood out both in December and across the whole of this year
November 2025 CVE landscape: 10 exploited critical vulnerabilities, a 69% drop from October, and why Fortinet and Samsung flaws need urgent patching.