The Next Web

Lovable left thousands of projects exposed for 48 days, and the vibe coding security crisis is only getting worse

Lovable's API exposed source code and database credentials for 48 days after the company closed a bug report. Up to 62% of AI ...

Hot AI startup Lovable's security stumble shows one big risk in vibe coding

A security flaw in Lovable's system allowed access to users' data and sparked online backlash over the startup's response.

Actively exploited Apache ActiveMQ flaw impacts 6,400 servers

Nonprofit security organization Shadowserver found that over 6,400 Apache ActiveMQ servers exposed online are vulnerable to ...
The Hacker News

Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain

The cybersecurity company said the systemic vulnerability is baked into Anthropic's official MCP software development kit ...
InfoQ

Google ADK for Java 1.0 Introduces New App and Plugin Architecture, External Tools Support, and More

Google's Agent Development Kit for Java reached 1.0, introducing integrations with new external tools, a new app and plugin ...

The hidden risks of vibe coding: 4 steps to protect your organization

You can’t be sure where that AI-generated code came from or what malware it might contain. These 4 steps help mitigate ...
CSO Online

Critical sandbox bypass fixed in popular Thymeleaf Java template engine

The 9.1-CVSS vulnerability enables attackers to circumvent RCE protections in the de facto template engine for the Java ...

Hackers are abusing unpatched Windows security flaws to hack into organizations

A security researcher published details of three security vulnerabilities in Windows Defender, and the code used to exploit ...

CISA flags Apache ActiveMQ flaw as actively exploited in attacks

CISA warned that attackers are now exploiting a high-severity Apache ActiveMQ vulnerability, which was patched earlier this ...

Using C Libraries in Java 1: Fundamentals of the Foreign Function & Memory API

The Foreign Function & Memory API in Java provides significantly easier access to functions in C libraries than the outdated ...

Azul Delivers Strong FY26 Momentum Fueled by Java Platform Innovation, Channel Expansion and a Growing Enterprise Java Ecosystem

Market demand for Azul driven by enterprise imperatives for performance, cloud cost optimisation, application modernisation and greater control over Java licensing costs Azul, the trusted leader in ...

Experts flag potentially critical security issues at heart of Anthropic MCP

Anthropic sees no issues - and says the tools are working as intended.