You might spend your Saturday mornings sipping coffee, attending a kids’ soccer game, or just recovering from a tough week at work. Not Paul Heaton. He recently spent a weekend persuading ChatGPT to confess to a crime it didn’t commit. “We know a lot now about the sort of interrogation techniques that lead to false…
Category: AI
AI, Global Security News
Researchers Uncover 10 In-the-Wild Prompt Injection Payloads Targeting AI Agents
Forcepoint has found 10 new indirect prompt injection attacks targeting AI agents
AI, Global Security News
Microsoft Needs Copilot to Get Back in the Air
With its shares in a slump, Microsoft must show its own AI efforts are paying off.
AI, APAC, Cybersecurity, Exploits, Global Security News, Risk Management
Microsoft taps Anthropic’s Mythos to strengthen secure software development
Microsoft plans to integrate Anthropic’s Mythos AI model into its Security Development Lifecycle, a move that suggests advanced generative AI is beginning to play a direct role in how major software vendors identify vulnerabilities and harden code against attack. The company said it will use Mythos Preview, along with other advanced models, as part of…
AI, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management
U.S. CISA adds a flaw in Microsoft Defender to its Known Exploited Vulnerabilities catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Microsoft Defender to its Known Exploited Vulnerabilities catalog The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a flaw in Microsoft Defender, tracked as CVE-2026-33825 (CVSS score of 7.8), to its Known Exploited Vulnerabilities (KEV) catalog. CVE-2026-33825 is a Microsoft Defender flaw that can be exploited…
AI, china, Cybersecurity, Global Security News, Government & Policy
China-Linked GopherWhisper Infects 12 Mongolian Government Systems with Go Backdoors
Mongolian governmental institutions have emerged as the target of a previously undocumented China-aligned advanced persistent threat (APT) group tracked as GopherWhisper. “The group wields a wide array of tools mostly written in Go, using injectors and loaders to deploy and execute various backdoors in its arsenal,” Slovakian cybersecurity company ESET said in a report shared…
AI, APAC, Global Security News, privacy
OpenAI tackles a bad habit people have when interacting with AI
Since people tend to paste personal data into AI tools such as ChatGPT, OpenAI has released Privacy Filter, an open-weight model designed to detect and redact personally identifiable information (PII) in text. The model is available under the Apache 2.0 license on Hugging Face and GitHub. “This release is part of our broader effort to…
AI, Global Security News, Network Security
Vercel Finds More Compromised Accounts in Context.ai-Linked Breach
Vercel on Wednesday revealed that it has identified an additional set of customer accounts that were compromised as part of a security incident that enabled unauthorized access to its internal systems. The company said it made the discovery after expanding its investigation to include an extra set of compromise indicators, alongside a review of requests…
AI, Global Security News
Apple Patches iOS Flaw That Stored Deleted Signal Notifications in FBI Forensic Case
Apple has rolled out a software fix for iOS and iPadOS to address a Notification Services flaw that stored notifications marked for deletion on the device. The vulnerability, tracked as CVE-2026-28950 (CVSS score: N/A), has been described as a logging issue that has been addressed with improved data redaction. “Notifications marked for deletion could be…
AI, Cybersecurity, Global Security News
How Companies Can Use AI Cybersecurity Tools to Audit Their Defenses
In this post, I will talk about how companies can use AI cybersecurity tools to audit their defenses. Cybersecurity audits used to be slow, expensive, and often reactive. Teams would comb through logs, check configurations, and hope they hadn’t missed anything critical. That approach no longer holds. The scale of modern attacks, and the speed…
AI, Global Security News, malware, Network Security
Microsoft Graph API misused by new GoGra Linux malware for hidden communication
A new GoGra Linux malware uses Microsoft Graph API and an Outlook inbox to deliver payloads, making it stealthy and hard to detect. A new Linux version of the GoGra backdoor uses Microsoft’s Graph API and an Outlook inbox to deliver malicious payloads stealthily. The malware is linked to the Harvester cyberespionage group, which is…
AI, Global Security News
Shares of Apple Supplier STMicroelectronics Jump After Strong Quarter
It posted strong first-quarter sales and said revenue growth from artificial intelligence should accelerate in coming months.
