SAP Patchday: One critical SQL injection vulnerability – and 18 others

On the April Patchday, SAP addresses vulnerabilities with 19 security notes. One critical vulnerability allows the injection ...
Security Boulevard

Attacking the MCP Trust Boundary

Every secure API draws a line between code and data. HTTP separates headers from bodies. SQL has prepared statements. Even email distinguishes the envelope from the message. The Model Context Protocol ...
PharmTech

Hidden Liability: Why Legacy Web Forms Put Life Sciences Organizations at Critical Risk

Legacy web forms used for clinical trial recruitment, adverse event reporting, laboratory data collection, and regulatory ...
CSO Online

April Patch Tuesday roundup: Zero day vulnerabilities and critical bugs

This month’s threat landscape is ‘defined by immediate, real-world exploitation rather than just theoretical vulnerabilities, ...
Security Boulevard

Why API Discovery Is the First Step to Securing AI

TL;DR AI risk doesn’t live in the model. It lives in the APIs behind it. Every AI interaction triggers a chain of API calls across your environment. Many of those APIs aren’t documented or tracked.

Leaked Client Data, Bigger Mistakes: Agentic AI's Hidden Risks for Legal Teams

Agentic AI tools present the possibility of substantial efficiency gains for legal teams, but the risks they pose require ...

Steroid injections for joint pain: everything you need to know about using them

While corticosteroid injections can be very effective at alleviating the pain and inflammation of osteoarthritis, they might ...
eWeek

Claude Beat ChatGPT 2-to-1 in Reader Poll (Here’s Why)

Claude beat ChatGPT in our reader poll, revealing how coding strength, workflow fit, and values are reshaping AI loyalty ...
The Hacker News

Google Patches Antigravity IDE Flaw Enabling Prompt Injection Code Execution

Antigravity Strict Mode bypass disclosed Jan 7, 2026, patched Feb 28, enables arbitrary code execution via fd -X flag.