%term

Internet Exposure as a Critical Layer of Context in Vulnerability Management

Feb 24, 2026 By Ryan Cribelar In Nucleus

During a recent video interview, we spent time unpacking a deceptively simple question: what actually makes a vulnerability critical? Severity scores, exploitability, and asset importance all factor into the answer. But one layer of context consistently changes the urgency of a finding more than most teams expect: internet exposure. The difference between a vulnerability that exists and one that matters often comes down to whether an attacker can reach it.

Read Post

Nucleus

Read more about Internet Exposure as a Critical Layer of Context in Vulnerability Management

Internet Exposure - A Factor in Risk Management

Feb 24, 2026 By Nucleus Security In Nucleus

R&D Engineer Ryan Cribelar explains how internet exposure is a factor in risk management related to vulnerabilities and exposures.

View Video

Nucleus

Read more about Internet Exposure - A Factor in Risk Management

The Rise of the AI Security Engineer: A New Discipline for an AI-Native World

Feb 24, 2026 By Manoj Nair In Snyk

We are witnessing the birth of a new profession in the blend of security engineering and security operations, a discipline that didn't exist five years ago because the systems it protects didn't exist five years ago. As artificial intelligence moves from experimental to essential and agentic systems begin to perceive, reason, act, and learn autonomously, we need defenders who can operate at the same velocity. I'm talking about the AI Security Engineer.

Read Post

Snyk

Read more about The Rise of the AI Security Engineer: A New Discipline for an AI-Native World

When Trusted Tools Turn Against You

Feb 24, 2026 By Fernando Gomez In CISO Global

The Notepad++ incident is a reminder that the tools we use to build our businesses can also be used to break them.

Read Post

CISO Global

Read more about When Trusted Tools Turn Against You

OAuth security guide: Flows, vulnerabilities and best practices

Feb 24, 2026 By Phil Condon In Sentrium

OAuth is a commonly used authorisation framework, that allows websites and web applications to request limited access to a user’s account on another application. Users can grant this limited access to their account, without ever needing to expose their password with the requesting website or application. This is commonly seen with sites that allow you to log in with popular accounts such as a social media login, Microsoft or Google account.

Read Post

Sentrium

Read more about OAuth security guide: Flows, vulnerabilities and best practices

Claude Code Security: A Welcome Evolution in the Remediation Loop

Feb 23, 2026 By Manoj Nair In Snyk

AI accelerates discovery — but enterprise trust still depends on deterministic validation, remediation automation, and governance at scale. Last Friday, Anthropic launched Claude Code Security, powered by Opus 4.6, inside Claude Code. The demo is impressive: Frontier AI reasoning scanned open source codebases and surfaced over 500 previously unknown high-severity vulnerabilities — including subtle heap buffer overflows that had survived decades of expert review and fuzzing.

Read Post

Snyk

Read more about Claude Code Security: A Welcome Evolution in the Remediation Loop

Generate and email real time vulnerability reports from Socket

Feb 23, 2026 By Tines In Tines

In less than 5 minutes, you'll learn how to set up a no-code automated workflow that generates and emails real-time vulnerability reports from Socket using the Tines Story library.

View Video

Tines

Read more about Generate and email real time vulnerability reports from Socket

Cursor Composer 1.5 is Here: Is It Actually Better?

Feb 23, 2026 By Snyk In Snyk

Is Cursor’s new Composer 1.5 model a major leap forward, or just a marginal update? Today, we’re putting the latest version of Cursor’s agentic AI to the test using our "Production-Ready Note App" prompt. We compare the speed, UI design, and agentic capabilities of 1.5 against version 1.0. Most importantly, we run a full security audit using the Snyk extension to see if the AI-generated code is actually safe for production.

View Video

Snyk

Read more about Cursor Composer 1.5 is Here: Is It Actually Better?

AI vs. Security: It's a Hit or Miss

Feb 22, 2026 By Snyk In Snyk

AI vs. Security: It’s a Hit or Miss.

View Video

Snyk

Read more about AI vs. Security: It's a Hit or Miss

Vulnerability Remediation: Key Steps for Securing Your Systems

Feb 20, 2026 By SafeAeon Inc. In SafeAeon

Vulnerability remediation is an important way to keep systems safe from possible attacks in a world where cybersecurity is always changing. Since cyberattacks are becoming more common, finding and fixing system flaws is no longer a choice; it's a must. One security hole that isn't fixed can lead to large-scale data breaches that cost businesses millions of dollars.

Read Post