Guardian is an enterprise-level AI penetration testing tool by Zakir Kun on GitHub. It combines OpenAI GPT-4, Anthropic Claude, Google Gemini, and OpenRouter in a single multi-agent system for smart security assessments and thorough evidence collection. It employs four active agents: Planner, Tool Selector, Analyst, and Reporter. They collaborate on …
Read More »
OpenAI along with crypto firm Paradigm have launched EVMbench, a benchmark to assess AI agents’ skills in identifying, fixing, and exploiting serious vulnerabilities in smart contracts. EVMbench includes 120 curated vulnerabilities from 40 security audits, primarily from open code audit competitions on platforms like Code4rena. Three Evaluation Modes: EVMbench tests …
Read More »
CTM360’s new report, BaitTrap, reveals a global scam network using fake news sites called Baiting News Sites (BNS). These sites imitate reliable media brands to facilitate investment fraud, typically sending users to scams like Trap10 and Eclipse Earn. BNS campaigns target over 17,000 sites in 50 countries using paid …
Read More »
AutoPentestX is an open-source toolkit for automated penetration testing on Linux, allowing security assessments from one command. Created by Gowtham Darkseid and released in November 2025, it produces professional PDF reports and focuses on safe, non-destructive testing. AutoPentestX automates OS detection, port scanning, service enumeration, and vulnerability checks for Kali …
Read More »
A new framework dubbed Embedded Systems Threat Matrix™ (ESTM) was introduced to help secure embedded systems used in critical infrastructure and defense technologies across the U.S. Developed collaboratively with the Air Force’s Cyber Resiliency Office for Weapon Systems (CROWS). ESTM tackles a vital security issue by protecting essential systems from …
Read More »
Microsoft has announced a new Teams feature that will automatically show employee work locations based on their Wi-Fi connections, raising concerns about privacy and hybrid work practices. The new feature in Microsoft’s 365 Roadmap (Message ID MC1081568) will automatically update users’ work locations when they connect to their organization’s Wi-Fi …
Read More »
Fortinet customers are observing attackers exploiting a patch bypass for a previously fixed critical FortiGate authentication vulnerability (CVE-2025-59718) to hack patched firewalls. One affected admins said that Fortinet has allegedly confirmed that the latest FortiOS version (7.4.10) didn’t fully address this authentication bypass vulnerability, which should’ve been patched in early …
Read More »
In 2026, the data center sector stands at a decisive crossroads, driven by rapid advancements in AI, increasing energy constraints, and rising societal expectations for sustainability. These forces are fundamentally reshaping the industry’s priorities. Below, we explore the ten major trends shaping data centers. 1) AI and energy consumption: AI …
Read More »
The NSA has released the first two publications in its Zero Trust Implementation Guidelines series, offering practical recommendations for organizations to implement Zero Trust security. The initiative supports the use of technologies and processes in the Department of War CIO Zero Trust Framework. Foundational Documents Released: Released on January 8, …
Read More »
The Malaysian Investment Development Authority (MIDA) has started 2026 by focusing more on domestic investment, emphasizing execution and prioritizing results over approvals for a more people-oriented investment strategy. MIDA’s Chairman Tengku Datuk Seri Zafrul Tengku Abdul Aziz emphasized that in 2026, the focus will be on transforming approved investments into …
Read More »
InfoSecBulletin Cybersecurity for mankind