AI, Apps, Global Security News, privacy
Tim Cook’s legacy: a successful CEO who stumbled over AI
Apple’s Tim Cook was viewed as a worthy successor to Steve Jobs when he took over as CEO in August 2011, two months before Jobs’ death. Apple products became successful (and profitable) in many ways due to his success as COO, where he whipped company operations and supply chains into shape. Cook expanded the company’s…
AI, Apps, Global Security News, Network Security
Scale Computing Execs on Unified Edge, Partner-First Strategy
Scale Computing, an edge-first platform company, is positioning itself as a platform that spans everything outside traditional data centers and cloud environments, from localized infrastructure to device-level deployments. Executives point to unique challenges in modern infrastructure needs Craig Theriac, VP of Product Management at Scale Computing, told Channel Insider that this spectrum introduces real-world challenges…
AI, APAC, Apps, Global Security News, Network Security, Risk Management
Oracle Builds for AI While Channel Rivals Chase Share
Oracle is reshaping its enterprise strategy around AI, multicloud infrastructure, and deeper ties with hyperscale partners such as AWS. But as the company pours billions into data centers, pushes agentic AI across its portfolio, and cuts jobs to support that transition, rivals see an opening to compete more aggressively for Oracle-adjacent workloads. That opportunity is…
AI, Global Security News
A year in, Zoom’s CISO reflects on balancing security and business
In this Help Net Security interview, Sandra McLeod, CISO at Zoom, reflects on her first year in the role. She talks about moving from reactive firefighting to business strategy, and what she heard from engineers, the board, and customers during her early months. McLeod discusses how she prepared for incident management, the dual job of…
AI, Apps, Global Security News
Scenario: Open-source framework for automated AI app red-teaming
Enterprises running customer service bots, data analytics agents, and other AI-driven applications in production handle sensitive records and connect to core business systems every day. LangWatch has released Scenario, an open-source framework that runs automated red-team exercises against AI agents using multi-turn attack techniques that mirror how adversaries operate in the wild. Multi-turn attacks replace…
AI, Compliance, Europe, Global Security News, privacy
GDPR works, but only where someone enforces it
A new measurement study of web tracking across ten countries offers a reality check for anyone working on privacy compliance. Researchers crawled the same set of globally popular websites from virtual machines located in Australia, Brazil, Canada, Germany, India, Singapore, South Africa, South Korea, Spain, and California. The results show that European privacy law does…
AI, Global Security News
Ransomware, fraud, and lawsuits drive cyber insurance claims to new peaks
The 2026 InsurSec Report from At-Bay, covering more than 100,000 policy years of claims data, documents a 7% year-over-year rise in overall claim frequency and an all-time high average severity of $221,000. Ransomware severity reached $508,000, up 16% from the prior year, making it the costliest incident type by a wide margin. Remote access weaknesses…
AI, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management, Russia
Riddled with flaws, serial-to-Ethernet converters endanger critical infrastructure
Serial-to-Ethernet adapters used in industrial, retail, and healthcare environments to link serial devices to TCP/IP networks are riddled with vulnerabilities and outdated open-source components, researchers warn. The flaws enable various attacks scenarios, including taking full control of mission-critical equipment such as remote terminal units, programmable logic controllers, point-of-sale systems, and bedside patient monitors. In a…
AI, Cybersecurity, Exploits, Global Security News, privacy
Claude Mythos signals a new era in AI-driven security, finding 271 flaws in Firefox
The Claude Mythos Preview appears to be living up to the hype, at least from a cybersecurity standpoint. The model, which Anthropic rolled out to a small group of users, including Firefox developer Mozilla, earlier this month, has discovered 271 vulnerabilities in version 148 of the browser. All have been fixed in this week’s release…
AI, Cybersecurity, Exploits, Global Security News, privacy
Claude Mythos signals a new era in AI-driven security, finding 271 flaws in Firefox
The Claude Mythos Preview appears to be living up to the hype, at least from a cybersecurity standpoint. The model, which Anthropic rolled out to a small group of users, including Firefox developer Mozilla, earlier this month, has discovered 271 vulnerabilities in version 148 of the browser. All have been fixed in this week’s release…
AI, Cybersecurity, Exploits, Global Security News, privacy
Claude Mythos signals a new era in AI-driven security, finding 271 flaws in Firefox
The Claude Mythos Preview appears to be living up to the hype, at least from a cybersecurity standpoint. The model, which Anthropic rolled out to a small group of users, including Firefox developer Mozilla, earlier this month, has discovered 271 vulnerabilities in version 148 of the browser. All have been fixed in this week’s release…
AI, Apps, Endpoint, Global Security News, malware, Network Security, Risk Management
Malicious pgserve, automagik developer tools found in npm registry
Application developers are being warned that malicious versions of pgserve, an embedded PostgreSQL server for application development, and automagik, an AI coding tool, have been dropped into the npm JavaScript registry, where they could poison developers’ computers. Downloading and using these versions will lead to the theft of data, tokens, SSH keys, credentials, including those…
AI, Global Security News
Workers Sue $10 Billion AI Startup for Collecting and Exposing Personal Data
Mercor, which has worked with OpenAI, Anthropic and Meta, says it disputes the allegations.
