Supply Chain Security stories

Constructive launches secure-by-default Postgres platform to hardwire Row-Level Security and permissions into databases from creation.

Chainguard tops 500m container manifests as AI-powered DriftlessAF ‘software factory’ scales secure open-source image production.

Tenable warns ‘LookOut’ flaws in Google Looker could hand attackers server control, expose secrets and enable cross-tenant cloud access.

Moltbook left a Supabase key exposed, leaking AI chats, 30,000 emails and 1.5 million API keys in a cautionary tale of vibe coding risk.

CIQ’s Rocky Linux NSS gains NIST CAVP for post-quantum ML-KEM and ML-DSA, marking key stride towards FIPS 140-3 cryptographic validation.

Developers granting AI agents broad, unsupervised access to code and systems are creating new software supply chain and data exposure risks.

Most firms suffered AI-linked cyber incidents last year, yet many still rate their security as above average amid a widening skills gap.

ENCS and DIVD have agreed a new cyber pact to uncover and disclose vulnerabilities in Europe’s high-impact energy and critical systems.

EnSilica has joined the CHERI Alliance, aiming to embed hardware memory safety in custom chips for industrial, automotive and IoT systems.

DryRun launches DeepScan Agent, an AI tool that scans whole codebases in hours to rank real-world security risks and speed remediation.

Tenable warns critical Google Looker flaws could enable server takeover and data theft, leaving unpatched self-hosted deployments exposed.

SUSE has launched a 20-minute cloud sovereignty self-assessment for APAC firms, benchmarking them against the 2025 EU framework.

AI, quantum threats and tougher regulation will reshape cyber strategies by 2026, forcing new governance, identity models and SOC workflows.

RapidFort secures USD $42m Series A to scale automated software supply chain security and continuous vulnerability remediation.

Radware launches Agentic AI Protection to secure autonomous agents at runtime, tackling prompt injection, tool abuse and data exposure risks.

Security Journey launches AI-era developer manifesto and revamped platform to embed secure coding into everyday workflows and tooling.

A security lapse at AI agent service Moltbook exposes risky default database settings, raising fresh alarms over agentic system safeguards.

Netpoleon partners with Hack The Box to deliver hands-on cyber skills training and readiness tools to address ANZ’s growing security gap.

West Midlands tech firm Hubtel urges ministers to make the new Cyber Bill agile enough to counter rapidly evolving AI-driven cyber threats.

Australia’s GBP £270 billion health system eyes 2026 as the year disciplined, trusted digital engineering turns AI and data into safer care.