Enterprise Security Tech

Within a single workday, a routine npm install turned into a supply chain incident that is now reverberating across the open source and AI security communities, according to an analysis from Michael Bargury, CTO of Zenity . The maintainers of Cline disclosed that version 2.3.0 of the Cline CLI was published to npm with unauthorized modifications. For roughly eight hours, developers who installed the package also pulled code associated with the OpenClaw ecosystem due to a mali

A widely downloaded mobile app called Chat & Ask AI has exposed what may be one of the largest known leaks of private AI chatbot conversations to date. An independent security researcher says the app left hundreds of millions of user messages publicly accessible online, including deeply sensitive and, in some cases, dangerous requests. Chat & Ask AI has surpassed 50 million installs across the Google Play Store and Apple App Store, positioning it as one of the most popular t

Volvo Group North America operates as the Swedish conglomerate’s commercial vehicle and industrial equipment arm across the United States, Canada, and Mexico. Its portfolio includes trucks, buses, construction equipment, engines, and industrial power systems, as well as iconic U.S. brands such as Mack Trucks. The group is separate from Volvo Cars, which produces consumer passenger vehicles. According to regulatory disclosures and customer notifications, attackers compromised

We sat down with Jon David of NR Labs  to challenge one of security’s most entrenched assumptions: that passing a pentest means you’re safer. Drawing on years of frontline breach response, David explains why traditional, vulnerability-centric testing no longer reflects how modern attackers actually operate, and why resilience today depends on understanding attack paths, identity abuse, and architectural weak points. David explores how organizations can move beyond compliance

For a brief moment, OpenClaw looked like the future of personal computing. One persistent AI agent. One conversational thread. A digital butler that moves seamlessly between WhatsApp, Slack, Telegram, and email, with the authority to act instead of merely advise. It can clean up servers, push code, reply to messages, book dinners, and rummage through files with the same casual confidence as a trusted colleague. That promise has helped make OpenClaw the fastest-growing AI tool

Tenable security researchers have uncovered a pair of previously unknown vulnerabilities in Google Looker  that, when chained together, could allow attackers to take complete control of a Looker instance and, in cloud environments, potentially reach across customer boundaries. The flaws were were responsibly disclosed through Google’s Cloud Vulnerability Reward Program , and patched on Google-managed systems. The risk now falls squarely on organizations that run Looker them