Nearly half (45%) of AI-generated code contains security flaws despite appearing production-ready, new research from Veracode has found.

Veracode, a global leader in application risk management, today unveiled its 2025 GenAI Code Security Report, revealing critical security flaws in AI-generated code. The study analyzed 80 curated ...

Davis Lu was convicted in March of deploying malicious code in the systems of his employer, Eaton, when his job responsibilities change and then deployed a kill switch that denied employees access to ...

Davis Lu hid a ‘logic bomb’ inside his employer’s network that deleted the Active Directory profiles of other employees when his ID was revoked.

The GitHub OAuth attack exposed a security blind spot in the ever-growing web of permissions spanning developers, service ...

The Department of Government Efficiency (DOGE) put important Social Security data in a “vulnerable cloud environment,” a whistle-blower with the Social Security Administration (SSA) said in a ...

Some built-in security features of the vibe coding platforms themselves have proven to be woefully inadequate, lulling users into a false sense of security.

Event ID 4648, A logon was attempted using explicit credentials, occurs when a process attempts to authenticate to an account ...

If you’re coding with Gemini CLI, you need this security update Researchers discovered that Google's AI coding tool has a serious vulnerability.

A vulnerability in Google's Gemini CLI allowed attackers to silently execute malicious commands and exfiltrate data from developers' computers using allowlisted programs.