Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Daniel Pouzzner from wolfSSL has challenged us to find 3 more vulnerabilities in the wolfSSL library, after we found the first one in October 2024. We weren't quite able to find three, but here are the additional two that we found: Both vulnerabilities were fixed in wolfSSL version 5.8.0, released on 24 April 2025. The fuzz tests that found these vulnerabilities were generated by our AI Test Agent.

The EU AI Act is the most comprehensive law in the world to regulate artificial intelligence. This law doesn’t just apply to organizations inside the European Union, it also affects anyone doing business with the EU or offering AI-powered services in that market. If you use AI tools like ChatGPT, Copilot, Jasper, or Bard for automation, reporting, or client communication, yes, then definitely this applies to you.

Grok is a chatbot developed by Elon Musk’s xAI. It was initially released to select individuals in November 2023 and became generally available to all X (formerly Twitter) users in December 2024. With the release of Grok-3 in February, Grok’s popularity rose rapidly. However, that rise was short-lived, and its user base in the enterprise has plateaued. At the same time, many organizations took a defensive stance to block the new app pending their own security and AI governance reviews.

In a bold move aimed at safeguarding its AI ecosystem, OpenAI recently disabled several ChatGPT accounts linked to Russian, Chinese, and Iranian threat actors. These malicious entities exploited the chatbot’s capabilities to aid malware development, launch social media influence campaigns, and probe U.S. satellite communications infrastructure.

As the global cyber threat landscape continues to evolve, the latest cybersecurity executive order from the Trump administration is making waves—setting new priorities while reversing some of the cornerstone initiatives from previous administrations. The new directive pivots away from centralized federal control and compliance-heavy practices, placing a sharper focus on AI innovation, post-quantum cryptography, and software security by design.

MCP adoption is surging across industries, fundamentally reshaping how systems connect to AI models. By establishing a universal protocol for data exchange, MCP simplifies integration complexity, empowering developers to build sophisticated AI capabilities in a fraction of the traditional development time. However, this streamlined connectivity to AI tools introduces significant security risks.