Communications of the ACM

Hard Problems in Cybersecurity: Past, Present, and Future

In revisiting past hard problems, it is also important to recount successes that helped us bolster our defense. Successes ...
InfoQ

Oracle's OpenJDK Bans Generative AI Contributions While Oracle's GraalVM Allows Them

Two related, Oracle-backed projects published opposing policies on open-source contributions created with generative AI: The ...

The Hidden Risks of Vibe-Coding Business Apps

Generative AI has done something genuinely new for small business. A non-technical person can now describe what they want in ...
Telecompaper

Broadcom looks to strengthen security in Spring Java development projects

Broadcom has announced new security measures in development environments powered by its Java-based Spring framework, acquired ...

SAP Patchday: Critical vulnerabilities in SAP NetWeaver and other weaknesses

For the June patch day, SAP is addressing 15 new vulnerabilities in several products. Three critical ones affect NetWeaver.
SDxCentral

Broadcom injects security updates into Spring, Java ecosystems

Broadcom rolled out security updates to the Spring and Java ecosystems tied to helping organizations navigate a surge in ...

Microsoft took OpenClaw, wrapped it in enterprise security, and called it Scout

A few days after Google introduced its OpenClaw-based AI agent with Spark, Microsoft is now doing the same with Scout. The ...
Bleeping Computer

CISA flags two-year-old Oracle flaw as actively exploited in attacks

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ordered government agencies to secure their systems against a high-severity Oracle WebLogic Server vulnerability that was patched ...
TechSpot

A Java library just tried to trick AI coding agents into deleting your tests, and it almost worked

The latest flare-up in the debate over AI-assisted coding did not come from a new model release or a benchmark result. It came from a single line of text buried inside a software update. Earlier this ...

DeepSWE blows up the AI coding leaderboard, crowns GPT-5.5, and finds Claude Opus exploiting a benchmark loophole

DeepSWE puts GPT-5.5 atop the AI coding leaderboard while raising new questions about Claude Opus, SWE-Bench Pro, and ...
TechRepublic

Vibe Coding Cheat Sheet: Tools, Prompts, Security Tips, and More

This vibe coding cheat sheet explains how plain-language prompts can build apps fast, plus the planning, testing, and security checks needed. Software development is undergoing a seismic shift as vibe ...
Android

Vibe Coding Rise is Fueling a Surge in Security Vulnerabilities, Study Finds

Research from RedAccess highlights that thousands of apps created via vibe coding—AI tools used by non-developers—are exposing sensitive data, including medical and financial records. While platform ...