AI, Cybersecurity, Data Breaches, Global Security News
Smashing Security podcast #464: Rockstar got hacked. The data was junk. The secrets it revealed were not
A company that ran anonymous tip lines for 35,000 American schools – handling reports of bullying, weapons, and self-harm – boasted on its website that it had suffered zero security breaches in over 20 years. A hacker called Internet Yiff Machine thought that sounded like a challenge, with predictable results… Meanwhile, Rockstar Games gets hacked…
AI, Global Security News
NVIDIA and Google Cloud Collaborate to Advance Agentic and Physical AI
Companies can build AI factories with NVIDIA Vera Rubin-powered A5X instances scaling up to nearly 1 million Rubin GPUs, Gemini on Google Distributed Cloud, confidential NVIDIA Blackwell GPUs and agentic AI built on Gemini Enterprise Agent Platform with NVIDIA Nemotron and NeMo.
AI, Global Security News
Apple fixes iOS bug that retained deleted notification data
Apple has released out-of-band security updates for iPhone and iPad devices to fix a Notification Services flaw that could allow notifications marked for deletion to remain stored on the device. […]
AI, Cybersecurity, Global Security News
CISA director pick Sean Plankey withdraws his nomination
Sean Plankey, the long-sidelined nominee to lead the Cybersecurity and Infrastructure Security Agency, asked President Donald Trump on Wednesday to withdraw his nomination. “At this point in time, I am asking the President to remove my nomination from consideration,” he said in a notification letter seen by CyberScoop. “After thirteen months since my initial nomination, it…
AI, Global Security News, Risk Management
Orro Transforms Vulnerability Management with AI-Powered Exposure Management Service
Orro’s Managed CTEM Service Helps Australian Businesses Address Critical Pain Points in Vulnerability Management by Focusing on Risks and Threats, Integrating Data, and Providing Contextual Insights
AI, Global Security News
Infosys Positioned as a Leader and Star Performer in Everest Group’s Adobe Services PEAK Matrix® Assessment 2025
Infosys Aster harnesses AI-led innovation to deliver transformative Adobe solutions that elevate brand experiences, enhance marketing efficiency and accelerate business outcomes
AI, china, Compliance, Data Security, Exploits, Global Security News, Government & Policy, privacy, Risk Management, Russia
House Republicans roll out national privacy bill
House Republicans unveiled on Wednesday Congress’ latest effort to tackle comprehensive digital privacy legislation for Americans. The Secure Data Act would allow consumers to opt out of data collection for individual businesses for the purposes of targeted advertising, selling to third parties or for use in automated decisionmaking. It would also require companies to inform…
AI, Exploits, Global Security News, malware
New Mirai campaign exploits RCE flaw in EoL D-Link routers
A new Mirai-based malware campaign is actively exploiting CVE-2025-29635, a high-severity command-injection vulnerability affecting D-Link DIR-823X routers, to enlist devices into the botnet. […]
AI, Global Security News, privacy
Google’s Workspace Intelligence promises privacy while running on your data
Security and data governance are among the key considerations in Google’s latest AI update, which introduces Workspace Intelligence within Google Workspace. Google describes the feature as “a secure, dynamic system that inherently understands complex semantic relationships within your Workspace apps (such as Docs, Slides, or Gmail) content, your active projects, your collaborators, and your organization’s…
AI, Global Security News, Network Security
ServiceNow and Google Cloud Unite AI Agents for Autonomous Enterprise Operations
AI agents across Google Gemini’s Enterprise platform and the ServiceNow AI Platform work as one autonomous chain across 5G networking, retail, and IT systems
AI, Global Security News
Salesforce and Google Cloud Enable AI Agents to Act Across Both Platforms with Deep Context and End-to-End Workflows
Google Cloud and Salesforce today announced an expanded partnership that will enable AI agents to execute end-to-end workflows across both platforms by solving the long-standing challenge of fragmented data and disconnected systems.
