Connect with us

Technology

Chainguard Adds New Members to Athena Coalition as Coordinated Open Source Defense Scales

Published

on

Chainguard’s industry coalition reports 40,000 findings processed 

KIRKLAND, Wash., July 7, 2026 /PRNewswire/ — Chainguard today announced the expansion of Athena, the industry coalition for the orchestrated defense of open source software, adding new members, including Akamai, Black Duck, Cycode, JFrog, Morgan Stanley, Qualys, Upwind, and Zafran. The company also shared updated figures on the volume and severity of vulnerabilities the coalition has processed since launching three weeks ago.

To date, Athena has processed more than 40,000 vulnerabilities, doubling its intake since launching three weeks ago. Of vulnerabilities submitted so far, 42% are critical- or high-severity. While significant, the number understates the real exposure, as frontier AI models can chain low- and medium-severity bugs into more serious attacks that no single CVSS score captures. Additionally, 86% are network reachable, meaning they can be accessed and triggered by attackers at the network level. About 7% sit in packages more than five years old. These are latent flaws in mature, widely trusted dependencies that survived extensive expert review without detection.

“Frontier models are finding zero-days in open source faster than anyone can respond with discovery to exploitation is now measured in hours, and no one company is going to get ahead of that alone. Athena proves that orchestrated defense works,” said Dan Lorenc, CEO and Co-founder, Chainguard. “The volume and severity of what Athena is already finding make clear just how much depends on getting this right. The more of the ecosystem that joins, the less room attackers have to operate.”

A growing coalition for open source defense

Athena’s expansion reflects growing industry recognition that open source vulnerabilities require a coordinated response. New members joining Athena’s founding partners include Akamai, Black Duck, Cycode, JFrog, Morgan Stanley, Qualys, Upwind, and Zafran.

Athena’s partners work across the coalition’s defense pipeline: findings are pooled and de-duplicated, hardened fixes are built under embargo, partners stack non-patch protection around them, silent fixes are surfaced to exposed downstream users, and durable fixes are driven upstream to maintainers.

How the coalition protects users before a patch ships

Open source vulnerabilities do not respect organizational boundaries, and a patch that exists but cannot be deployed in time offers little protection. As part of its growing membership, Athena has expanded its cyber partner network, making cyber the largest cohort of partners in the coalition. Cyber partners receive a dedicated pre-disclosure feed and use it to build mitigations at the network, endpoint, and traffic layers that hold even before a clean patch exists or can be deployed. They also help surface “silent” vulnerabilities, or vulnerabilities that are fixed upstream but never assigned a CVE, that conventional scanning tools generally miss. 

“Defending digital infrastructure in the age of AI requires a rapid, unified response,” said Boaz Gelbord, Chief Security Officer, Akamai. “Athena allows us to protect customers with pre-embargo hardened software and platform-level mitigations before vulnerabilities can be exploited.”

“Frontier AI models are not only discovering thousands of zero days, but also chaining vulnerabilities together to exploit existing ones at machine speed, collapsing the gap between discovery and exploitation from weeks to hours. In this new reality, the era of ‘scan and hope’ is definitively over. Attackers are actively weaponizing the trusted models and agentic tools driving today’s development,” said Gal Marder, Chief Strategy Officer, JFrog. “By joining Athena’s orchestrated defense coalition, JFrog is committed to helping organizations bridge the dangerous gap between an AI-discovered vulnerability and remediation in production. We provide the single source of truth for all software assets which enables fully-automated updates of patched components at scale, and full governance of the entire remediation process of every binary component, using any packaging technology in any environment.”

“As consistent contributors to open-source vulnerability research and disclosure, Qualys welcomes the invitation to participate in Chainguard’s Athena coalition and secure open-source software by safely validating the exploitability of vulnerabilities with our technology,” said Dilip Bachwani, chief technology officer, Qualys. “We believe creating a safer digital future is a shared industry responsibility. This builds on our ongoing work to help customers, partners, and stakeholders prepare for a future where vulnerability discovery and remediation pressure move faster than ever.”

