eWeek

LangChain AI Vulnerability Exposes Millions of Apps

A critical LangChain AI vulnerability exposes millions of apps to theft and code injection, prompting urgent patching and ...
Hackaday

This Week In Security: PostHog, Project Zero Refresh, And Thanks For All The Fish

There’s something immensely satisfying about taking a series of low impact CVEs, and stringing them together into a full exploit. That’s the story we have from [Mehmet Ince] of ...
TMCnet

Constructive Launches pgpm: Modular Postgres for Large-Scale Application Development

SAN FRANCISCO, Dec. 17, 2025 /PRNewswire/ -- Constructive, the open-source modular Postgres platform, today announced the ...
Cyber Defense Magazine

From Noise to Signal: Making Static Application Security Testing (SAST) Work for Devs

In 2025, the average data breach cost in the U.S. reached $10.22 million, highlighting the critical need for early detection of security issues. This ...
FedScoop

NIH database needs cybersecurity improvements, watchdog finds

The National Institutes of Health didn’t ensure that the entity housing personal health information of over 1 million people — including biosamples — implemented proper cybersecurity protocols, ...
Bleeping Computer

SAP fixes hardcoded credentials flaw in SQL Anywhere Monitor

SAP has released its November security updates that address multiple security vulnerabilities, including a maximum severity flaw in the non-GUI variant of the SQL Anywhere Monitor and a critical code ...
SecurityWeek

SAP Patches Critical Flaws in SQL Anywhere Monitor, Solution Manager

Enterprise software maker SAP on Tuesday announced the release of 18 new and one updated security note as part of its November 2025 security patches. The most important of SAP’s November 2025 notes ...
Ars Technica

Trump admin says Social Security database wasn’t “leaked, hacked, or shared”

The Trump administration yesterday issued a lengthier denial of a whistleblower’s allegation that DOGE officials at the Social Security Administration (SSA) copied the agency’s database to an insecure ...
Computerworld

For September, Patch Tuesday means fixes for Windows, Office and SQL Server

This month’s collection of fixes from Microsoft includes 86 patches — but at least there were no zero-day bugs. Microsoft released 86 patches this week with updates for Office, Windows, and SQL Server ...
IEEE

Intelligent Anomaly Detection in Database Security: A Triple-Loop Learning Framework

Abstract: Relational Database Management Systems (RDBMSs) are foundational to operations across finance, healthcare, and government sectors. However, they remain susceptible to advanced threats such ...
Time

Millions of Americans’ Social Security Data Put at Risk by DOGE, a Whistleblower Says. Here’s What to Know

The seal of the Social Security Administration outside the agency's headquarters in Woodlawn, Maryland, on Wednesday, Feb. 19, 2025. The seal of the Social Security Administration outside the agency's ...
Mashable

Did Elon Musk's DOGE copy the entire Social Security database to an insecure cloud system? A whistleblower says it did.

A whistleblower has come forward with troubling information regarding DOGE's handling of Americans' Social Security data. Credit: Samuel Corum/Getty Images The Social Security Administration's Chief ...