GoPlus Security stated that CoW Protocol routed a trade through a low-liquidity SLP pool instead of the optimal path, exposing potential vulnerabilities and manipulation risks. The pool was deployed by Aave and funded via Tornado Cash over five years ago, with GoPlus criticizing Aave’s frontend security protections. https://t.co/WzRhJCFeGd ...

We partnered with Mozilla to test Claude's ability to find security vulnerabilities in Firefox.Opus 4.6 found 22 vulnerabilities in just two weeks. Of these, 14 were high-severity, representing a fifth of all high-severity bugs Mozilla remediated in 2025. https://t.co/It1uq5ATn9 ...

🚨WARNING: X USER REVEALS #1 SKILL DOWNLOADED ON OPENCLAW WAS A MALWARE!According to a post by @Chiefofautism, the #1 most downloaded skill on the OpenClaw marketplace was allegedly malware designed to steal sensitive user data.OpenClaw operates a skill marketplace called ClawHub, where users can upload plugins that grant AI agents new capabilities.The post claims that marketplace safeguards were minimal, allowing accounts as new as one week old to publish packages.The post also claims that a top-ranked skil ...

Security Vulnerabilities - Google's AI code editor Antigravity shipped with security vulnerabilities [1] - The most severe vulnerability allows for a persistent backdoor on target systems [1] - The vulnerability was discovered within 24 hours of launch and remains unpatched [1]

Core Viewpoint - Palantir Technologies Inc.'s stock experienced a 7.5% decline following a report highlighting flaws in a battlefield communications system developed in collaboration with Anduril Industries Inc., which both companies have disputed as outdated and inaccurate [1][2]. Group 1: Stock Performance - The 7.5% drop marked the largest decline for Palantir since August, making it the worst performer in the S&P 500 for that day [3]. - Despite the recent decline, Palantir's shares have surged over 2,000% in the past three years [3]. Group 2: Report Details - The report referenced a September Army memo that raised concerns about Anduril's NGC2 prototype system, which includes contributions from Palantir and Microsoft Corp [2]. - Palantir's representative stated that "No vulnerabilities were found in the Palantir platform," indicating confidence in their technology [2]. Group 3: Army's Response - The Army's chief information officer confirmed that the issues with the NGC2 system were identified early and addressed promptly, stating that the problems were fixed in a controlled testing environment [2]. - Lieutenant General Jeth Rey emphasized the importance of identifying security vulnerabilities and noted that the risks were mitigated immediately, framing it as a positive outcome for future developments [4]. Group 4: Company Statements - Anduril asserted that the report reflects an outdated view of the program, stating that NGC2 is progressing through normal iterative development processes [5]. - Army CIO Leo Garciga highlighted the context of modernizing military technology, stressing the need for rapid delivery of new tools to soldiers [5].

Core Viewpoint - Palantir Technologies Inc.'s stock experienced a significant decline of over 8% following a report highlighting serious flaws in its battlefield communications system, which the company claims is outdated and inaccurate [1][2]. Company Response - Palantir stated that the issues raised in the report had already been addressed, emphasizing that no vulnerabilities were found in its platform [2]. - The company noted that the report was based on a September Army memo regarding Anduril's NGC2 prototype system, which includes Palantir as a subcontractor [2]. Stock Performance - The decline in Palantir's stock was the largest intraday drop since August, occurring after a remarkable increase of over 2,000% in the past three years [2]. Security Concerns - The Army's memo indicated vulnerabilities in the communications networks of Palantir and Anduril, citing risks from insider threats, external attacks, and data spillage, along with critical deficiencies in security controls [4]. - Lieutenant General Jeth Rey highlighted the importance of identifying security vulnerabilities during the integration of advanced technology, stating that risks were mitigated promptly [3]. Anduril's Position - Anduril also responded by stating that the issues mentioned in the report were outdated and that the NGC2 system is progressing through normal iterative development processes [5].

Security Vulnerabilities - AI tools possess inherent security vulnerabilities due to exposure to external content, access to private data, and communication capabilities with the outside world [1] - Mitigating these security risks is a complex challenge [1]

Security Enhancement - Claude Code introduces automated security reviews to identify vulnerabilities [1] - New features include a `/security-review` slash command for on-demand reviews [1] - GitHub Actions integration enables automatic security reviews on every pull request [1]