The authorization problem that could break enterprise AI

Wang described 1Password's approach as working on the output side, scanning code as it is written and vaulting any plain text ...

Meta's rogue AI agent passed every identity check — four gaps in enterprise IAM explain why

A rogue AI agent at Meta exposed sensitive internal data despite passing every identity check. Here are the four ...
Cloud Security Alliance

Rethinking Authorization for the Age of Agentic AI

Proposes Mean Time to Understand (MTU) as a core SLO for identity governance in agentic AI, reframing authorization around intent comprehension.

Widely used Trivy scanner compromised in ongoing supply-chain attack

Hackers have compromised virtually all versions of Aqua Security’s widely used Trivy vulnerability scanner in an ongoing ...
The Hacker News

Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure

Langflow CVE-2026-33017 exploited in 20 hours after disclosure, enabling RCE via exec(), exposing systems before patching ...