“AI is fundamentally changing the pace of vulnerability discovery, making coordinated defense more important than ever. By joining Athena, Upwind is bringing pre-disclosure vulnerability intelligence together with runtime visibility, helping organizations identify affected workloads and reduce the window between discovery and defense. Protecting the open source ecosystem is a shared responsibility, and we’re proud to contribute Upwind’s runtime intelligence to strengthen the coalition and improve visibility for the entire community,” said Tomer Hadassi, COO, Upwind. 

Every partner closes a gap, and the more layers the coalition covers, the less time an attacker has to operate before a flaw becomes public.

Akrites: the importance of driving fixes upstream

Pre-disclosure protection buys time, but the goal is to land a durable fix in the upstream codebase. To close that loop, Chainguard has joined Akrites, the Linux Foundation’s coordinated effort to remediate and disclose open source vulnerabilities upstream. Once a fix is built, shielded, and surfaced, Athena hands the finding to Akrites, which operates a shared Security Incident Response Team (SIRT) and a single standardized disclosure process, so maintainers receive notifications from a single trusted partner rather than a flood of overlapping reports. For critical packages with no active maintainer, Akrites serves as a maintainer of last resort. 

Joining the coalition to defend open source

The open source ecosystem is too large and too critical for any single organization to defend alone. Athena is built for the organizations that want to do more than react. Organizations that find vulnerabilities can submit them to the coalition for carry-through to a durable upstream fix. Organizations that build detections or mitigations, or carry fixes into real environments at scale, can become cyber partners and join the feed. Learn more at chainguard.dev/athena.

About Athena

Athena is the industry coalition for the orchestrated defense of open source software. Frontier AI models can now find novel, chained zero-day vulnerabilities in open source at machine speed, and the gap between discovery and exploitation has collapsed from years to hours. Athena closes the loop from vulnerability discovery through pre-embargo remediation to layered, defense-in-depth protection: pooling findings from across the coalition, building hardened fixes under embargo, stacking independent mitigations at the network, endpoint, and mission layers, and driving durable fixes upstream to maintainers. Members include leading global organizations, such as BNY, Chainguard, Cisco, Cloudflare, JPMorganChase, Morgan Stanley, PwC, and more, spanning submitters, platform and network providers, cybersecurity vendors, and global professional services. Learn more at chainguard.dev/athena.

About Chainguard
Chainguard is the trust layer for open source software. Its solutions provide engineers and AI agents with the hardened, trusted, and production-ready artifacts they rely on, so organizations can build fast while staying compliant and protecting against AI supply chain attacks. Customers include Fortune 500 enterprises and global industry leaders, including Anduril, Canva, Fortinet, Hewlett Packard Enterprise, OpenAI, Snap Inc., and Snowflake. Chainguard is venture-backed by leading investors, including Amplify, IVP, Kleiner Perkins, Lightspeed Venture Partners, Mantis VC, Redpoint Ventures, Sequoia Capital, and Spark Capital. For more information, visit: https://www.chainguard.dev/

View original content to download multimedia:https://www.prnewswire.co.uk/news-releases/chainguard-adds-new-members-to-athena-coalition-as-coordinated-open-source-defense-scales-302818945.html

Continue Reading
Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Technology

Microsoft announces quarterly earnings release date

Published

on

By

REDMOND, Wash., July 8, 2026 /PRNewswire/ — Microsoft Corp. will publish fiscal year 2026 fourth-quarter financial results after the close of the market on Wednesday, July 29, 2026, on the Microsoft Investor Relations website at https://www.microsoft.com/en-us/Investor/. A live webcast of the earnings conference call will be made available at 2:30 p.m. Pacific Time.

Microsoft (Nasdaq “MSFT” @microsoft) creates platforms and tools powered by AI to deliver innovative solutions that meet the evolving needs of our customers. The technology company is committed to making AI available broadly and doing so responsibly, with a mission to empower every person and every organization on the planet to achieve more. 

View original content to download multimedia:https://www.prnewswire.com/news-releases/microsoft-announces-quarterly-earnings-release-date-302821212.html

SOURCE Microsoft Corp.

