Microsoft has beefed up Copilot’s capabilities in Word, Excel and PowerPoint, claiming its Agent Mode will help speed up workers’ output. The new features, announced last year, mean that Copilot can work more efficiently with Office applications, for example, understanding the richness of a pivot table in Excel or the use of animations in PowerPoint. In…
Category: AI
AI, Compliance, Global Security News, Risk Management, Venture
Sage Expands Intacct Advisory and Debuts Sage HCM Solution
Accounting, finance, and HR technology provider Sage has announced two updates ahead of its annual Sage Future conference: the expansion of its Sage Intacct Advisory program and the launch of its Sage HCM solution. Both moves are positioned to streamline workflows, introduce more industry-specific capabilities, and help organizations better leverage AI across their operations. Scaling…
AI, APAC, Apps, Global Security News, Network Security
Google Cloud Makes Key Agentic AI Announcements at Next ‘26
To coincide with the Google Cloud Next ‘26 conference – Google Cloud’s largest event – the cloud giant is making a number of announcements, including the new Gemini Enterprise Agent Platform, advancements to its AI Hypercomputer architecture, and introducing the Agentic Data Cloud. A single platform for agent development, orchestration, and governance Google Cloud is…
AI, Cybersecurity, Exploits, Global Security News, Government & Policy
CISA last in line for access to Anthropic Mythos
The US Cybersecurity and Infrastructure Security Agency (CISA) does not yet have access to Anthropic’s bug-hunting AI model, Claude Mythos, even though other government agencies do, Axios reported earlier this week. As if that weren’t a big enough slap in the face for the national cyber-defense agency, the list of those who do have access…
AI, Funding, Global Security News
Google Cloud Funds Partner Push for Enterprise AI Agents
Google Cloud is putting new financial weight behind its partner ecosystem as it pushes deeper into enterprise AI, announcing a $750 million fund at Next ’26 to accelerate partner-led development and deployment of “agentic” AI systems. New fund promises to support prototyping, AI training, and more across partner ecosystem The investment, which Google says will…
AI, Compliance, Global Security News, Risk Management
Microsoft Urges Partners to Operationalize Copilot, Agents
Microsoft’s tone around AI is starting to change. The emphasis now is on getting systems into production and keeping them running in a way businesses can manage. Microsoft pushes partners and customers toward the next frontier This sentiment is expanded upon in a recent blog from chief partner officer Nicole Dezen, who frames Microsoft’s next…
AI, Exploits, Global Security News
New ‘Pack2TheRoot’ flaw gives hackers root Linux access
A new vulnerability dubbed Pack2TheRoot could be exploited in the PackageKit daemon to allow local Linux users to install or remove system packages and gain root permissions. […]
AI, china, Global Security News
Former OpenAI research scientist launches new AI model for Tencent
Tencent has updated its Hunyuan AI model, its first major release since it recruited Yao Shunyu, a leading AI scientist from OpenAI. Tencent’s Hy3 model, currently available in preview, offers improvements in areas from complex reasoning to coding. The Chinese technology conglomerate is playing catch-up with other Chinese AI developers including ByteDance, Alibaba and DeepSeek.…
AI, Funding, Global Security News
Google Expands Anthropic Investment With $40 Billion Commitment
Racing toward a potential IPO and grappling with computing needs, AI startup has amassed up to $65 billion in new funding deals.
AI, Global Security News
US Busts Myanmar Ring Targeting US Citizens in Financial Fraud
Some 29 people were charged, including a Cambodian senator, and authorities seized more than 500 Web domains tied to fake investment sites.
AI, Apps, Global Security News, Risk Management
Adobe bets on AI agents to stay at the center of marketing workflows
Adobe is rolling out autonomous agents to orchestrate work across its applications, a move that will reinforce its position at the core of content and marketing workflows as AI disrupts the software landscape, analysts say. “We’re living at true inflection point; a moment where creativity and marketing are being reshaped by AI, unlocking incredible new…
AI, Apps, Cybersecurity, Data Breaches, Endpoint, Global Security News, Network Security, Risk Management
ShinyHunters Claims Udemy Data Breach of 1.4M Users
A notorious threat actor group has targeted Udemy, one of the world’s largest online learning platforms. ShinyHunters claims it has stolen more than 1.4 million user records and is threatening to leak the data within days. “Over 1.4M records containing PII and other internal corporate data have been compromised. Pay or Leak,” the threat actors…
AI, Global Security News
Glasswing Secured the Code. The Rest of Your Stack Is Still on You
Forgotten integrations, shadow IT, SaaS, and now shadow AI and agents are everywhere, and attackers don’t need sophisticated AI models to take advantage.
