InfoQ

CodeGuardian: a Model Context Protocol Server for AI-Assisted Code Quality Analysis and Security Scanning

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...
CSOonline

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java Spring ecosystem. Maintainers of Thymeleaf, a widely used template engine for ...
The Hacker News

The State of Trusted Open Source Report

In December 2025, we shared the first-ever The State of Trusted Open Source report, featuring insights from our product data and customer base on open source consumption across our catalog of ...
cybernews

Best AI for software development

Being behind major reports like The Mother of All Breaches and RockYou2024, our in-house cybersecurity experts and journalists provide unbiased, real-world testing and in-depth analysis. We maintain ...
Security Boulevard

The Power of Large Language Models for Cybersecurity

Our dependence on digital infrastructure has grown exponentially amid unprecedented technological advancements. With this reliance comes an increasingly threatening landscape and expanding attack ...
Yahoo Finance

Ambient.ai Unveils Pulsar, the first Reasoning Vision-Language Model for Agentic Physical Security

REDWOOD CITY, Calif., Nov. 19, 2025 /PRNewswire/ -- Ambient.ai, the leader in Agentic Physical Security, today announced the general availability of Ambient Pulsar, its most advanced AI engine yet.
Cyber Defense Magazine

Prompt Injection and Model Poisoning: The New Plagues of AI Security

Direct prompt injection is the hacker’s equivalent of walking up to your AI and telling it to ignore everything it’s ever been told. It’s raw, immediate, and, in the wrong hands, devastating. The ...
The Straits Times

Suspect linked to Russian language cybercrime forum arrested in Ukraine

PARIS - A person suspected of being the administrator for the Russian language cybercriminal forum XSS.is was arrested in Ukraine this week, the French public prosecutor's office and the pan-European ...
Security Boulevard

Java 22: Leverage unnamed variables and patterns

Understanding the new features in Java is crucial for writing updated, efficient, and high quality code. To assist developers in adopting these changes correctly, SonarQube has introduced several new ...
techlearning

Tech & Learning Announces Winners of Best of Show at ISTELive 2025

This annual awards celebrates the products exhibited at ISTELive that are transforming education in schools around the world. When you purchase through links on our site, we may earn an affiliate ...
Mint

Large language models pose growing security risks

Cybersecurity threats are bound to multiply as large language models are commoditized, a process that seemed to take a big leap forward when China’s DeepSeek apparently showed LLMs can be built at ...