Continue Reading

Technology

NAPCO Announces Executive Leadership Transition

Published

on

By

AMITYVILLE, N.Y., July 8, 2026 /PRNewswire/ — NAPCO Security Technologies, Inc. (“NAPCO” or the “Company”) (NASDAQ: NSSC), one of the leading manufacturers of high-tech electronic security equipment, wireless communication services devices for intrusion and fire alarm systems and the related recurring service revenues as well as a provider of school safety solutions, today announced an executive leadership transition intended to position the Company for its next phase of growth and success. Mr. Richard Soloway, currently Chairman and Chief Executive Officer, will serve as Founder and Executive Chairman, and Mr. Kevin Buchel, currently President and Chief Operating Officer, will serve as Chief Executive Officer and President. The transition will be effective as of July 8, 2026. 

Mr. Soloway founded NAPCO more than 55 years ago and has led a talented and dedicated team to create one of the most successful and well-recognized security technology companies in the U.S. As Executive Chairman, Mr. Soloway will continue to provide leadership by focusing on strategic initiatives and long-term business plans, driving new product innovation, maintaining key security industry relationships, and providing guidance and advice to management members on critical issues affecting the Company. Mr. Soloway will also continue his position as Chairman of Board of Directors of NAPCO. 

“It has been a tremendous privilege to serve as Chief Executive Officer of NAPCO, and I am very proud and gratified by the many achievements and milestones since founding the Company,” Mr. Soloway said, “In my new role as Executive Chairman, I am committed to bringing NAPCO to the next level of success. It is also with great confidence and pleasure that we turn the chief executive position over to Kevin, who has already demonstrated his leadership skills and business acumen since his appointment as NAPCO’s President and Chief Operating Officer two years ago, and I look forward to continuing to collaborate with Kevin in our new roles”

As Chief Executive Officer and President, Mr. Buchel will take on additional management responsibilities in all aspects of NAPCO’s day-to-day operations, including implementation of business strategies, execution of marketing and sales plans, communication with customers, suppliers and investors, and management of financial goals and objectives. Mr. Buchel has held various management positions at NAPCO for more than 25 years, and his intimate knowledge of and extensive experience with the Company makes him well suited to take the helm as Chief Executive Officer of NAPCO.

Mr. Buchel stated “I am very excited and honored for this opportunity to lead the NAPCO team as we embark on the next chapter of NAPCO’s success story. I look forward to executing our strategies, delivering innovative products, and implementing our differentiated business model to drive revenue growth and sustained profitability. I greatly appreciate Dick’s guidance and support over the years, and I am committed to continue working alongside him to lead our Company to the next phase of accomplishments.”

The Board of Directors of NAPCO believes that with the continuing leadership and guidance of Mr. Soloway as the Executive Chairman and Mr. Buchel as the Chief Executive Officer and President, NAPCO is well positioned to pursue and realize its strategic, business and financial objectives, and to create long-term value for its stockholders.

About NAPCO Security Technologies, Inc.

NAPCO Security Technologies, Inc., is one of the leading manufacturers of high-tech electronic security equipment, wireless communication services devices for intrusion and fire alarm systems and the related recurring service revenues as well as a provider of school safety solutions. The Company consists of NAPCO, plus three wholly owned subsidiaries: Alarm Lock, Continental Instruments, and Marks USA. Headquartered in Amityville, New York, its products are installed by tens of thousands of security professionals in commercial, industrial, institutional, residential and government applications. NAPCO products have earned a reputation for innovation, technical excellence and reliability, positioning the Company for growth in the multi-billion-dollar and rapidly expanding electronic security market. For additional information on NAPCO, please visit the Company’s web site at http://www.napcosecurity.com

