Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

13 headlines in this view

Refine the feed

Search across headline titles and summaries.

Volume over time

Weekly headline count for the current query.

Showing 13 most recent headlines Filtered view

Blames outfit called Context.ai, which reckons an agentic OAuth tangle caused the incident Vercel, the company that created the open source Next.js web development framework, has a data leak that led to compromise of some customer credentials, and blamed an outfit called Context.ai for the mess.…

Fraud Specialist David Barnhardt on Addressing Authentication Risks of Agentic AIFinancial institutions are racing to deploy AI agents that can initiate payments, approve transactions and freeze accounts. But traditional authentication frameworks assume there's a human on the other end. As agentic AI use grows, banks are facing an authentication crisis that demands new controls.

Bank Info Security 5 months, 1 week ago

Banks Face Dual Authentication Crisis From AI Agents

Experts Advise Moving From Verifying Identities to Knowing Agent IntentionsFinancial institutions are rushing to deploy AI agents capable of autonomously initiating transactions, approving payments and freezing accounts in real time. But AI agents are creating a "dual authentication crisis" that traditional security frameworks cannot address.

Trend Micro Research, News and Perspectives 7 months, 2 weeks ago

Critical React Server Components Vulnerability CVE-2025-55182: What Security Teams Need to Know

CVE-2025-55182 is a critical (CVSS 10.0) pre-authentication remote code execution vulnerability affecting React Server Components used in React.js, Next.js, and related frameworks (see the context section for a more exhaustive list of affected frameworks).

Bank Info Security 1 year, 6 months ago

Prove Purchases Portabl to Advance Identity Authentication

Acquisition Boosts Standardized Consent Frameworks, Identity Data InteroperabilityProve’s acquisition of Philadelphia-based startup Portabl focuses on enhancing interoperability and reusable identity solutions. The move supports emerging industry standards, bridging gaps between identity verification, authentication, and payments for seamless customer experiences.

Bank Info Security 1 year, 10 months ago

ColorTokens Strengthens Zero Trust With PureID Acquisition

PureID Passwordless Authentication Tool Will Boost ColorTokens MicrosegmentationColorTokens purchased PureID, expanding its zero trust framework with identity-based segmentation for cloud and hybrid environments. The acquisition focuses on securing cloud applications, microservices and APIs through advanced identity-based authentication.