AI, Global Security News
Google Cloud Commits $750 Million to Accelerate Partners’ Agentic AI Development
New fund and resources will support agentic AI development, adoption, and education throughout Google Cloud’s global partner ecosystem
AI, Global Security News
SAP and Google Cloud Expand Partnership to Deploy Multi-Agent AI
Customers can deploy Joule Agents in SAP CX Solutions to build, launch, and optimize marketing campaigns Gemini Enterprise acts as a central hub for agents to take action across SAP and Google Cloud platforms
AI, Global Security News, Network Security
DDoS wave continues as Mastodon hit after Bluesky incident
Mastodon suffered a major DDoS attack shortly after a similar incident hit Bluesky. The outage was significant but resolved within a few hours. Mastodon was hit by a major DDoS attack just days after a similar disruption affected Bluesky. Mastodon is a free and open-source software platform for decentralized social networking with microblogging features similar…
AI, Apps, Exploits, Global Security News
Microsoft issues out-of-band patch for critical security flaw in update to ASP.NET Core
Developers are advised to check their applications after Microsoft revealed that last week’s ASP.NET Core update inadvertently introduced a serious security flaw into the web framework’s Data Protection Library. Microsoft describes the issue as a “regression,” coding jargon for an update that breaks something that was previously working correctly. In this case, what was introduced…
AI, Cybersecurity, Global Security News
Vodafone Business Launch New AI and Cybersecurity Solutions to Accelerate Small Business Digital Transformation in Partnership with Google Cloud
New managed security and AI concierge services mark the latest milestone in $1billion strategic partnership
AI, Data Breaches, Global Security News
Discord-Linked Group Accessed Anthropic’s Claude Mythos AI in Vendor Breach
Anthropic is investigating a vendor breach after a Discord-linked group accessed its Claude Mythos AI model, with no evidence of impact on core systems.
AI, Global Security News
The U.S. Has Long Been a Nation of Inventors—and Luddites
From smashing looms to blocking AI data centers, some Americans have resisted technology’s forward march.
AI, Cybersecurity, Global Security News
Malicious KICS Docker Images and VS Code Extensions Hit Checkmarx Supply Chain
Cybersecurity researchers have warned of malicious images pushed to the official “checkmarx/kics” Docker Hub repository. In an alert published today, software supply chain security company Socket revealed that unknown threat actors managed to have overwritten existing tags, including v2.1.20 and alpine, while also introducing a new v2.1.21 tag that does not correspond to an official…
AI, Apps, Cybersecurity, Endpoint, Exploits, Global Security News, Network Security, Risk Management
Anthropic Probes Alleged Unauthorized Access to AI Security Tool Mythos
Anthropic is investigating reports that an unauthorized group gained access to its newly launched tool, Mythos, highlighting potential gaps in how early-access AI systems are distributed and secured. “Unauthorized users were able to access Anthropic’s Mythos model, reportedly by just changing a model name,” said Shane Fry, CTO at RunSafe Security in an email to…
AI, Global Security News
Atlassian Expands Partnership with Google Cloud to Power Agentic AI for Teams Worldwide
Next phase of partnership brings deeper integrations between Atlassian Rovo and Gemini models for joint customers, following Atlassian’s recognition as a 2026 Google Cloud Partner of the Year
AI, Cybersecurity, Global Security News
Self-Propagating Supply Chain Worm Hijacks npm Packages to Steal Developer Tokens
Cybersecurity researchers have flagged a fresh set of packages that have been compromised by bad actors to deliver a self-propagating worm that spreads through stolen developer npm tokens. The supply chain worm has been detected by both Socket and StepSecurity, with the companies tracking the activity under the name CanisterSprawl owing to the use of…
AI, Exploits, Global Security News, malware, Network Security, Risk Management
Mirai Botnet exploits CVE-2025-29635 to target legacy D-Link routers
Mirai botnet is targeting old D-Link routers using CVE-2025-29635, a command injection flaw exploitable via crafted POST requests after public PoC disclosure. A Mirai botnet is actively exploiting a command injection vulnerability, tracked as CVE-2025-29635, in discontinued D-Link routers, Akamai reports. The flaw allows attackers to inject commands because an attacker-controlled value is copied without…
AI, Data Breaches, Global Security News, Government & Policy
Cyberattack on French government agency triggers phishing alert for users
France Titres, a French government agency, has disclosed a data breach that may have exposed user data from its online portal. France Titres, also known as the Agence nationale des titres sécurisés (ANTS), operates under the French Ministry of the Interior and manages systems for official identity and registration documents, including driver’s licences, national ID…
AI, Global Security News
Exabeam Extends Agent Behaviour Analytics to the Google Cloud Agent Ecosystem
COMPANY NEWS: Comprehensive visibility and anomaly detection now available for agents built with Google Cloud’s Agent Development Kit and multi-agent workflows via the upcoming Google Agent Gateway
AI, Global Security News
Manhattan Associates Announces Latest Enhancements for Retailers