AI, Apps, Global Security News, Government & Policy, Network Security, Politics, privacy, Risk Management
Palantir Is Helping Trump’s IRS Conduct “Massive-Scale” Data Mining
military contractor Palantir is helping the IRS analyze dozens of different data sets on Americans to investigate a broad range of financial crimes, according to records shared with The Intercept. Since 2018, the Internal Revenue Service’s Criminal Investigation division has used Palantir’s Lead and Case Analytics platform to aggregate and analyze a sprawling list of…
AI, Global Security News, Government & Policy
NASA Employees Duped in Chinese Phishing Scheme Targeting U.S. Defense Software
The Office of Inspector General (OIG) of the U.S. National Aeronautics and Space Administration (NASA) has revealed how a Chinese national posed as a U.S. researcher as part of a spear-phishing campaign to obtain sensitive information from the space agency, as well as from government entities, universities, and private companies, in violation of export control…
AI, APAC, Apps, Cloud Security, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, Risk Management
Data Breaches, AI Expansion, and Cloud Security Define This Week’s Cyber Landscape in April 2026
Major Threats & Vulnerabilities Vulnerability Scoring and Exploitation Trends The NIST Adjusts Scoring Amid CVE Spike report highlights a 260%+ increase in CVE submissions since 2020. To manage the surge, NIST will prioritize high-impact vulnerabilities, potentially leaving many without full scoring data. Security teams must adapt to inconsistent vulnerability data and prepare for potential blind…
AI, Global Security News
TeamPCP Hijacks Bitwarden CLI, Uses Dependabot to Deploy Shai-Hulud Malware
GitGuardian uncovers TeamPCP attack on Bitwarden CLI, abusing GitHub Dependabot to spread Shai-Hulud and poison AI coding tools.
AI, Cybersecurity, Endpoint, Europe, Exploits, Global Security News, Government & Policy, Risk Management, Russia
Signal phishing campaign targets Germany’s Bundestag President Julia Klöckner
Germany’s Bundestag President Klöckner was targeted in a Signal phishing attack via a fake CDU group chat. Germany’s Bundestag President Julia Klöckner has reportedly become the latest European political figure targeted through a Signal-based phishing attack, reported Der Spiegel. The incident is another reminder that even trusted messaging apps can become entry points when attackers…
AI, Global Security News
AI Phishing Is No. 1 With a Bullet for Cyberattackers
In the last six months, companies have seen a significant influx of AI-powered phishing, as cyberattackers progress from small campaigns to 1-to-1 personalized attacks.
AI, Global Security News
North Korea’s Lazarus Targets macOS Users via ClickFix
Lazarus continues leveraging ClickFix for initial access and data theft, in this case, against Mac-centric organizations and their high-value leaders.
AI, Cybersecurity, Data Breaches, Global Security News
Users advised to drop passwords and make room for passkeys
In a decisive move that could reshape how users log in online, the National Cyber Security Centre (NCSC) is urging consumers to abandon passwords in favour of passkeys, positioning them as the future of authentication. “Passkeys should become consumers’ first choice for logging into digital services,” NCSC said. Overhauling decades of security guidance, the agency…
AI, Global Security News
Indirect prompt injection is taking hold in the wild
The open web is slowly but surely filling up with “traps” designed for LLM-powered AI agents. The technique, known as indirect prompt injection (IPI), involves hiding (more or less) covert instructions inside ordinary web pages, waiting for an AI agent to read them and carry out the author’s commands. The IPI attack kill chain (Source:…
AI, APAC, Global Security News, Risk Management
Microsoft to offer voluntary retirement buyouts to about 7% of the US workforce
Microsoft will offer voluntary retirement buyouts to about 7% of its US workforce, or roughly 8,750 employees, in the first such program in the company’s 51-year history, as the technology industry restructures under the cost pressure of AI investment. The program, available to US-based employees at the senior director level and below, comes as large…
AI, Global Security News
AI Rush is Reviving Old Cybersecurity Mistakes, Mandiant VP Warns
AI tools are not just creating new vulnerabilities, they are reviving old security failures, warned Jurgen Kutscher, VP of Mandiant Consulting
AI, Global Security News
AI Startups From Canada, Germany Join Forces in Challenge to Silicon Valley
A deal between Cohere and Aleph Alpha aims to tap growing demand for technology that isn’t dependent on U.S. tech giants.
