Microsoft has introduced a series of security tools and capabilities focused on AI-driven vulnerability discovery, AI agents, and AI models. The updates include a multi-agent vulnerability discovery system, new controls for managing and securing AI agents, data protection capabilities, and tools designed to identify potentially vulnerable or compromised AI models before deployment. MDASH targets exploitable…
Tag: Discovery
AI, Apps, Global Security News, Risk Management
Netskope adds AI asset discovery and AISecOps agent to AI security portfolio
Netskope has announced Netskope One AI Command Center, bringing together AI discovery, risk intelligence, and autonomous response capabilities in a single platform. As the latest expansion of the Netskope One AI Security suite, it helps security teams understand what AI is running in their environments, determine which risks require action, and accelerate response efforts. Among…
AI, Exploits, Global Security News
With Complex Cloud Integrations, Small Errors Lead to Major Compromises
Researchers discover an exploit chain combining over-permissioned roles, secrets discovery, and non-human identities that could have compromised a popular automation service.
AI, Global Security News
Nudge Security adds browser-based discovery for shadow AI agents
Nudge Security announced that its AI security platform offers discovery of shadow AI agents via the browser, extending its agent discovery capabilities to cover platforms that do not provide a public API for agent identity and inventory. The new browser-based agentic AI discovery closes a fundamental gap, where other solutions depend solely on platform APIs…
AI, Global Security News
Novee launches Agentic Fix to automate vulnerability remediation
Agentic Fix addresses a critical bottleneck in the software development lifecycle where vulnerability discovery has been significantly accelerated, but the subsequent steps of triage, assignment, patching, and retesting remain largely manual.
AI, Exploits, Global Security News, Risk Management
AI shrinks vulnerability exploitation window to hours
Time has become organizations’ biggest vulnerability because the gap between vulnerability discovery and exploitation has narrowed to hours, according to Synack’s 2026 State of Vulnerabilities Report. Total vulnerabilities by severity (2022-2025) (Source: Synack) AI expands the attack surface Agentic AI systems that act autonomously across systems introduce new risks that require human expertise to identify…
AI, Global Security News
Microsoft’s new AI system finds 16 Windows flaws, including four critical RCEs
Microsoft has unveiled a new AI-driven vulnerability discovery system that identified 16 previously unknown Windows vulnerabilities, including four critical remote code execution flaws, in what security analysts say could mark a major shift in how software vulnerabilities are discovered and remediated. The system, codenamed MDASH, was developed by Microsoft’s Autonomous Code Security team alongside the…
AI, Global Security News
Microsoft’s new AI system finds 16 Windows flaws, including four critical RCEs
Microsoft has unveiled a new AI-driven vulnerability discovery system that identified 16 previously unknown Windows vulnerabilities, including four critical remote code execution flaws, in what security analysts say could mark a major shift in how software vulnerabilities are discovered and remediated. The system, codenamed MDASH, was developed by Microsoft’s Autonomous Code Security team alongside the…
Global Security News
After Replacing TeamPCP Malware, ‘PCPJack’ Steals Cloud Secrets
PCPJack makes innovative use of parquet files for stealthy, pre-validated target discovery as it canvasses multiple cloud environments.
AI, Cybersecurity, Exploits, Global Security News, Government & Policy, Risk Management
AI speeds flaw discovery, forcing rapid updates, UK NCSC warns
The UK cyber agency NCSC warns AI is speeding up vulnerability discovery, likely causing a “patch wave” of urgent software updates to fix exposed flaws. The UK’s National Cyber Security Centre (NCSC) warns that AI is rapidly accelerating the discovery of software vulnerabilities, increasing the risk of large-scale exploitation. CTO Ollie Whitehouse says skilled attackers…
AI, APAC, Cloud Security, Cybersecurity, Europe, Exploits, Global Security News, Risk Management
The Mythos Discovery: What It Means for Vulnerability Disclosure
The Mythos Discovery: What It Means for Vulnerability Disclosure AI just broke vulnerability disclosure at scale. Earlier this month, Anthropic’s Claude Mythos Preview AI model discovered 27-year-old bugs that survived decades of human review. Now the industry’s top security leaders are calling it a watershed moment. Here’s what software vendors need to know. What Happened…
AI, Cybersecurity, Exploits, Global Security News
Mythos can find the vulnerability. It can’t tell you what to do about it.
Mythos matters. It is a significant step forward in AI-assisted vulnerability discovery. But it does not mean cybersecurity changed overnight, nor does it mean enterprises are suddenly facing fully automated exploitation at internet scale tomorrow. It does mean the offensive side of AI is continuing to improve. The defensive side needs to catch up now.…
AI, Global Security News, Risk Management
Tenable unveils OT discovery engine to expose cyber-physical risks
Tenable unveiled a new OT asset discovery engine that enables security teams to bring risks associated with cyber-physical systems (OT, IoT, and shadow IT) into a unified view of cyber exposure. With instant deployment and no additional IT overhead required, Tenable’s new VM-Native OT Discovery capability provides a low-friction entry point for organizations to gain…
AI, Exploits, Global Security News
The vulnerability flood is here. Here’s what it means – and how to prepare
We can’t control the pace of AI-driven vulnerability discovery, but we can control how fast we respond. Categories: Sophos Insights Tags: LLM, AI, Exploit, vulnerability, Active Adversary, Pacific Rim
Global Security News
AI-Led Remediation Crisis Prompts HackerOne to Pause Bug Bounties
Discovery used to be the bottleneck for open source bugs, but with automated discovery, remediation’s the bottleneck, which bounties don’t fund.
AI, Exploits, Global Security News
Anthropic’s new AI model finds and exploits zero-days across every major OS and browser
Automated vulnerability discovery tools have existed for decades, and the gap between finding a bug and building a working exploit has always slowed attackers. That gap is now substantially narrower. Anthropic’s Claude Mythos Preview, a new general-purpose language model being made available only to a limited group of critical industry partners and open source developers,…
AI, Global Security News
F5 and Forcepoint partner to secure enterprise AI from data creation to runtime operations
COMPANY NEWS: Collaboration connects data discovery and classification with runtime protection and continuous assurance to help organisations securely operationalise AI
AI, Global Security News
Metcash Selects Coveo AI as an e-Commerce Partner for AI Search
Australia’s leading wholesaler teams with Coveo and SAP to elevate product discovery, personalization and conversion, helping independent retailers make informed procurement decisions, speeding ordering, invoicing, and receiving products
Exploits, Global Security News, Risk Management
Detectify uncovers hidden assets and risks across entire IP ranges
Detectify has launched IP Range Scanning, enabling continuous discovery and monitoring of entire IP address blocks to help security teams identify forgotten assets and hidden risks before attackers exploit them. Many organizations are sitting on forgotten IP addresses that have become entry points for cyberattacks. While millions have been spent securing public-facing websites, legacy tools…
AI, Global Security News, Risk Management
ImmuniWeb launches a Cyber Threat Intelligence service
ImmuniWeb Discovery has been enhanced with a dedicated Cyber Threat Intelligence (CTI) offering. In addition to detecting customer-specific incidents on the dark web and other locations across the internet, the new CTI capability enables customers to stay continuously informed about emerging trends in cybercrime, the regulatory landscape, and supply chain risks. In addition to strategic…