Clean GitHub repo tricks AI coding agents into running malware

An agentic coding tool tasked with cloning and setting up a seemingly benign GitHub repository could execute a malicious ...
Hosted on MSN

Inside NASA’s most secure lab

A look inside one of NASA’s most protected laboratories and the work being done there. Air Force B-52 bomber crashes shortly after takeoff at Edwards Air Force Base White House warns Rubio, Hegseth ...
CNBC

OpenAI to acquire Ona to support its AI coding assistant, Codex

OpenAI announced it will acquire Ona, a startup that provides cloud environments for AI agents. Ona's technology will allow OpenAI's coding assistant, Codex, to take on longer-running tasks, OpenAI ...
SDxCentral

Broadcom injects security updates into Spring, Java ecosystems

Broadcom rolled out security updates to the Spring and Java ecosystems tied to helping organizations navigate a surge in AI-detected security threats. The updates are through Broadcom’s Tanzu business ...
Los Angeles Times

Missing worker at high-security lab in New Mexico found dead in remote forest

This is read by an automated voice. Please report any issues or inconsistencies here. See more from the L.A. Times in Google Search. Set us as preferred Human remains found beside a handgun in a ...
Morningstar

Salt Security launches Salt Code, the first agentic security solution to enforce security policies inside AI coding assistants

The first solution that enforces security policy inside every AI coding assistant your developers use. Claude, Cursor, GitHub Copilot, Windsurf, Codex and Gemini CLI now generate policy-compliant code ...
Ars Technica

Fed up with vibe coders, dev sneaks data-nuking prompt injection into their code

The controversy over vibe coding reached a new high this week after a developer added hidden instructions to his open source Java testing app to sabotage projects performed by AI coding agents. The ...
TechRepublic

Vibe Coding Cheat Sheet: Tools, Prompts, Security Tips, and More

This vibe coding cheat sheet explains how plain-language prompts can build apps fast, plus the planning, testing, and security checks needed. Software development is undergoing a seismic shift as vibe ...
Android

Vibe Coding Rise is Fueling a Surge in Security Vulnerabilities, Study Finds

Research from RedAccess highlights that thousands of apps created via vibe coding—AI tools used by non-developers—are exposing sensitive data, including medical and financial records. While platform ...
eWeek

Vibe Coding Cheat Sheet: Tools, Prompts, Security Tips, and More

AI thrives on data but feeding it the right data is harder than it seems. As enterprises scale their AI initiatives, they face the challenge of managing diverse data pipelines, ensuring proximity to ...
VentureBeat

IBM launches Bob with multi-model routing and human checkpoints to turn AI coding into a secure production system

Bringing AI agents into the enterprise software development lifecycle is fast becoming the norm. As developers experiment with new platforms, organizations are exposed to potential security and ...
The Next Web

Lovable left thousands of projects exposed for 48 days, and the vibe coding security crisis is only getting worse

Summary: Lovable, the $6.6 billion vibe coding platform with eight million users, has faced three documented security incidents exposing source code, database credentials, and thousands of user ...