AI, Global Security News
Bridging the AI Agent Authority Gap: Continuous Observability as the Decision Engine
The AI Agent Authority Gap – From Ungoverned to Delegation As discussed in our previous article, AI agents are exposing a structural gap in enterprise security, but the problem is often framed too narrowly. The issue is not simply that agents are new actors. It is that agents are delegated actors. They do not emerge…
AI, Global Security News
Microsoft now lets admins uninstall Copilot on enterprise devices
Microsoft says IT administrators can now uninstall the AI-powered Copilot digital assistant from enterprise devices using a new policy setting, which has become broadly available after the April 2026 Patch Tuesday. […]
AI, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security, Risk Management
Inside agenteV2: How Brazilian Attackers Use Fake Court Summons to Steal Banking Credentials in Real Time
A new phishing campaign targeting Brazilian users demonstrates how modern financial malware has evolved from simple credential theft into full-scale, operator-driven fraud platforms. Disguised as a judicial summons, this campaign leverages social engineering, multi-stage malware delivery, and real-time remote access capabilities to compromise victims and actively assist attackers in financial theft. For organizations, the implications extend beyond individual users. Employees accessing corporate…
AI, Global Security News, Risk Management
Google Keep cheat sheet: How to get started
Google Keep lets you create notes and to-do lists that sync across your computer and phone or tablet. It’s handy in a variety of ways: You can record voice memos, and Keep will transcribe them as text notes. You can include images in your notes, and if an image includes text, it shows up in…
AI, Data Breaches, Global Security News, malware, Risk Management
Checkmarx supply chain attack impacts Bitwarden npm distribution path
Bitwarden CLI was hit by the Checkmarx supply chain attack. Version 2026.4.0 shipped malicious code in bw1.js via a compromised GitHub Action. Bitwarden CLI has been compromised as part of the ongoing Checkmarx supply chain campaign, researchers warn. The affected version, @bitwarden/cli 2026.4.0, contained malicious code hidden in the bw1.js file. The breach likely stemmed…
AI, Exploits, Global Security News
Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2
Chinese-speaking individuals are the target of a new campaign that uses a trojanized version of SumatraPDF reader to deploy the AdaptixC2 Beacon post-exploitation agent and ultimately facilitate the abuse of Microsoft Visual Studio Code (VS Code) tunnels for remote access. Zscaler ThreatLabz, which discovered the campaign last month, has attributed it with high confidence to…
AI, Global Security News
Meta is overhauling how you sign in, manage settings, and protect your accounts
Meta Account gives users of Meta apps and devices a simpler way to access and manage their accounts. Accounts Center will automatically be updated to a Meta Account as part of a gradual rollout over the next year. Users will be notified when the change occurs. It supports Meta technologies including Facebook, Instagram, Messenger, Threads,…
AI, Data Breaches, Global Security News
The calm before the ransom: What you see is not all there is
A breach claims the systems as well as the confidence that was, in retrospect, a major vulnerability
AI, Global Security News
Ubuntu 26.04 LTS delivers memory-safe system tools and live patching for Arm servers
Linux distributions have spent the past few years absorbing GPU vendor toolchains, Rust-based system components, and more stringent encryption defaults. Ubuntu 26.04 LTS, codenamed Resolute Raccoon, pulls most of those threads together into a single release that will receive standard security support until April 2031. Rust moves into the system layer One of the more…
AI, Apps, Global Security News
Microsoft Pushes Partners Deeper Into Copilot and AI Tools
Microsoft is expanding its AI channel strategy with new partner benefits, updated recognition programs, and additional tooling to accelerate enterprise adoption of Copilot, security, and agent-based offerings. The moves show how the company is trying to turn strong AI demand into a more repeatable partner-led sales and services motion. Microsoft posts strong earnings across cloud…
AI, Apps, Compliance, Endpoint, Europe, Global Security News, Risk Management
The Governance Gap: How the EU AI Act Makes API Security a Compliance Imperative
Your legal team just handed you a 400-page document and said “figure out compliance.” The EU AI Act is live, your organization falls under its scope, which is broader than many expect. Even non‑EU companies must comply if their AI systems are used, deployed, or produce effects within the European Union. In practice, that means that global organizations…
AI, Cybersecurity, Global Security News
OpenAI’s GPT-5.5 is out with expanded cybersecurity safeguards
Competition to release stronger AI models is accelerating, and just weeks after the release of GPT-5.4, OpenAI has introduced GPT-5.5, pointing to expanded safeguards in the new model. GPT-5.5 is being rolled out to Plus, Pro, Business, and Enterprise users in ChatGPT and Codex, while GPT-5.5 Pro is available to Pro, Business, and Enterprise users…
