MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
startup
Recherche

The Hottest New Vibe Coding Startup May Be a Sitting Duck For Hackers

vendredi 30 mai 2025, 20:15 , par Slashdot
The Hottest New Vibe Coding Startup May Be a Sitting Duck For Hackers
Lovable, a Swedish startup that allows users to create websites and apps through natural language prompts, failed to address a critical security vulnerability for months after being notified, according to a new report. A study by Replit employees found that 170 of 1,645 Lovable-created applications exposed sensitive user information including names, email addresses, financial data, and API keys that could allow hackers to run up charges on customers' accounts.

The vulnerability, published this week in the National Vulnerabilities Database, stems from misconfigured Supabase databases that Lovable's AI-generated code connects to for storing user data. Despite being alerted to the problem in March, Lovable initially dismissed concerns and only later implemented a limited security scan that checks whether database access controls are enabled but cannot determine if they are properly configured.

Read more of this story at Slashdot.
Lire la suite sur Slashdot
https://it.slashdot.org/story/25/05/30/1810246/the-hottest-new-vibe-coding-startup-may-be-a-sitting-...

Voir aussi

startup ‘Undeniably New’ AI-Generated Interactive, Real-Time Video From Startup With Pixar Connection eWeek30 May
hackers ‘Undeniably New’ AI-Generated Interactive, Real-Time Video From Startup With Pixar Connection eWeek30 May
vulnerability Streaming: Duck's Breath Mystery Theatre's "STERLING" BoingBoing27 May
security A Starter Guide to Protecting Your Data From Hackers and Corporations Wired: Tech.26 May
user Five rules for coding with Booleans InfoWorld23 May
data 01net morning : retour sur Google I/O, la nouvelle Micra ressemble à la R5, OpenAI s’offre une startup de Jony Ive 01net22 May
database SEC Sues Crypto Startup Unicoin and Its Executives For Fraud Slashdot22 May
hottest OpenAI Acquires Jony Ive's Startup in $6.5 Billion Deal To Create AI Devices Slashdot21 May
are Microsoft-backed no-code AI startup files for bankruptcy ComputerWorld21 May
being GitHub unveils coding agent for GitHub Copilot InfoWorld20 May
coding OpenCVE : la startup française qui traque les failles pour sécuriser les entreprises Zataz20 May
may OpenAI launches Codex AI agent to tackle multi-step coding tasks InfoWorld19 May
lovable ICE Barbie and Duck Dynasty jerk want immigrants to compete for basic human rights BoingBoing18 May
duck OpenAI Launches Codex, an AI Coding Agent, In ChatGPT Slashdot16 May
sitting Bring your ideas to life with this $28 all-in-one coding platform BoingBoing16 May
startup Visual Studio previews agent mode for multi-step coding tasks InfoWorld16 May
hackers OpenAI Launches an Agentic, Web-Based Coding Tool Wired: Tech.16 May
vulnerability The Hottest Topic at This Year’s Pornhub Awards? Censorship Wired: Tech.15 May
security Databricks to acquire open-source database startup Neon to build the next wave of AI agents InfoWorld15 May
user 'Aggressive' Hackers of UK Retailers Are Now Targeting US Stores, Says Google Slashdot15 May
News copyright owned by their original publishers | Copyright © 2004 - 2025 Zicos / 440Network
Date Actuelle
dim. 1 juin - 12:19 CEST