Security vulnerabilities stories

The Open-Source AI Foundation has launched to promote transparency in AI systems for government agencies, coinciding with DeepSeek's commitment to open source its AI models.

GitHub has partnered with Endor Labs, integrating advanced security software to help developers swiftly identify and manage critical vulnerabilities within the platform.

DeepSeek faces intense scrutiny over significant security flaws and data management practices, prompting bans across multiple countries amidst privacy concerns.

Akamai Technologies has launched the Defenders’ Guide 2025, a comprehensive report for APJ cybersecurity professionals facing rising cyber threats.

AttackIQ has acquired DeepSurface to enhance its cybersecurity services, aiming to improve risk management and bolster protections against cyber threats.

A survey by Azul reveals that 88% of enterprises are exploring alternatives to Oracle Java, citing rising costs and cloud expense concerns as key factors.

A major data leak impacting Fortinet firewalls has revealed sensitive information from 15,000 devices following a critical vulnerability, prompting urgent cybersecurity measures.

Entrust has launched PKI Hub, a new suite designed for managing cryptographic assets, enhancing enterprise visibility and automating processes to streamline PKI operations.

Semperis has launched Lightning Intelligence, a new security tool to assess posture across multi-forest Active Directory and Entra ID, aiding in identity attack prevention.

On January's Patch Tuesday, Microsoft revealed 161 vulnerabilities, including eight under active exploitation, with no browser flaws noted this month.

Carlsberg has enhanced its development processes by integrating GitHub's tools, streamlining coding and security while reducing operational tool sprawl.

Ivanti has announced critical patches for two vulnerabilities in its Connect Secure and Policy Secure products, one of which is already under active exploitation.

As digital fitness services surge in popularity, Kaspersky warns users of potential data security risks, urging precautions to protect personal information.

A new report reveals a 51% rise in cybercriminals exploiting trusted Microsoft applications, highlighting increasing sophistication in attacks on Windows networks.

Upwind has launched its Shift Left capability, enhancing CI/CD pipelines by integrating runtime context to help developers prioritise vulnerabilities.

Tenable has launched Tenable Patch Management, an autonomous solution designed to streamline vulnerability remediation amid increasing cyber threats.

This December, Microsoft addresses 70 vulnerabilities, including 16 critical remote code execution flaws, in its latest Patch Tuesday update.

A new report by Lineaje reveals that over 95% of security vulnerabilities stem from open-source dependencies, highlighting critical risks for organisations.

Semperis has unveiled Lightning Intelligence, a new SaaS solution to enhance identity security for hybrid Active Directory and Entra ID systems.

Tamnoon has partnered with Wiz to launch the Wiz Defend solution, enhancing cloud threat detection and empowering security teams with advanced insights.