06/06/2026

How to defend your webserver against vibe-coded AI exploit scanners and bots

Half of all web traffic is bots, and a growing slice are vibe-coded AI scanners written by a chatbot prompt. Here is the five-layer defense in depth that stops them: rate limiting, WAF, TLS hardening, request validation, access control, PHP and Docker hardening, plus the patching that does the most work.

Read more →
05/24/2026

Curl Patches Record Number of AI-Found Vulnerabilities (And Anthropic Mythos Barely Helped)

Curl is shipping a record-breaking security release after AI tools dredged up eleven vulnerabilities — including its oldest bug ever. So why did Anthropic mysterious Mythos model only find one tiny issue? Let us unpack the whole story.

Read more →