vulnerabilities
Coverage of vulnerabilities in the Nexus archive.
- Sleepless fans in Kerala put through wringer as Argentina goes to the brink and back
The close contest highlighted Argentina’s vulnerabilities, leaving fans in Kerala in a frenzy as they celebrated their team’s narrow escape from elimination.
- Vulnerabilities Expose Private Data in Indian Government Systems
A critical vulnerability discovered by a researcher could have allowed unauthorized access to a national government portal in India, exposing private data through vulnerabilities in government systems.
- Adaptive, Agentic AI Worms Loom as Next Enterprise Threat
AI worms, described as 'viruses with wings and brains,' are capable of adapting to new environments and identifying vulnerabilities. Researchers warn these agentic threats could attack enterprises within a year.
- AI makes it easy to expose holes in Army’s unified network, official says
New AI capabilities are making it easier to exploit vulnerabilities in the Army's unified network, according to the Army’s chief data officer. The official stated these advancements are lowering the barrier for potential attackers.
- Race Against Time: Why Faster Vulnerability Alerts Matter
Attackers are exploiting vulnerabilities faster than organizations can identify and patch them. SecAlerts explains that faster vulnerability alerts can help reduce exposure and improve response times.
- Anthropic says Mythos has already found more than 10,000 vulnerabilities
Anthropic's Mythos has identified over 10,000 vulnerabilities, with Project Glasswing aiding partners in discovering high and critical severity bugs.
- Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software
Anthropic's Project Glasswing has identified over 10,000 high-severity vulnerabilities in critical software since its launch last month. The initiative, led by AI company Anthropic, aims to enhance cybersecurity by addressing systemic risks.
- What to Look for in an Exposure Management Platform (And What Most of Them Get Wrong)
The article highlights a common issue in security teams where end-of-quarter metrics like closed vulnerabilities and CVSS scores create a false sense of security. Leadership questions the actual safety improvements, revealing a gap in how exposure management platforms measure and communicate risk.
- ZetaChain identifies cross-chain messaging loophole as root of targeted exploit
ZetaChain's post-mortem revealed that an attacker exploited three vulnerabilities in cross-chain messaging to drain $333,868 from team wallets. The exploit was identified as a targeted attack leveraging a loophole in the system.
- Mythos Changed the Math on Vulnerability Discovery. Most Teams Aren't Ready for the Remediation Side
Anthropic’s Claude Mythos Preview, announced April 7, is a cybersecurity-focused AI system capable of identifying vulnerabilities at scale. It has sparked debate about organizations' ability to validate, prioritize, and remediate discovered vulnerabilities, highlighting gaps in readiness for large-scale vulnerability management.
- PhantomCore Exploits TrueConf Vulnerabilities to Breach Russian Networks
PhantomCore, a pro-Ukrainian hacktivist group, has exploited vulnerabilities in TrueConf video conferencing software to breach Russian networks since September 2025, according to Positive Technologies. The attacks involved a chain of three vulnerabilities enabling remote command execution on targeted servers.
- [Webinar] Mythos Reality Check: Beating Automated Exploitation at AI Speed
The article discusses how AI-powered hackers are launching automated, large-scale exploits at unprecedented speeds, drastically reducing the time available to fix vulnerabilities. It introduces the concept of the 'Collapsing Exploit Window,' emphasizing the urgent need for proactive cybersecurity measures.
- Anthropic's super-scary bug hunting model Mythos is shaping up to be a nothingburger
Anthropic's Mythos model, designed for vulnerability detection, is being withheld from public use due to fears of criminal exploitation. However, early analysis suggests the model may not pose the significant threat initially assumed.
- Serial-to-IP Devices Hide Thousands of Old and New Bugs
Serial-to-IP devices, which convert machine communication into internet protocols, are found to have numerous vulnerabilities and are increasingly targeted by attackers, according to researchers. These OT devices are critical for industrial systems but pose significant security risks.
- WARNING !!
A security specialist warns against cryptocurrencies with smart contracts and programmability, advocating for Nano XNO instead. They claim AI will increase hacking risks and suggest using advanced AI models to identify vulnerabilities in code repositories. Nano is praised for its simplicity and lack of unnecessary features.
- Claude Opus wrote a Chrome exploit for $2,283
A model called Claude Opus was used to create a Chrome exploit for $2,283, while Anthropic withheld its Mythos model due to security concerns about potential attackers exploiting software vulnerabilities.
- The Hidden Security Risks of Shadow AI in Enterprises
Employees are adopting AI tools without IT approval, leading to security risks as these tools operate outside security controls, creating blind spots in what's termed shadow AI. This mirrors the shadow IT phenomenon but introduces new vulnerabilities.