Communications of the ACM

Fifty Years of Open Source Software Supply-Chain Security

An open source software supply-chain vulnerability is an exploitable weakness in trusted software caused by a third-party, ...
Security Info Watch

Industry Influencer Q&A: Innovation at the Edge of Access Control

After decades in the industry, Mercury Security in the past year has embarked on a mission to transform traditional access ...
Security Info Watch

Industry Influencer Q&A: Access Control from an Integrated Perspective

Security end-users tend to approach hardware-based solutions like key cabinets and asset management lockers as singular ...

This Microsoft Entra ID Vulnerability Could Have Been Catastrophic

A pair of flaws in Microsoft's Entra ID identity and access management system could have allowed an attacker to gain access ...

This week in AI updates: OpenAI Codex updates, Claude integration in Xcode 26, and more (September 19, 2025)This week in AI updates: OpenAI Codex updates, Claude …

Codex, a variant of GPT-5 that is optimized for Codex, OpenAI’s AI coding agent. It was trained on real-world engineering ...

2025 Low-Code Platform Review: Categorization of Enterprise-Level Platforms, Lightweight Platforms, and Open-Source Platforms

Fanwei e-builder is an enterprise-level low-code development platform launched by Fanwei Network, providing a complete ...
Devdiscourse

Human oversight of AI exposed as new security risk

Attack surfaces are not limited to the AI systems themselves. Oversight can be compromised via communication channels, infrastructure, or the humans tasked with supervision. This includes poisoning ...