Application securityApple fixes zero-day that exploited OS bug in open-source codeSteve ZurierFebruary 12, 2026Apple patches exploited zero-day in open-source component across iOS, macOS, watchOS.
Application securityWhy AISPM isn’t enough for the agentic eraShahar TalFebruary 12, 2026AISPM falls short as AI agents act autonomously, requiring runtime governance and agentic SPM controls.
Application securityConduent case breaks open after Volvo reports third-party compromiseSteve ZurierFebruary 11, 2026Conduent incidents reveal how third-parties must move to a disclosure-first model.
Application securityAIBOM generator finds new home at OWASP to boost AI transparencyOWASP GenAI Security Project Team February 10, 2026AIBOM Generator joins OWASP, advancing community-led AI supply chain transparency and security.
Application securityMost organizations had a third-party breach in the last yearLaura FrenchJanuary 28, 2026Respondents report third party risk assessments take several months and only cover a fraction of vendors.
Security OperationsSix JavaScript zero-day bugs lead to fears of supply chain attackSteve ZurierJanuary 27, 2026Tools used to protect users in the aftermath of Shai-Hulud may no longer work, security pros say.
Security OperationsMagecart network targeted Amex, Diners Club, MasterCard since 2022Steve ZurierJanuary 13, 2026Experts point out that Magecart attacks exploit third-party scripts on web browsers, bypassing traditional security controls.