Safe Harbor Statement

This press release contains forward-looking statements based on current expectations, estimates, forecasts and projections of future performance, as well as management’s judgment, beliefs, current trends and anticipated product performance. These forward-looking statements include, but are not limited to, statements relating to the executive leadership transition and the Company’s ability to increase revenue and profitability. Actual results, performance or achievements could differ materially from those anticipated in such forward-looking statements because of certain factors, including those risk factors set forth in the Company’s filings with the Securities and Exchange Commission, such as our annual report on Form 10-K and quarterly reports on Form 10-Q. Other unknown or unpredictable factors, or underlying assumptions that subsequently proved to be incorrect, could cause actual results to differ materially from those in the forward-looking statements. Although we believe the expectations reflected in the forward-looking statements are reasonable, we cannot guarantee future results, level of activity, performance or achievements. You should not place undue reliance on these forward-looking statements. All information provided in this press release is as of today’s date, unless otherwise stated, and the Company undertakes no duty to update such information, except as required under applicable law.

Contact: 
Francis J. Okoniewski III
Vice President of Investor Relations 
NAPCO Security Technologies, Inc. 
800-645-9445 x 374 
Mobile: 516-404-3597 
fokoniewski@napcosecurity.com 

View original content:https://www.prnewswire.com/news-releases/napco-announces-executive-leadership-transition-302821019.html

SOURCE NAPCO Security Technologies, Inc.

Continue Reading

Technology

Ultra Clean Appoints Michael Keogh as Chief Financial Officer

Published

on

By

HAYWARD, Calif., July 8, 2026 /PRNewswire/ — Ultra Clean Holdings, Inc. (Nasdaq: UCTT) today announced the appointment of Michael Keogh as Chief Financial Officer, effective August 5, 2026. Mr. Keogh succeeds Sheri Savage and will report to Chief Executive Officer James Xiao.

Mr. Keogh brings more than 25 years of global financial and operational leadership experience spanning the semiconductor, advanced manufacturing, automotive, and technology industries. He has built a distinguished track record of leading business transformations, improving financial and operational performance, and partnering with executive teams to scale complex global organizations.

“Mike is a highly accomplished finance executive whose best-in-class experience extends well beyond traditional finance leadership,” said James Xiao, CEO. “His combination of strategic vision, capital markets expertise, and global manufacturing experience makes him an outstanding addition to our leadership team. As we continue executing our UCT 3.0 strategy and positioning the company for long-term growth, Mike’s leadership will help strengthen our execution, support disciplined capital allocation, and create long-term value for our shareholders.”

“I look forward to partnering with James and the leadership team to help drive the UCT 3.0 strategy and position the company for its next phase of growth as demand for advanced manufacturing capacity across the semiconductor equipment ecosystem continues to accelerate,” added Mike Keogh.

Most recently, Mr. Keogh served as Chief Financial Officer of Ford Model e and Integrated Services, where he was instrumental in shaping Ford’s EV strategy, supporting multi-billion-dollar joint ventures, and advancing capital allocation decisions during a period of significant business transformation. Previously, as Chief Financial Officer of Bright Machines, he led the company’s financial turnaround. Earlier in his career, he held senior finance leadership positions at Apple, Stanley Black & Decker, and Intel, supporting global manufacturing, research and development, enterprise strategy, and business expansion.

Mr. Keogh holds a Master of Business Administration from Cornell University and a Bachelor of Arts in Industrial Relations from the University of North Carolina at Chapel Hill.

About Ultra Clean Holdings, Inc.

Ultra Clean Holdings, Inc. is a leading developer and supplier of critical subsystems, components, parts, and ultra-high purity cleaning and analytical services, primarily for the semiconductor industry. Under its Products division, UCT offers its customers an integrated outsourced solution for major subassemblies, improved design-to-delivery cycle times, design for manufacturability, prototyping, and high-precision manufacturing. Under its Services Division, UCT offers its customers tool chamber parts cleaning and coating, as well as micro-contamination analytical services. Ultra Clean is headquartered in Hayward, California. Additional information is available at www.uct.com.

Contact:

Rhonda Bennetto
SVP, Investor Relations
rbennetto@uct.com

View original content to download multimedia:https://www.prnewswire.com/news-releases/ultra-clean-appoints-michael-keogh-as-chief-financial-officer-302821027.html

SOURCE Ultra Clean Holdings, Inc.

Continue Reading

Trending