The study targeted 50 prominent AI companies from the Forbes AI 50 list, excluding those without a GitHub presence. Shockingly, 65% nearly two-thirds showed verified secret leaks.
These include API keys, tokens, and credentials for platforms like Perplexity, Weights & Biases, Groq, and NVIDIA,...
Google's Gemini AI just got a significant upgrade, making it an even more powerful tool for professionals and teams who rely on integrated workflows.
The latest expansion of Gemini Deep Research now allows the AI to access and analyze content from your Gmail and...
Developers rely on lightweight libraries to handle complex tasks like evaluating mathematical expressions within user inputs.
A newly disclosed vulnerability in the popular npm package expr-eval, however, could turn these tools into gateways for remote code execution, putting AI-driven applications at serious risk.
The expr-eval...
Where threats grow more sophisticated daily, HackGPT Enterprise emerges as a game-changer for penetration testing.
Developed by Yashab Alam, Founder and CEO of ZehraSec, this cloud-native platform leverages advanced AI, including OpenAI's GPT-4, to automate and enhance professional-grade security assessments for enterprise teams.
By...
A high-severity remote code execution (RCE) vulnerability has been disclosed in the LangGraph checkpointing library.
Published by Eugene Yurtsev, a key contributor at LangChain AI, the advisory (GHSA-wwqv-p2pp-99h55) highlights a flaw in the JsonPlusSerializer that could allow attackers to execute arbitrary Python code.
Affecting...
Zscaler, Inc. (NASDAQ: ZS) has acquired SPLX, an innovative AI security startup founded in 2023, for an undisclosed amount.
This acquisition integrates SPLX's cutting-edge AI red teaming and governance tools into Zscaler's Zero Trust Exchange platform, enabling organizations to secure AI assets throughout their lifecycle...