AI, china, Exploits, Global Security News, Network Security, Risk Management
China-linked threat actors use consumer device botnets to evade detection, warn UK and partners
UK National Cyber Security Centre (NCSC) warns China-linked hackers use hijacked devices as proxy networks to hide activity and evade detection. UK National Cyber Security Centre (NCSC) and global partners warn that China-linked threat actors now rely on large proxy networks built of hacked consumer devices. Groups control routers, cameras, video recorders, and NAS systems…
AI, Cybersecurity, Global Security News
AI is speeding up nation-state cyber programs
Im this Help Net Security interview, Kaja Ciglic, Senior Director, Cybersecurity Policy and Diplomacy at Microsoft, discusses how nation-state cyber programs have changed over three years. Cyber has become a core instrument of state power, integrated with military, economic, and diplomatic tools. Ciglic argues that responses like sanctions and indictments need broader strategies, including conditional…
AI, Global Security News
IT spending to hit $6.31 trillion record, thanks to AI
Global spending on IT is expected to reach $6.31 trillion in 2026, according to the latest quarterly forecast from Gartner, marking a 13.5% increase from the previous year. The forecast shows that growth is spread across all major segments, though not evenly. Much of the increase is tied to ongoing investment in AI, particularly in…
AI, Global Security News
Where AI in CI/CD is working for engineering teams
Developers have folded AI into daily coding work. Still, the same tools remain largely absent from the systems that validate and ship software. New research from JetBrains points to a widening gap between how engineers write code on their own machines and what runs inside continuous integration and delivery pipelines. Daily coding use climbs past…
AI, Global Security News, Risk Management
The AI workplace paradox: Higher productivity, higher anxiety
Workers are facing a conundrum: They worry about the potential for their displacement by AI even as it dramatically speeds up their own productivity. According to a new survey from Anthropic, workers in roles most likely to be taken over by AI (developers or IT workers, for instance) recognize their precarious position. Yet, perhaps naturally,…
AI, APAC, Global Security News
The agentic AI frenzy increases as more vendors stake their claims
The AI agent introduction frenzy continued at a torrid pace this week, with OpenAI launching what it called workspace agents in ChatGPT and Microsoft adding hosted agents to its Foundry Agent Service. Both launched on the same day that Google both updated its Gemini Enterprise app to provide new ways for office workers to build,…
AI, Funding, Global Security News
Oracle’s Deluge of AI Debt Pushes Wall Street to the Limit
The AI boom has hit a funding snag, compounding power constraints and a growing public backlash against data centers.
AI, Global Security News
Supply chain attacks hit Checkmarx and Bitwarden developer tools
Two supply chain attacks, same day, same command-and-control domain Categories: Threat Research Tags: Supply chain, Sophos X-Ops, pipeline, Bitwarden, Checkmarx
AI, Apps, Global Security News, Network Security, Risk Management
Bitwarden CLI password manager trojanized in supply chain attack
Researchers warn of a new software supply chain attack that resulted in a malicious version of Bitwarden CLI, the terminal version of the extremely popular open-source password manager. The attack is believed to be related to the string of recent supply chain compromises attributed to a group called TeamPCP. “The attack appears to have leveraged…
AI, Data Breaches, Exploits, Global Security News, malware, Network Security, Risk Management
Vercel attack fallout expands to more customers and third-party systems
Vercel said the fallout from an attack on its internal systems hit more customers than previously known, as ongoing analysis uncovered additional evidence of compromise. The company, which makes tools and hosts cloud infrastructure for developers, maintains a “small number” of accounts were impacted, but it has yet to share a number or range of…
AI, Cybersecurity, Exploits, Global Security News, privacy
AI threats in the wild: The current state of prompt injections on the web
Posted by Thomas Brunner, Yu-Han Liu, Moni Pande At Google, our Threat Intelligence teams are dedicated to staying ahead of real-world adversarial activity, proactively monitoring emerging threats before they can impact users. Right now, Indirect Prompt Injection (IPI) is a top priority for the security community, anticipating it as a primary attack vector for adversaries…
AI, Global Security News
Weed Is No Longer So Bad, U.S. Says
Plus, the Iran war impacts U.S. plans to defend Taiwan, some officials say, and burned-out American doctors move to New Zealand
AI, Global Security News
RMIT University launches Cloud Innovation Lab, powered by Amazon Web Services
RMIT University has launched the RMIT AWS Innovation Lab (RAIL), powered by Amazon Web Services, in a landmark strategic collaboration designed to accelerate clinical research and public health, drive digital innovation and strengthen industry partnerships across Australia.
