Supply Chain Security stories - Page 9

Bitdefender says 17% of OpenClaw AI skills act maliciously, with crypto-focused tools spreading macOS infostealers into corporate networks.

Constructive launches secure-by-default Postgres platform to hardwire Row-Level Security and permissions into databases from creation.

Chainguard tops 500m container manifests as AI-powered DriftlessAF 'software factory' scales secure open-source image production.

Tenable warns 'LookOut' flaws in Google Looker could hand attackers server control, expose secrets and enable cross-tenant cloud access.

Moltbook left a Supabase key exposed, leaking AI chats, 30,000 emails and 1.5 million API keys in a cautionary tale of vibe coding risk.

CIQ's Rocky Linux NSS gains NIST CAVP for post-quantum ML-KEM and ML-DSA, marking key stride towards FIPS 140-3 cryptographic validation.

Developers granting AI agents broad, unsupervised access to code and systems are creating new software supply chain and data exposure risks.

Most firms suffered AI-linked cyber incidents last year, yet many still rate their security as above average amid a widening skills gap.

DryRun launches DeepScan Agent, an AI tool that scans whole codebases in hours to rank real-world security risks and speed remediation.

Tenable warns critical Google Looker flaws could enable server takeover and data theft, leaving unpatched self-hosted deployments exposed.

AI, quantum threats and tougher regulation will reshape cyber strategies by 2026, forcing new governance, identity models and SOC workflows.

Radware launches Agentic AI Protection to secure autonomous agents at runtime, tackling prompt injection, tool abuse and data exposure risks.

RapidFort secures USD $42m Series A to scale automated software supply chain security and continuous vulnerability remediation.

Security Journey launches AI-era developer manifesto and revamped platform to embed secure coding into everyday workflows and tooling.

A security lapse at AI agent service Moltbook exposes risky default database settings, raising fresh alarms over agentic system safeguards.

Black Kite debuts ThreatTrace, harnessing NetFlow and DNS telemetry to reveal hidden third‑party compromises and sharpen cyber risk ratings.

Nike is investigating a suspected cyber attack after hackers claimed access to terabytes of internal data, raising global security concerns.

Veracode upgrades its Package Firewall and testing tools to block malicious software packages before they enter development pipelines.

Google has dismantled IPIDEA's vast residential proxy network, which hijacked millions of consumer devices for global cyber operations.

AI-fuelled automation drove a 70% surge in weekly cyber attacks in 2025, with nearly 2,000 incidents per organisation, Check Point warns.