Manhattan Associates (NASDAQ: MANH), the global leader in supply chain commerce with unmatched AI capabilities, today announced major enhancements to Manhattan Active® Omni. These innovations are designed to help retailers maximise in-store and online sales while delivering best-in-class customer experiences across all touchpoints. New capabilities include embedded agentic AI for store associates and customer service…
AI, Global Security News
Manhattan Associates Announces Latest Enhancements for Retailers
Manhattan Associates (NASDAQ: MANH), the global leader in supply chain commerce with unmatched AI capabilities, today announced major enhancements to Manhattan Active® Omni. These innovations are designed to help retailers maximise in-store and online sales while delivering best-in-class customer experiences across all touchpoints. New capabilities include embedded agentic AI for store associates and customer service…
AI, Cloud Security, Compliance, Cybersecurity, Endpoint, Exploits, Global Security News, Network Security, Risk Management
A technical walkthrough of multicloud full-stack security using AWS Security Hub Extended
Building on our recent announcement of AWS Security Hub Extended —our full-stack enterprise security offering — we want to show you how we’re simplifying security procurement and operations for your multicloud environments. Whether you’re a security architect evaluating solutions or a CISO looking to streamline vendor management, this post walks through the streamlined experience that…
AI, Compliance, Global Security News
Employment Hero AI unlocks new employment model targeting $12.6 billion in duplicated employment admin holding Australia back
New modelling shows businesses are paying $12.6 billion more than they should in employment administration Complex, manual HR processes are driving duplication, costing up to a quarter of an employee’s salary and dragging down productivity Despite Australian businesses spending $160 billion annually on compliance, hundreds of thousands of workers remain underpaid and over half of…
AI, Cybersecurity, Global Security News, Network Security, privacy
5 Best Free VPNs You Can Trust in 2026 (And the Premium Trials Worth Trying)
This guide is for everyday users, remote workers, and privacy-conscious professionals who want to stay secure online without paying upfront, and it highlights the best free VPNs in 2026 you can trust along with premium trials worth testing before committing. Free Wi-Fi at the airport. A coffee shop hotspot. Even your home network. Every time…
AI, Global Security News, Government & Policy, privacy
The Supreme Court is about to decide how far geofence warrants can go
The Supreme Court will hear oral arguments Monday in a case that could limit the government’s ability to obtain bulk digital data of device users with a single warrant, in a rare instance of the country’s top justices taking on digital rights. Chatrie v. The United States is the first major Fourth Amendment case the…
AI, Cybersecurity, Global Security News, Risk Management
Logically CEO on Cyber Risk, AI, and MSP Strategy
How should MSPs talk to the board about cyber risk? In this episode of Channel Insider: Partner POV, Katie Bavoso speaks with Logically CEO Joshua Skeens about cybersecurity as a board-level issue, brand protection, security tool sprawl, best-of-breed vs. consolidation strategies, and why 2026 could be the year of AI disappointment. Timestamps00:00 Intro00:40 Meet Logically…
AI, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
Over 1,300 SharePoint Servers Still Exposed to Actively Exploited Spoofing Flaw
More than 1,300 internet-exposed Microsoft SharePoint servers remain unpatched against a spoofing flaw previously exploited as a zero-day. “Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network,” said Microsoft in its advisory. SharePoint Servers Still Exposed The vulnerability, tracked as CVE-2026-32201, affects SharePoint Enterprise Server 2016, SharePoint…
AI, Global Security News, Risk Management
TeamViewer Highlights Agentless Access and AI-Supported Maintenance for Industrial Operations
TeamViewer is unveiling key enhancements to its Agentless Access and Assist AR solutions, strengthening its portfolio for the AI-accelerated convergence of operational technology (OT) and IT environments at Hannover Messe. Both innovations address key challenges for operational efficiency in industrial digital transformation, including downtime, security risks, and growing complexity.
AI, Global Security News, malware, Network Security
Harvester Deploys Linux GoGra Backdoor in South Asia Using Microsoft Graph API
The threat actor known as Harvester has been attributed to a new Linux version of its GoGra backdoor deployed as part of attacks likely targeting entities in South Asia. “The malware uses the legitimate Microsoft Graph API and Outlook mailboxes as a covert command-and-control (C2) channel, allowing it to bypass traditional perimeter network defenses,” the…
AI, Funding, Global Security News
VAST Data Valued at $30 Billion as AI Drives a New Infrastructure Stack
COMPANY NEWS: New funding reflects VAST’s rare combination of growth and profitability, driven by its central role in powering AI infrastructure at global scale
AI, APAC, Cybersecurity, Global Security News
Kaseya Discusses MSP Challenges And Evolving Cybersecurity Scams
iTWire TV: Dan Garcia, Vice President and General Manager for APAC at Kaseya, spoke to iTWire TV about the struggles of MSPs and clients’ reduced spend plus the evolving threat landscape and AI.
