Center for Strategic and International Studies

What Is Maven Smart System, and What Does It Do?

Matt Mande and Gregory C. Allen provide a detailed overview Maven Smart System, the AI-powered software platform that has ...
Tech Times

AI vs AI Cybersecurity: Sysdig Documents First LLM-Agent Intrusion in the Wild

AI vs AI cybersecurity arrived in documented form on May 10, when an LLM agent drove a four-pivot intrusion to database exfiltration in under an hour with no human direction. CrowdStrike data puts ...

Open-source security is a mess - IBM and Red Hat bet $5 billion and 20,000 engineers can fix it

Project Lightwell is an AI‑powered initiative to find and fix vulnerabilities in open-source software at an industrial scale. Here's what we know so far.
InfoWorld

IBM and Red Hat want to become the ‘security clearinghouse’ for open source applications in the enterprise

The $5 billion Project Lightwell initiative combines AI systems with 20,000 engineers to deliver validated fixes directly ...

Iranian government, not hacktivist group, breached LA Metro system, security firm says

A report by Israel-based Gambit Security dismisses the hackers’ claims of being patriotic but unaffiliated activists.

Millions of AI agents imperiled by critical vulnerability in open source package

Millions of AI agents and tools around the world have been imperiled by a critical vulnerability that can allow hackers to ...
Dark Reading

For Enterprises, Security Remains Agentic AI's Biggest Challenge

Every company may need an agentic AI strategy, but the tools to allow frameworks such as OpenClaw to be securely used have ...
CSO Online

Project Glasswing has uncovered 10,000 vulnerabilities: Anthropic

This means organizations that still treat patching as a quarterly exercise are operating with materially more risk than they ...
financefeeds

How to Code Crypto Projects With Python and Solidity

Solidity remains the dominant smart contract language for Ethereum and EVM-compatible chains, with the 2025 developer survey collecting responses from developers across eighty-seven different ...
Mashable

Anthropic limits access to AI that finds security flaws, realizing hackers may use it for exactly that

The story goes like this: Anthropic creates Claude Mythos, an AI model that's great at identifying security flaws in software. Due to security issues within Anthropic's own content management system ...

Protect your enterprise now from the Shai-Hulud worm and npm vulnerability in 6 actionable steps

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious versions anyway. The CI/CD Trust-Chain Audit Grid maps the six gaps it ...