Capital One releases VulnHunter: an AI code security agent, open source
Capital One is launching VulnHunter, an agentic security tool, on July 17 - the bank is contributing to the sec + agents ecosystem.
2 h ago 4 5
Capital One is launching VulnHunter, an agentic security tool, on July 17 - the bank is contributing to the sec + agents ecosystem.
2 h ago 4 5
The Singaporean startup pQCee raises $3.9 M in post-quantum cybersecurity. Small ticket, big signal: the PQC transition is no longer waiting for the quantum deadline.
10 h ago 10 12
An expert digest published by Medianama lists ten structural flaws in Indian cybersecurity. After Reliance/Kudankulam, the question shifts from incidents to roots.
10 h ago 7 7
MIT Technology Review documents the rise of the risk of sabotage of weather data. An invisible critical infrastructure whose AI models - climate, energy, agricultural - become the downstream.
10 h ago 6 6
The Pragmatic Engineer documents that the Grok CLI uploads files from the development machine to the xAI cloud - beyond the prompted context. An agent CLI is not a local binary, it's a client-server that exfiltrates by default.
yesterday 8 8
Two recent incidents documented by InfoQ - an AWS key theft and an agent released without a ceiling - summarize the guardrail gap: the spending speed of an agent is that of a script, but the billing alert speed remains that of a human.
yesterday 7 9
The 2019 Kudankulam intrusion went through a contractor. Seven years later, the entry point may still be the same.
yesterday 7 8
OpenAI has built GPT-Red, a purpose-built model to probe prompt injection vulnerabilities, per Tech in Asia. Two things happen when you name your red-team model: you signal a discipline, and you create a market.
yesterday 9 9
A Microsoft confirmation, revealed in an FBI court case, describes a persistent machine identifier across reinstallations and without opt-out. The political surface is larger than the technical surface.
Jul 15, 2026 at 19:28 8 9
An article synthesizes the state of voice cloning attacks: zero cost for the attacker, impossible detection for a human, and vectors multiplied. Technical defenses exist - they are not deployed.
Jul 15, 2026 at 19:28 9 6
After the product bricks MCP around agent memory, the security counterpart arrives: a ticket promoted to the front page of HN documents exfiltration via the memory layer. The conceptual flaw is not in the model, it is in the product layer.
Jul 15, 2026 at 12:34 11 11
Trend Micro is pushing a security offering in Korea backed by its partnerships with Anthropic and OpenAI. The real signal is not the geography: it's the strategy of inserting provider models through the sector integrator.
Jul 15, 2026 at 12:34 12 7