Application Security News – SecurityWeek Cybersecurity News, Insights & Analysis
- API Threats Grow in Scale as AI Expands the Blast Radius
by Kevin Townsend on February 17, 2026 at 2:00 pmNew research shows attackers increasingly abusing APIs at machine speed as AI-driven systems widen exposure and amplify impact. The post API Threats Grow in Scale as AI Expands the Blast Radius appeared first on SecurityWeek.
- Zast.AI Raises $6 Million for AI-Powered Code Securityby Ionut Arghire on February 11, 2026 at 1:29 pm
The startup relies on AI agents to identify software vulnerabilities and validate them before reporting. The post Zast.AI Raises $6 Million for AI-Powered Code Security appeared first on SecurityWeek.
- Backslash Raises $19 Million to Secure Vibe Codingby Ionut Arghire on February 10, 2026 at 2:01 pm
The company will use the investment to expand its R&D team and operations, deepen platform capabilities, and scale go-to-market presence. The post Backslash Raises $19 Million to Secure Vibe Coding appeared first on SecurityWeek.
- VS Code Configs Expose GitHub Codespaces to Attacksby Ionut Arghire on February 5, 2026 at 1:41 pm
VS Code-integrated configuration files are automatically executed in Codespaces when the user opens a repository or pull request. The post VS Code Configs Expose GitHub Codespaces to Attacks appeared first on SecurityWeek.
- Rein Security Emerges From Stealth With $8M, Bringing Inside-Out AppSec Approachby Kevin Townsend on January 28, 2026 at 1:00 pm
Rein aims to close the production visibility gap by stopping attacks inside the application runtime. The post Rein Security Emerges From Stealth With $8M, Bringing Inside-Out AppSec Approach appeared first on SecurityWeek.
- Cyber Insights 2026: API Security โ Harder to Secure, Impossible to Ignoreby Kevin Townsend on January 21, 2026 at 12:00 pm
API cybersecurity will be a ping pong ball, battered between the rackets of AI-assisted attackers and AI-assisted defenders. The post Cyber Insights 2026: API Security โ Harder to Secure, Impossible to Ignore appeared first on SecurityWeek.
- Vibe Coding Tested: AI Agents Nail SQLi but Fail Miserably on Security Controlsby Kevin Townsend on January 15, 2026 at 5:19 pm
Vibe coding generates a curateโs egg program: good in parts, but the bad parts affect the whole program. The post Vibe Coding Tested: AI Agents Nail SQLi but Fail Miserably on Security Controls appeared first on SecurityWeek.
- Aikido Security Raises $60 Million at $1 Billion Valuationby Eduard Kovacs on January 14, 2026 at 6:01 pm
The developer security company has raised a total of more than $84 million in funding. The post Aikido Security Raises $60 Million at $1 Billion Valuation appeared first on SecurityWeek.
- Shai-Hulud Supply Chain Attack Led to $8.5 Million Trust Wallet Heistby Ionut Arghire on December 31, 2025 at 11:58 am
The worm exposed Trust Walletโs Developer GitHub secrets, allowing attackers to publish a backdoor extension and steal funds from 2,520 wallets. The post Shai-Hulud Supply Chain Attack Led to $8.5 Million Trust Wallet Heist appeared first on SecurityWeek.
- MITRE Releases 2025 List of Top 25 Most Dangerous Software Vulnerabilitiesby Ionut Arghire on December 12, 2025 at 12:00 pm
XSS remains the top software weakness, followed by SQL injection and CSRF. Buffer overflow issues and improper access control make it to top 25. The post MITRE Releases 2025 List of Top 25 Most Dangerous Software Vulnerabilities appeared first on SecurityWeek.
