Metis is an open-source, AI-driven tool for deep security code review, created by Arm's Product Security Team. It helps engineers detect subtle vulnerabilities, improve secure coding practices, and ...

A new high-severity zero-day vulnerability in Microsoft Office has been exploited in the wild, according to Microsoft. The tech giant released a patch in a January 26 advisory for the flaw which has ...

Cybersecurity researchers have discovered two malicious Microsoft Visual Studio Code (VS Code) extensions that are advertised as artificial intelligence (AI)-powered coding assistants, but also harbor ...

Cybercriminals seem to be taking advantage of a hole in a recent patch for Fortinet FortiGate instances, and are exploiting the vulnerability to create administrator accounts and steal firewall ...

Claude Code generates computer code when people type prompts, so those with no coding experience can create their own programs and apps. By Natallie Rocha Reporting from San Francisco Claude Code, an ...

stig_patch_cycle_analyzer.py is a standalone, offline, command-line Python script for parsing DISA STIG manuals authored in XCCDF (Extensible Configuration Checklist Description Format) and producing ...

Samsung has begun rolling out the January 2026 security update to the Galaxy S22 and S23 series in Korea, with a global release to follow soon. The nearly 400MB update contains 55 security fixes but ...

Cybersecurity company Arctic Wolf has warned of a "new cluster of automated malicious activity" that involves unauthorized firewall configuration changes on Fortinet FortiGate devices. The activity, ...

Cisco has fixed a critical Unified Communications and Webex Calling remote code execution vulnerability, tracked as CVE-2026-20045, that has been actively exploited as a zero-day in attacks. Tracked ...