AI, Cybersecurity, Endpoint, Exploits, Global Security News, malware, Network Security, Risk Management
3 practical ways AI threat detection improves enterprise cyber resilience
Why “more alerts” isn’t the same as better security If you run security in an enterprise environment, you already know the problem. Generic detection tools generate thousands of alerts, most of them low value. Analysts spend hours chasing noise while attackers quietly move laterally using valid credentials and trusted tools. AI‑driven threat detection promises to…
AI, china, Cybersecurity, Data Breaches, Exploits, Global Security News, Government & Policy, malware, Network Security
US, UK agencies warn hackers were hiding on Cisco firewalls long after patches were applied
A state-sponsored hacking group has implanted a custom backdoor on Cisco network security devices that can survive firmware updates and standard reboots, U.S. and British cybersecurity authorities disclosed Thursday, marking a significant escalation in a campaign that has targeted government and critical infrastructure networks since at least late 2025. The Cybersecurity and Infrastructure Security Agency…
AI, Cybersecurity, Exploits, Global Security News, Government & Policy, Network Security, Risk Management
The curious case of Sean Plankey’s derailed CISA nomination
Donald Trump’s nominee to lead the Cybersecurity and Infrastructure Security Agency (CISA), Sean Plankey, informed Homeland Security Secretary Markwayne Mullin and the White House that he is withdrawing his nomination after a 13-month stall, during which the well-regarded cybersecurity veteran faced mounting resistance. “After thirteen months since my initial nomination, it has become clear the…
AI, china, Cybersecurity, Exploits, Global Security News, malware, Network Security
Dragos: Despite AI use, new malware targeting water plants is ‘hype’
One day AI may be capable of creating malware that threatens critical infrastructure. But that day was not earlier this month, when reports surfaced of a new piece of malware seemingly configured to search for and sabotage Israeli water infrastructure, according to industrial cybersecurity firm Dragos. The malware, called ZionSiphon, was first identified by AI…
AI, Global Security News
Bitwarden CLI npm package compromised to steal developer credentials
The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects. […]
AI, china, Cybersecurity, Exploits, Global Security News, Network Security
Surveillance campaigns use commercial surveillance tools to exploit long-known telecom vulnerabilities
Campaigns employing commercial surveillance vendors tracked targets by exploiting mobile phone network vulnerabilities in what researchers said Thursday was the first-ever linking of “real-world attack traffic to mobile operator signalling infrastructure.” The two unknown parties behind the campaigns mimicked the identities of mobile phone operators with customized surveillance tools, and manipulated signaling protocols and steered…
AI, Global Security News
Gartner: Global IT spending to grow by 13.5% this year
Global IT spending is expected to rise this year to $6.31 trillion, according to a new forecast from Gartner, a 13.5% increase compared to 2025. According to the research firm, AI is the single most important driver behind the growth, with investments in AI infrastructure, in particular, driving the trend. The data center systems segment…
AI, Global Security News
Apple may be the only laptop vendor to grow in 2026
Chinese market research firm Sigmaintell expects Apple to be the only company to see growth in the laptop market this year. Overall, Sigmaintel predicts global notebook shipments will reach 181.1 million units this year, a decline of 8%. That drop will, in part, be caused by memory and component shortages and also by slowing market demand. That’s…
AI, Global Security News
Meta Will Lay Off 8,000 Employees in May: Memo
The company said the 10% workforce cut is needed to run more efficiently and offset other investments. It will also cancel plans to hire for 6,000 open roles.
AI, Data Breaches, Global Security News
Luxury cosmetics giant Rituals discloses data breach impacting member personal details
Rituals disclosed a breach where hackers accessed and downloaded some My Rituals members’ data, including names and addresses. Luxury cosmetics giant Rituals disclosed a data breach impacting My Rituals members after attackers gained unauthorized access to its systems and downloaded part of the database. The security breach occurred earlier this month, and the company is…
AI, Apps, Compliance, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security, Risk Management
Checkmarx Supply Chain Attack Exploits Docker Images and CI/CD Pipelines
A supply chain attack targeting Checkmarx tooling has exposed developer environments. Attackers pushed malicious Docker images and tampered extensions capable of stealing credentials and other sensitive data. This “… continues a dangerous trend that’s accelerated over the past month: CI/CD pipelines have become the new perimeter,” said Eli Woodward, Cyber Threat Intelligence Advisor at Team…
AI, Global Security News
The Hunt for Extraterrestrial Life Enters a New Frontier
Scientists are using advanced telescopes, models and AI to help them look for signs of life beyond Earth, including in distant solar systems.
AI, Global Security News
Microsoft Offers Buyouts to 7% of Workforce
The company is also changing how it awards bonuses and stock options as it reorganizes workforce around AI efforts.
