• We’re so glad you’re here. • You can expect all the best TNS content to arrive Monday through Friday to keep you on top of the news and at the top of your game. • Check your inbox for a confirmation email where you can adjust your preferences and even join additional groups. • Follow TNS on your favorite social media networks. • Become aTNS follower on LinkedIn. • Check outthe latest featured and trending storieswhile you wait for your first TNS newsletter.
Article Summaries:
- AI agents are rapidly outpacing human researchers in finding software vulnerabilities, reshaping application security (AppSec) practices. In 90 days, XBOW, an autonomous AI penetration tester, logged over 1,060 valid bugs-more than 560 in 2025 alone-leading to 130 critical fixes via HackerOne. Meanwhile, JPMorgan’s Auspex system uses generative AI and “tradecraft prompting” to produce threat matrices from architecture diagrams in minutes, cutting traditional modeling timelines from weeks to minutes. These developments highlight the need for AppSec teams to reallocate resources from manual code review to integrating AI tools, thereby scaling coverage and reducing security debt.
- AI agents are rapidly outpacing human teams in discovering software vulnerabilities, prompting a shift in application security practices. Autonomous tools such as XBOW have topped HackerOne’s US leaderboard, submitting over 1,060 vulnerabilities in 90 days and resolving 130 critical issues, while AI‑driven threat‑modeling systems like JPMorgan’s Auspex can generate comprehensive threat matrices in minutes. These developments highlight the need for AppSec teams to reallocate resources from manual code reviews to integrating AI into development workflows, reducing backlogs and accelerating vulnerability remediation. The trend underscores that AI is becoming a core component of modern security operations.
Sources: