Security tooling releases, open-source projects, and defensive utilities.
18 items
Frame Security, a security awareness and training platform, has emerged from stealth with $50M in funding from prominent venture firms. This reflects sustained investor interest in addressing human-centric security risks rather than purely technical vulnerabilities.
YARA-X, the Rust-based malware analysis pattern matching engine, released version 1.16.0 with 4 improvements and 4 bug fixes. This is routine maintenance with no security implications identified.
Microsoft is replacing Windows 11's legacy Run dialog with a modern variant featuring dark mode and claimed performance improvements. This is a user experience refresh with no direct security implications, though modernisation efforts occasionally surface adjacent hardening opportunities.
NAKIVO released v11.2 with enhanced ransomware detection capabilities, faster replication, and support for vSphere 9 and Proxmox VE 9.0. This reflects the broader industry trend of backup vendors integrating proactive threat detection as ransomware operators increasingly target backup infrastructure.
A recent Microsoft Edge update introduced a bug that disables right-click paste functionality in Microsoft Teams desktop client chats, degrading user productivity across organisations relying on both products.
Google is expanding its use of Gemini AI models to detect and block malicious ads across its advertising platforms as threat actors refine evasion techniques. This represents an incremental defensive improvement in an ongoing arms race rather than a structural shift in ad ecosystem security.
US and Indonesian authorities shut down the W3LL phishing service and arrested its developer in the first joint enforcement action targeting a phishing kit provider. This represents a shift toward coordinated international takedowns of infrastructure that enables mass credential theft campaigns.
EvilTokens is a commercialised malicious service that automates Microsoft device code phishing attacks, enabling attackers to steal authentication tokens and compromise corporate accounts at scale without requiring passwords.
DShield Cowrie honeypot analysis shows that session duration, command count, and disconnect patterns can distinguish automated attacks from manual reconnaissance. Defenders can use these signals to identify fingerprinting attempts and refine threat intelligence collection.
Multiple security vendors announced new products and features at RSAC 2026 (days 3-4), representing typical conference-cycle releases rather than responses to critical threats or novel attack patterns.
GitHub is integrating machine learning-based bug detection into Code Security alongside CodeQL, extending vulnerability coverage to languages and frameworks not fully addressed by pattern-matching SAST. This represents a shift in how platforms approach detection breadth at scale.
Betterleaks, a new open-source secrets scanner, offers an alternative to Gitleaks for identifying hardcoded credentials in code repositories and files. This reflects ongoing community demand for robust secret detection tooling in DevSecOps pipelines.
Microsoft is investigating widespread synchronization and connection failures in classic Outlook desktop client, affecting email delivery and user productivity across enterprise deployments.
Hackers have adopted CyberStrikeAI, an open-source AI security testing platform, to breach Fortinet FortiGate firewalls, demonstrating a significant shift in attack methodologies leveraging advanced AI tools.
Google open-sourced an AI-powered fuzzing platform that has already discovered over 300 vulnerabilities in critical open-source software, offering automated vulnerability discovery capabilities to the broader security community.
The rapid rise of Chinese AI lab DeepSeek's open-source models has sparked significant security and data privacy concerns, with researchers identifying exposed databases and questionable data handling practices.
Google is introducing the Text Fragment feature in Chrome's PDF reader, allowing users to share specific parts of long PDFs more easily. This could potentially lead to improved collaboration but may also introduce new attack vectors if not properly secured.
Tenable's buggy differential plugin updates caused global outages of Nessus vulnerability scanner agents, requiring manual upgrades for revival.