AI, Global Security News
Google Favors General‑Purpose Gemini Models Over Cybersecurity‑Specific AI
Google Cloud’s COO advocated for combining general-purpose frontier large language models with task-specific AI agents
AI, china, Cybersecurity, Global Security News, Government & Policy, malware, Network Security, Risk Management
A dozen allied agencies say China is building covert hacker networks out of everyday routers
U.S. and international government agencies warned Thursday about a “widespread shift” in Chinese hacker methods toward the use of large-scale covert networks that compromise common devices to carry out a variety of attacks. The advisory details how those networks work, and defensive steps organizations should take. “Over the past few years there has been a…
AI, Global Security News
Teradata Named a Leader in Nucleus Research 2026 DSML Platform Technology Value Matrix
GUEST RESEARCH: Recognition highlights Teradata’s enterprise AI capabilities, including Enterprise AgentStack, open-source MCP Server, and in-database vector and analytics infrastructure
AI, Exploits, Global Security News, malware
With AI’s help, North Korean hackers stumbled into a near-undetectable attack
For many years, state-sponsored hacking was defined by human expertise in finding security holes, writing malware and exploits, pulling off social engineering and phishing attacks, and much more. Since the advent of LLM-powered AI assistants and tools, less skilled attackers have been able to carry out attacks and compromises that might otherwise have been out…
AI, APAC, Global Security News
The 2026 Edition of PepsiCo’s APAC Greenhouse Program Shifts Beyond Pilots to Fast-Track Startups into its Supply Chain
COMPANY NEWS: The IMPACT Edition introduces a more structured integration model, bringing proven alumni solutions into PepsiCo’s operations through coordinated execution, commercial pathways, and an expanded partner ecosystem. Two Australian start-ups, Adiona and X-Centric, will join three other finalists to take part in the IMPACT edition.
AI, Global Security News
Bad Memories Still Haunt AI Agents
Cisco found and fixed a significant vulnerability in the way Anthropic handles memories, but experts warn that mishandled memory files will continue threaten AI systems.
AI, Global Security News
ClickHouse Expands Strategic Collaboration With Google Cloud, Bringing Deeper Integration, Cloud Flexibility, and Next-Generation Performance
COMPANY NEWS: ClickHouse, a leader in real-time analytics, data warehousing, observability, and AI/ML, has announced a significant expansion of its strategic collaboration with Google Cloud.
AI, APAC, Cloud Security, Cybersecurity, Europe, Exploits, Global Security News, Risk Management
The Mythos Discovery: What It Means for Vulnerability Disclosure
The Mythos Discovery: What It Means for Vulnerability Disclosure AI just broke vulnerability disclosure at scale. Earlier this month, Anthropic’s Claude Mythos Preview AI model discovered 27-year-old bugs that survived decades of human review. Now the industry’s top security leaders are calling it a watershed moment. Here’s what software vendors need to know. What Happened…
AI, Global Security News
Introducing Gemini Enterprise Agent Platform, powering the next wave of agents
In the early days of generative AI, building safe and reliable business tools took massive engineering effort and a high tolerance for trial and error. We helped solve that with Vertex AI, our trusted AI development platform. But today, we’re managing a different level of complexity, with agents interacting across multiple systems — and often without…
AI, Data Breaches, Global Security News
Hacker with a special interest in breaching sports institutions ends behind bars
French police have arrested a suspected hacker linked to a series of data breaches affecting organizations in the country. Citing authorities, Le Parisien reported that the suspect, a 20-year-old man using the alias ‘HexDex,’ was taken into custody on April 22, 2026, in the Vendée region, western France. The suspect admitted to using the alias…
AI, Apps, Exploits, Global Security News, privacy
iOS Flaw Let Deleted Notifications Linger, Apple Issues Fix
Apple fixed an iOS flaw that kept deleted notifications on devices, allowing recovery of messages, including from apps like Signal. Apple released updates for iOS and iPadOS to address the vulnerability CVE-2026-28950, a flaw in Notification Services that stored notifications even after deletion. This logging issue could allow recovery of sensitive data, including messages from…
AI, Compliance, Exploits, Global Security News, Network Security, privacy, Risk Management
CVE-2026-28950: Apple Fixes iOS Flaw That Retained Deleted Notification Data
Apple has released security updates to address a Notification Services issue in iOS and iPadOS that could cause alerts marked for deletion to remain stored on a device. The fix was delivered in iOS 26.4.2 / iPadOS 26.4.2 and iOS 18.7.8 / iPadOS 18.7.8, where Apple says the problem was resolved through improved data redaction.…
AI, Apps, Global Security News
Bitwarden CLI Compromised in Ongoing Checkmarx Supply Chain Campaign
Bitwarden CLI has been compromised as part of the newly discovered and ongoing Checkmarx supply chain campaign, according to new findings from Socket. “The affected package version appears to be @bitwarden/cli@2026.4.0, and the malicious code was published in ‘bw1.js,’ a file included in the package contents,” the application security company said. “The attack appears to…
AI, Global Security News
Level Up Your Payment Security Expertise with PCI SSC Knowledge Training
Give your team the insight and confidence to work effectively with assessors through Knowledge Training. These courses are designed to help learners speak the same language as the assessor, confidently guide their organization through assessments and any pre-planning, and effectively collaborate alongside the assessor during an assessment. When teams are aligned, assessments run more…
AI, Global Security News
Level Up Your Payment Security Expertise with PCI SSC Knowledge Training
Give your team the insight and confidence to work effectively with assessors through Knowledge Training. These courses are designed to help learners speak the same language as the assessor, confidently guide their organization through assessments and any pre-planning, and effectively collaborate alongside the assessor during an assessment. When teams are aligned, assessments run more…
AI, Global Security News
Getac redefines rugged mobility with launch of G140 Copilot+ PC, powered by AMD Technology in Australia and New Zealand
COMPANY NEWS: The new G140 tablet blends AI-powered performance with MIL-STD fully rugged protection in a lightweight, field-friendly design.
