Security · Supply Chain
In May 2026, a worm named Mini Shai-Hulud poisoned npm, PyPI, and Docker Hub packages, stole 3,800 GitHub repositories, and exposed the open-source supply chain's biggest vulnerability: real signing keys can belong to fake publishers.
Identity · Authentication
Microsoft's removal of Edge's master password after a disclosure fight exposes the uneven passwordless transition: 5 billion passkeys are in use, but enterprise adoption lags at 30%.
From ChatGPhish to Anthropic's browser agent hijacks, a series of 2026 revelations underscore the growing LLM vulnerability landscape that no vendor has patched.
Within eight weeks, Anthropic and OpenAI released free AI reasoning scanners, Invicti introduced DAST-to-SAST correlation, and Waratek embedded runtime verification in IDEs, converging the three pillars of application security testing at pipeline speed.
As vendors race to connect static, dynamic, and runtime security into a single application security triad, Invicti’s new DAST-to-SAST correlation aims to trace vulnerabilities to source code and test whether these integrations hold up under real workload pressure.
Security · Threat Surface
The new threat surface moves from guardrails to agent actions, as a single prompt injection can hijack coding agents to exfiltrate secrets, push malicious code, and delete databases, yet the disclosure machinery lags behind.
Security · Threat Surface
With six coding agents breached in nine months and Google disrupting the first AI-developed zero-day, the common thread is a prompt injection attack surface invisible to identity and access management systems.
Security · Threat Economy
Fewer ransomware victims are paying, but groups are now targeting industrial sectors and running fraud operations, creating new disclosure gaps in industries that have never faced cyber reporting rules.
Application Security · Testing
As Invicti's correlation engine maps runtime vulnerabilities to source code, AI reasoning models from Anthropic and OpenAI enter static analysis, accelerating the convergence of AppSec testing tools.
Application Security · Testing Tools
Invicti's runtime-to-source correlation engine and free LLM-based scanners from Anthropic and OpenAI are reshaping application security faster than industry terminology can keep pace.
Software · Application Security
After two decades of separate vulnerability findings from static and dynamic testing, three 2026 announcements from Invicti, Anthropic, OpenAI, and Theori use AI and pipeline-speed correlation to finally reconcile them.
Security · Disclosure
Ransomware-as-a-service platforms lower the barrier to entry as a negotiator pleads guilty to colluding with BlackCat, exposing the growing chasm between breach detection and public disclosure.
Application Security · Testing
With Invicti's April 2026 release and free LLM code scanners from Anthropic and OpenAI, a decade of frustration over disjointed application security testing is giving way to rapid integration, making runtime-to-source correlation a likely industry standard.
Security · AI Threat Surface
Google's security team scanned billions of web pages and found active payloads targeting enterprise AI agents, revealing a vast attack surface of crude but effective threats that defenders are racing to secure.
Security · Supply Chain
Trojanized password managers and AI-generated malware injected into open-source registries have rewritten the threat model for any organization running npm install, according to the April 2026 attack wave.
Security · Supply Chain
From a backdoored Daemon Tools installer to a Linux RAT that steals SSH keys, attackers are now targeting developer workstations to steal code-signing credentials and push trusted updates.
Security · Threat Economy
As ransomware payments decline, the ransomware-as-a-service model is giving way to straight fraud, forcing regulators to rethink breach disclosure rules.
Security · Threat Surface
Capsule Security's retest of a Microsoft-patched Copilot Studio agent proved that prompt injection still exfiltrates data, exposing the same attack surface across AI coding agents, autonomous SOC tools, and web-navigating assistants.
Software · Security
A malicious package in the @next-auth/* namespace was downloaded 1.4 million times between February 8 and April 26. The disclosure timeline matters more than the payload.