SecurityWeek

Adobe has released urgent security updates to resolve two AEM Forms vulnerabilities for which proof-of-concept (PoC) code exists.

Microsoft has unveiled Project Ire, a prototype autonomous AI agent that can analyze any software file to determine if it’s malicious.

Cisco has disclosed a data breach affecting Cisco.com user accounts, including names, email address, and phone numbers.

As AI makes software development accessible to all, security teams face a new challenge: protecting applications built by non-developers at unprecedented speed and scale.

Many companies are showcasing their products and services this week at the 2025 edition of the Black Hat conference in Las Vegas.

Approov has raised $6.7 million in Series A funding to advance its mobile application and API security solutions.

Android’s light August 2025 security update resolves an Adreno GPU vulnerability confirmed as exploited in June.

Research demonstrating high-impact cloud and AI security flaws will be rewarded at Microsoft’s Zero Day Quest competition in spring 2026.

Threat actors might be exploiting a zero-day vulnerability in SonicWall firewalls in a fresh wave of ransomware attacks.

Nvidia has patched over a dozen vulnerabilities in Triton Inference Server, including another set of vulnerabilities that threaten AI systems. 

CISA and FEMA announced two grants of more than $100 million for state, local, and tribal governments looking to improve cybersecurity.

Cisco’s latest jailbreak method reveals just how easily sensitive data can be extracted from chatbots trained on proprietary or copyrighted content.

The US Senate voted to confirm Sean Cairncross as the National Cyber Director, five months after nominalization.

Forty-four cybersecurity merger and acquisition (M&A) deals were announced in July 2025.

Northwest Radiologists says the personal information of 350,000 Washington State residents was stolen in a January 2025 data breach.

Attackers could silently modify sensitive MCP files to trigger the execution of arbitrary code without requiring user approval.

Illumina will pay $9.8 million to settle accusations that products provided to the US government were affected by cybersecurity flaws.

Should Gen Z to be treated as a separate attack surface within your company?

Noteworthy stories that might have slipped under the radar: Microsoft investigates whether the ToolShell exploit was leaked via MAPP, two reports on port cybersecurity, physical backdoor used for ATM hacking attempt.

Valid, complete reports detailing remote code execution or elevation of privilege bugs in .NET qualify for the maximum rewards.