AI, Global Security News, Network Security
OpenAI Taps Former Google Cloud Lead for Partnerships Role
Former Google Cloud channel executive Colleen Kapase has joined OpenAI as VP of strategic global partnerships and ecosystems, bringing a seasoned partner leader to the AI vendor as it expands its enterprise go-to-market efforts. Kapase disclosed the move Tuesday after leaving Google Cloud in March, where she led channel partnerships during a broader revamp of…
AI, Cybersecurity, Global Security News
NCSC Unveils SilentGlass, a Plug-In Device to Protect Monitors from Cyber-Attacks
The UK’s cybersecurity agency said the devices will be available for purchase by organizations around the world
AI, Global Security News
Check Point to Integrate AI Defense Plane with Google Cloud to Help Secure AI Agents with Integrated Discovery, Governance, and Runtime Protection
Check Point Software Technologies Ltd. (NASDAQ: CHKP), a pioneer and global leader of cyber security solutions, today announced that it will serve as a launch partner with Google Cloud to integrate Check Point’s AI Defense Plane with Google Cloud’s Gemini Enterprise Agent Platform. The integration will combine centralised agent control with contextual intelligence and real-time…
AI, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
News alert: BreachLock’s integrated attack validation platform debuts in Gartner AEV category
NEW YORK, Apr. 21, 2026, CyberNewswire—BreachLock, a global leader in offensive security, today announced it has been named a representative vendor in the 2026 Gartner Market Guide for Adversarial Exposure Validation. This recognition marks the first time BreachLock has been identified in the Adversarial Exposure Validation (AEV) category since launching its agentic AI-powered Adversarial Exposure Validation platform in 2025. Not only has the company gained recognition in the AEV market quickly, but BreachLock has also emerged as the only vendor offering adversarial exposure validation, Penetration Testing…
AI, Compliance, Cybersecurity, Global Security News
Top 7 QuickBooks Enterprise Hosting Providers
In this post, we will compare the best QuickBooks Enterprise hosting providers by dedicated server support, Advanced Reporting performance, industry edition compatibility, pricing, and compliance. Your local server feels like control. It is not. One failed hard drive, one corrupted Windows update, one user accidentally locking a company file over a glitchy VPN, and your…
AI, Cybersecurity, Global Security News
Claude Mythos finds 271 Firefox flaws, Mozilla believes zero-days are numbered
The Mozilla Foundation tested Claude Mythos, an Anthropic AI model that has stirred debate in the cybersecurity community. Before granting access to Mythos, Mozilla scanned Firefox using Opus 4.6, which led to fixes for 22 security-sensitive bugs in Firefox 148. For instance, Mythos identified 271 vulnerabilities in Firefox 150. Firefox CTO Bobby Holley said other…
AI, Global Security News
Hitachi Vantara Releases FY2025 Sustainability Report, Highlighting Leadership in Energy-Efficient Infrastructure for AI-Driven Workloads
GUEST RESEARCH: Annual report details advancements in sustainable data infrastructure, including expanded lifecycle design initiatives, governance improvements and energy-efficient systems for AI workloads
AI, Apps, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
CVE-2026-40372: Microsoft Patches ASP.NET Core Privilege Escalation Vulnerability
Microsoft has released an out-of-band update to fix an ASP.NET Core vulnerability that could allow attackers to take full control of affected systems. The flaw enables unauthenticated privilege escalation, increasing risk for enterprises running .NET workloads. “Improper verification of cryptographic signature in ASP.NET Core allows an unauthorized attacker to elevate privileges over a network,” said…
AI, APAC, Global Security News
Datadog Launches GPU Monitoring to Help Businesses Cut Costs and Boost Performance as They Scale AI Projects
The launch of Datadog’s GPU Monitoring helps teams plan capacity, troubleshoot issues quickly, prevent costly failures and avoid wasted spend
AI, Global Security News
Google Introduces Specialized Chip for New Wave of AI Computing
Google has raised the stakes in the contest to develop the world’s fastest and most efficient artificial-intelligence chips.
