One command turns any open-source repo into an AI agent backdoor. OpenClaw proved no supply-chain scanner has a detection category for it

CLI-Anything generates SKILL.md files that AI agents trust and execute. Snyk found 13.4% of agent skills contain critical ...
Opinion
Infosecurity MagazineOpinion

Open Source is the Tip of the Iceberg: Why Proprietary Software, Hardware and Protocols Face Greater AI-Driven Security Risk

Project Glasswing scans open-source code for vulnerabilities. But open source was already the most scrutinized software on earth. The real exposure is everywhere else ...

The third major Linux kernel flaw in two weeks has been found - thanks to AI

The third major Linux kernel flaw in two weeks has been found - thanks to AI ...
How-To Geek on MSN

Stop using Files by Google—this open-source Android app does everything it won't

Everything a file manager should be, and nothing more ...
CSO Online

PraisonAI vulnerability gets scanned within 4 hours of disclosure

A newly disclosed authentication bypass flaw (CVE-2026-44338) in PraisonAI drew near-instant probing, exposing risks from ...
Microsoft

Defense at AI speed: Microsoft’s new multi-model agentic security system tops leading industry benchmark

Today Microsoft is announcing a major step forward in AI-powered cyber defense: a new multi-model agentic scanning harness ...
TMCnet

OpenHands Launches an Agent Control Plane to Manage Software Agents

OpenHands, the open platform for cloud coding agents, today launched the OpenHands Agent Control Plane: a new operational layer for managing the sprawl of AI agents deployed across modern enterprises.
XDA Developers on MSNOpinion

Cal.com just went closed source over AI, but AI is exactly why open source still wins

Going closed source now feels like the wrong move.
eWeek

Grok Had Highest Share of ‘Highly Problematic’ Health Answers in BMJ Open Audit

AI thrives on data but feeding it the right data is harder than it seems. As enterprises scale their AI initiatives, they face the challenge of managing diverse data pipelines, ensuring proximity to ...
SecurityWeek

TanStack, Mistral AI, UiPath Hit in Fresh Supply Chain Attack

Over 170 TanStack, Mistral AI, OpenSearch, UiPath, and other packages were affected in a new Mini Shai-Hulud supply chain ...

AWS Rex Is a Big Step for Agentic AI Security, But Not the Final Layer

AWS Rex adds runtime guardrails for agentic AI, but security leaders still need data-layer controls to satisfy compliance and ...