The tools and workflows of penetration testing have evolved steadily over the past decade, but a recent shift feels more like a paradigm change than an incremental upgrade. Kali Linux — the distribution many security professionals rely on for reconnaissance, scanning, and exploitation — has been connected to a large language model via the open Model Context Protocol (MCP). The
When AI Agents Overload the Cloud: What Happened with Google’s Antigravity and Third-Party Wrappers
Google recently moved to suspend a number of customer accounts after heavy autonomous usage of its Antigravity agent development backend and Gemini services was observed when those services were used through third‑party agent wrappers such as OpenClaw and OpenCode. The suspensions—reported to affect customers from high‑spend AI Ultra subscribers to smaller accounts—have raised immediate concerns among developers who say they
OpenClaw 2026.2.23 — Security-First Upgrade Meets Expanded Multi‑Model AI Support
OpenClaw’s 2026.2.23 release is one of those updates that signals the project maturing from a fast-moving, feature-first AI assistant into a hardened platform ready for production gateways and privacy-conscious deployments. Tagged by steipete and contributed to by dozens of maintainers, this version balances pragmatic security hardening with meaningful AI improvements: support for Claude Opus 4.6 via the Kilo gateway, improved
Urgent Patching Required: Multiple VMware Aria Vulnerabilities Enable Remote Code Execution and Privilege Escalation
VMware’s Aria Operations — a cornerstone for many organizations’ cloud and infrastructure management — was thrust into the spotlight this week after Broadcom published VMSA-2026-0001, detailing three significant vulnerabilities. These flaws range from command injection that can lead to full remote code execution, to stored cross-site scripting that enables administrative actions, and a privilege escalation path from vCenter to Aria
OpenAI’s Next Frontier: Smart Speakers, Glasses, and the Hardware Bet on Everyday AI
The idea that artificial intelligence lives only in the cloud or behind a chat window is changing. OpenAI—best known for conversational models that scale across apps and businesses—is reportedly building a family of physical devices, starting with a smart speaker and potentially expanding into smart glasses and even a smart lamp. This move represents a pivotal moment in how AI
SYSTEM at Risk: How a Splunk DLL Search-Order Flaw Lets Local Users Escalate Privileges
Splunk is a cornerstone of many security and operations teams, trusted to ingest, index, and analyze machine data across the enterprise. That trust makes any vulnerability in Splunk especially consequential. In February 2026 Splunk disclosed a high-severity Windows-specific vulnerability (CVE-2026-20140) that allows a low-privileged local user to perform a DLL search-order hijacking attack and gain SYSTEM-level privileges. The mechanics are