AI, Global Security News
Funlab Simplifies Global Operations with Dayforce
COMPANY ANNOUNCEMENT: Funlab employees across Australia, New Zealand, and U.S. are now live on the Dayforce AI-powered people platform
AI, Global Security News
Google Chat becomes an agent interface for Workspace
Google wants its Chat app to become the main interface for office workers to interact with AI agents within its Workspace suite. “We’re making Chat the centerpiece through which people talk, not just with other people, but with all their agents, whether they are in Workspace or built on our platform,” Google Cloud CEO Thomas…
AI, Global Security News
Inside Caller-as-a-Service Fraud: The Scam Economy Has a Hiring Process
Fraud operations now operate like call centers, complete with hiring, training, and performance tracking. Flare reveals how cybercriminals manage “Caller-as-a-Service” operations like a professional sales team. […]
AI, Apps, Exploits, Global Security News, Network Security, Risk Management
Microsoft out-of-band updates fixed critical ASP.NET Core privilege escalation flaw
Microsoft fixed critical ASP.NET Core vulnerability, tracked as CVE-2026-40372 (CVSS score of 9.1), that lets attackers escalate privileges. Microsoft released out-of-band updates to address a serious ASP.NET Core vulnerability tracked as CVE-2026-40372 (CVSS score of 9.1). Microsoft fixed the flaw in ASP.NET Core version 10.0.7. An attacker could exploit the flaw to gain SYSTEM-level privileges, access…
AI, Global Security News
Prove Identity Platform connects verification, authentication, and fraud prevention
Prove has launched the Prove Identity Platform, turning identity verification into an ongoing, real-time process for users, businesses, and AI agents. AI agents are already initiating real transactions on behalf of real people. OpenAI and Stripe launched the Agentic Commerce Protocol in September. Visa named Anthropic, OpenAI, and Perplexity as agentic commerce partners. As that…
AI, Global Security News, Network Security
Gigamon Showcases Momentum in the Network Observability Market, as AI and Hybrid Cloud Drive Demand for Deep Observability
GUEST RESEARCH: Network observability market growth projected to be 6.5 percent to $4.39 billion by 2029, with AI-, cloud-, and security-driven segments poised to double or triple that pace
AI, Global Security News
Ping Identity Wins 2026 Google Cloud Security Partner of the Year Award for Identity & Access Management
COMPANY NEWS: Award highlights joint leadership in modernising and extending identity controls into real-time AI-driven environments
AI, Global Security News
Rubrik Secures and Accelerates AI Agents on Google Cloud
New Rubrik Agent Cloud Integration with Gemini Enterprise Agent Platform provides a unified control layer for AI agent operations
AI, Exploits, Global Security News, Network Security, Risk Management
Critical BRIDGE:BREAK flaws impact Lantronix and Silex Technology converters
22 BRIDGE:BREAK flaws hit Lantronix and Silex Technology converters, exposing approximately 20,000 devices to hijacking and data tampering. Researchers at Forescout Research Vedere Labs found 22 BRIDGE:BREAK flaws in serial-to-IP devices from Lantronix and Silex Technology. Serial-to-IP converters, also known as serial device servers, connect legacy serial equipment to modern IP networks for remote monitoring…
AI, Cybersecurity, Global Security News, malware, Network Security
New Mirai variants target routers and DVRs in parallel campaigns
Hidden inside newly discovered botnet malware is an unusual message from its creator: “AI.NEEDS.TO.DIE”. Dubbed “tuxnokill” by researchers at Akamai, the malware is one of two fresh Mirai botnet variants documented this month by major cybersecurity firms and, judging by the aforementioned hard-coded string, this particular variant might have been coded the old-fashioned way. “Tuxnokill”…
AI, Global Security News, Risk Management
Acronis GenAI Protection gives MSPs control over AI usage and data risks
Acronis has launced Acronis GenAI Protection, a monitoring and security solution that enables managed service providers (MSPs) to control generative AI usage across client environments, preventing sensitive data exposure and protecting against malicious prompt manipulation. Acronis GenAI Protection represents the initial phase of Acronis Cyber Workspace, with additional capabilities planned for release to deliver a…
AI, APAC, Compliance, Cybersecurity, Europe, Global Security News, Government & Policy, malware, Risk Management
More Attack Context for Faster Triage, Response, and Hunting. Now Available to Every SOC
ANY.RUN has expanded access to Threat Intelligence capabilities for SOC and MSSP teams, backed by live attack data from 15,000 organizations. Here’s how your team can test TI’s impact on triage quality, response speed, and threat hunting workflows. See How Threat Intelligence Accelerates Your SOC ANY.RUN now offers 20 premium requests in Threat Intelligence Lookup and YARA Search as part of the Free plan. You can get immediate threat context for over 40 types…
AI, Global Security News
Surge in Silent Subject Phishing Attacks Targets VIP Users
Null subject phishing campaigns bypass filters and target VIPs with QR code and RMM abuse
AI, Global Security News
New npm supply-chain attack self-spreads to steal auth tokens
A new supply chain attack targeting the Node Package Manager (npm) ecosystem is stealing developer credentials and attempting to spread through packages published from compromised accounts. […]
AI, Global Security News
Elastic MCP Apps bring security and observability workflows into AI tools
Elastic has announced MCP Apps for Elastic, delivering agent-native UI experiences for security and observability workflows across third-party coding tools and chat clients. The new MCP Apps enable teams to investigate threats, diagnose system behavior, and act on data directly within the AI tools they already use, without switching tools or stitching together separate systems.…
AI, Data Breaches, Global Security News
Bluesky Back Online After DDoS Attack, as Iran-Linked 313 Team Takes Credit
Bluesky is back online after a roughly 24-hour DDoS attack disrupted services, with the Iran-linked 313 Team claiming responsibility and no data breach reported.