AI, Exploits, Global Security News
ThreatsDay Bulletin: $290M DeFi Hack, macOS LotL Abuse, ProxySmart SIM Farms +25 New Stories
You scroll past one incident and see another that feels familiar, like it should have been fixed years ago, but it still works with small changes. Same bugs. Same mistakes. The supply chain is messy. Packages you did not check are stealing data, adding backdoors, and spreading. Attacking the systems behind apps is easier than…
AI, Cybersecurity, Global Security News, Risk Management
UK’s NCSC calls passkeys the default, says passwords are no longer fit for the purpose
The UK’s National Cyber Security Centre (NCSC) is recommending passkeys as the default authentication method for businesses to offer consumers, citing industry progress that now makes them a more secure and user-friendly alternative to passwords. In a blog post published this week, the agency said passkeys can now be recommended to both the public and…
AI, Cybersecurity, Global Security News, Risk Management
Offer customers passkeys by default, UK’s NCSC tells enterprises
The UK’s National Cyber Security Centre (NCSC) is recommending passkeys as the default authentication method for businesses to offer consumers, citing industry progress that now makes them a more secure and user-friendly alternative to passwords. In a blog post published this week, the agency said passkeys can now be recommended to both the public and…
AI, Cybersecurity, Global Security News, Risk Management
Offer customers passkeys by default, UK’s NCSC tells enterprises
The UK’s National Cyber Security Centre (NCSC) is recommending passkeys as the default authentication method for businesses to offer consumers, citing industry progress that now makes them a more secure and user-friendly alternative to passwords. In a blog post published this week, the agency said passkeys can now be recommended to both the public and…
AI, Global Security News, Network Security
IP Fabric MCP server adds governance and control to enterprise AIOps workflows
IP Fabric has launched a new Model Context Protocol (MCP) server that removes key barriers to enterprise AIOps adoption, combining secure in-platform deployment with a built-in prompt library for network operations. While MCP servers and AI integrations are increasingly common, most fall short in enterprise environments where security, control and trusted data are non-negotiable. IP…
AI, Global Security News
Apple Fixes iOS Notification Bug Exposing Deleted Messages
Apple patches iOS flaw that retained deleted notifications, exposing message data
AI, Global Security News
Elastic Collaborates with Google Cloud to Bring its Embedded Security Layer to Google Distributed Cloud Air-Gapped Environments
Google Distributed Cloud is embedding Elastic’s agentic security operations platform, providing security analytics, automation, and XDR capabilities to help customers secure sensitive data in air-gapped environments
AI, Apps, Global Security News, Risk Management
Aqua Compass MCP server enables real-time investigation and containment of runtime threats
Aqua Security has announced Aqua Compass, a Model Context Protocol (MCP) server that enables agentic investigation, containment and remediation of runtime incidents, and new runtime risk dashboards. These capabilities help security teams move beyond identifying risk and focus on containing threats in running applications. The announcement builds on Aqua’s Secure AI capabilities, extending the company’s…
AI, Cloud Security, Global Security News, Risk Management
Google gets agent-ready for the Mythos age
In response to Anthropic Mythos, instead of launching another LLM, Google unveiled a broad push toward agentic, AI-driven defense at Google Cloud Next ‘26 to help SOC analysts as they scramble to keep up with the influx of CVEs Mythos threatens. As Mythos promises more vulnerabilities, and reports of unauthorized access despite its limited preview…
AI, Global Security News, Government & Policy
New GopherWhisper APT group abuses Outlook, Slack, Discord for comms
A previously undocumented state-backed threat actor named GopherWhisper is using a Go-based custom toolkit and legitimate services like Microsoft 365 Outlook, Slack, and Discord in attacks against government entities. […]
AI, Exploits, Global Security News
[Webinar] Mythos Reality Check: Beating Automated Exploitation at AI Speed
Imagine a world where hackers don’t sleep, don’t take breaks, and find weak spots in your systems instantly. Well, that world is already here. Thanks to AI, attackers are now launching automated, large-scale exploits faster than ever before. The time you have to fix a vulnerability before it gets attacked is shrinking to zero. We…
AI, Global Security News
Google brings instant email verification to Android, no OTP needed
Google has introduced cryptographically verified email credentials for Android through the Credential Manager API. This API aligns with the W3C Digital Credential API standard. It provides a unified way for apps to request and retrieve user credentials for authentication and authorization. “By integrating the new verified email via the Credential Manager API, you can reduce…
AI, Global Security News
Google Introduces Unique AI Agent Identities in New Gemini Enterprise Platform
Google Cloud will attribute a unique cryptographic ID every AI agent that will be tied to “traceable and auditable” authorization policies
AI, Global Security News
Project Glasswing Proved AI Can Find the Bugs. Who’s Going to Fix Them?
