Dark Reading

OWASP Highlights Supply Chain Risks in New Top 10 List

Security misconfiguration jumped to second place as organizations improve defenses against traditional coding flaws.

Forrester: Gen AI is a chaos agent, models are wrong 60% of the time

Forrester warns AI is cybersecurity’s "new chaos agent": 45% of AI-generated code ships with critical vulnerabilities, ...
SecurityWeek

Two New Web Application Risk Categories Added to OWASP Top 10

OWASP has released a revised version of its Top 10 list of critical risks to web applications, adding two new categories.

OWASP Top 10 updated after four years, with many of the same concerns still impacting applications

The OWASP Foundation has revealed the first Release Candidate for the 2025 OWASP Top 10, ranking critical security concern for developers.
The Register on MSN

OWASP Top 10: Broken access control still tops app security list

Risk list highlights misconfigs, supply chain failures, and singles out prompt injection in AI apps The Open Worldwide ...
SecurityWeek

Critical WatchGuard Firebox Vulnerability Exploited in Attacks

A recent critical-severity vulnerability in WatchGuard Firebox firewalls has been exploited in the wild, the US cybersecurity ...