AI, Global Security News, Risk Management
Gemini Enterprise update brings AI agents into collaborative workflows
Google has updated its Gemini Enterprise app, adding new ways for office workers to build, manage, and interact with AI agents. The company also rolled out additional tools for IT teams to govern the use of agents via the new Gemini Enterprise Agent Platform. Google first unveiled Gemini Enterprise last year, pitching it as a…
AI, Apps, Compliance, Data Breaches, Endpoint, Global Security News, Network Security, privacy
Attacking the MCP Trust Boundary
Every secure API draws a line between code and data. HTTP separates headers from bodies. SQL has prepared statements. Even email distinguishes the envelope from the message. The Model Context Protocol (MCP), the fast-growing standard for connecting AI agents to external services, inherits that gap from the models it sits on top of. Its central…
AI, Global Security News
Why ANZ Enterprises Need Better Agent-to-Agent Communication
GUEST OPINION: As enterprises move AI from experimentation to production, they face a growing connectivity and governance challenge. Organisations no longer route prompts to a single LLM, but orchestrate complex systems where agents communicate with external tools via MCP and collaborate with other agents using emerging agent communication protocols, such as Agent to Agent (A2A).
AI, Apps, Global Security News, malware, Network Security
NFC tap-to-pay gets tapped by hackers
Cyber crooks are abusing a trojanized Android payment application to steal near field communication (NFC) data and PINs, enabling cloning of payment cards and draining victim accounts. According to ESET researchers, a new variant of the NGate malware has been infused into the HandyPay NFC-relay application to transfer NFC data to the attacker’s device and…
AI, APAC, Data Breaches, Global Security News
DetectFlow: Deploying Detections at Scale Without the Engineering Overhead
The Problem: Achieving Threat Detections at Scale At SOC Prime, we have spent over a decade making detection engineering easier for organizations of every size. Each year, as threats multiply and environments grow more complex, the traditional approach puts SOC Managers in an impossible position — responsible for coverage they cannot achieve with the tools…
AI, Cybersecurity, Global Security News
Lotus Wiper Malware Targets Venezuelan Energy Systems in Destructive Attack
Cybersecurity researchers have discovered a previously undocumented data wiper that has been used in attacks targeting Venezuela at the end of last year and the start of 2026. Dubbed Lotus Wiper, the novel file wiper has been used in a destructive campaign targeting the energy and utilities sector in Venezuela, per findings from Kaspersky. “Two…
AI, Global Security News, Network Security
Toxic Combinations: When Cross-App Permissions Stack into Risk
On January 31, 2026, researchers disclosed that Moltbook, a social network built for AI agents, had left its database wide open, exposing 35,000 email addresses and 1.5 million agent API tokens across 770,000 active agents. The more worrying part sat inside the private messages. Some of those conversations held plaintext third-party credentials, including OpenAI API…
AI, Apps, Global Security News
Tencent’s QClaw AI agent app arrives on Windows and macOS
Tencent has opened an international beta of QClaw, an AI agent application aimed at consumers in Canada, Japan, Singapore, South Korea, and the United States. The first wave is capped at 20,000 users. Additional markets are scheduled to follow. QClaw runs on Windows and MacOS. Setup takes about three minutes and involves downloading the application,…
AI, Compliance, Europe, Global Security News, privacy, Risk Management
Meta to track employee keystrokes, screen activity to train AI agents
Meta plans to track US employees’ mouse movements, clicks, keystrokes, and screen activity to train workplace AI agents, according to Reuters, offering an early look at how far major tech companies may go to build systems that can automate knowledge work. The company plans to do so through a tool called Model Capability Initiative, or…
AI, Apps, Exploits, Global Security News
Phishing reclaims the top initial access spot, attackers experiment with AI tools
Phishing returned as the leading method attackers used to break into organizations in the first quarter of 2026, accounting for over a third of engagements where initial access could be determined, according to Cisco Talos. It is the first quarter phishing has led the category since Q2 2025, when exploitation of public-facing applications took over…
AI, Compliance, Cybersecurity, Exploits, Global Security News, malware, Network Security, Risk Management, Venture
The AI era demands a different kind of CISO
Many security leaders are still operating with frameworks built for a different era. For years, success was measured by fixed checkpoints, such as passing audits, closing vulnerabilities, and maintaining compliance. Those markers still have value, but they were designed for a threat landscape that moved in predictable, linear ways. Today, that landscape is shifting in…
AI, Compliance, Global Security News
OneDrive updates focus on AI, access control, and compliance
Microsoft OneDrive’s recent updates focus on improving intelligence, collaboration, and administrative control. “Last year, we made a promise: your files should work for you, not the other way around. That meant reimagining OneDrive not just as a place to store files, but as an intelligent layer that surfaces what matters, eliminates busy work, and enables…