Last week, Anthropic announced Project Glasswing, an AI model so effective at discovering software vulnerabilities that they took the extraordinary step of postponing its public release. Instead, the company has given access to Apple, Microsoft, Google, Amazon, and a coalition of others to find and patch bugs before adversaries can. Mythos Preview, the model that…
AI, Cybersecurity, Exploits, Global Security News, Government & Policy
If cyber espionage via HDMI worries you, NCSC built a device to stop it
A new cybersecurity device developed by the National Cyber Security Centre (NCSC) should be a helpful solution for protecting governments and businesses from malicious activity carried through display connections. Called SilentGlass, the plug-and-play tool is designed to protect HDMI and DisplayPort links from potential cyberattacks. The NCSC warns that monitors are an attractive target for…
AI, Global Security News
Apple fixes iPhone bug that let FBI retrieve deleted Signal messages(CVE-2026-28950)
Apple has rolled out security updates for iPhones and iPads that fix CVE-2026-28950, a logging issue in Notification Services that made devices unexpectedly retain notifications marked for deletion. The vulnerability was patched following a recent report about the FBI accessing a suspect’s Signal message notification content on their iPhone, despite Signal being deleted from the…
AI, Apps, Exploits, Global Security News, Risk Management
CVE-2026-40372: Critical ASP.NET Core Flaw May Let Attackers Gain SYSTEM Privileges
Microsoft has released out-of-band updates for CVE-2026-40372, a high-impact ASP.NET Core privilege-escalation vulnerability tied to the platform’s Data Protection cryptographic APIs. Public reporting says the flaw carries a CVSS score of 9.1 and could allow an unauthenticated attacker to forge authentication material and ultimately obtain SYSTEM privileges on affected systems. The issue stands out not…
AI, Cybersecurity, Exploits, Global Security News
Hackers Use Hidden Website Instructions in New Attacks on AI Assistants
Cybersecurity researchers at Forcepoint uncover new indirect prompt injection attacks that use hidden website code to exploit AI assistants like GitHub Copilot.
AI, Apps, Exploits, Global Security News
Apple Patches Exploited Notification Flaw, (Thu, Apr 23rd)
Apple yesterday released iOS/iPadOS 26.4.2 and iOS/iPadOS 18.7.8. This update fixes a single Notification Services vulnerability, CVE-2026-28950: Impact: Notifications marked for deletion could be unexpectedly retained on the device Description: A logging issue was addressed with improved data redaction. Apple did not mark the vulnerability as exploited. However, recent news articles reported that the FBI…
AI, Endpoint, Global Security News, Government & Policy, malware, Network Security, Russia
RAMP Uncovered: Anatomy of Russia’s Ransomware Marketplace
Leaked data from RAMP reveals Russia’s ransomware ecosystem, analyzing 1,732 threads, 7,707 users, and 340,000 IP records from the forum. RAMP was not just another dark web forum. It was one of the clearest examples of how ransomware has become an organized marketplace, with sellers, buyers, brokers, and recruiters all playing different roles in the…
AI, Global Security News
‘Zealot’ Shows What AI’s Capable of in Staged Cloud Attack
The proof of concept revealed AI-based attacks unfold too fast for human defenders to respond, and that AI evinced more autonomous behavior than expected.