Geek-Guy.com

Tag: against

AI, Global Security News, Network Security, Risk Management

Cops Are Spying on People Who Criticize AI Data Centers Online

Americans speaking out against artificial intelligence data centers on social media are falling under police surveillance, a confidential law enforcement bulletin obtained by The Intercept reveals. A fusion center in Philadelphia combed through spicy internet comments from AI critics and concluded there is a growing risk of physical violence against data centers from “domestic violent…

Read more →

AI, Apps, china, Compliance, Cybersecurity, Data Breaches, Europe, Exploits, Global Security News, Risk Management

GDPR set the tone for regulatory action — and the AI fine pushback to come

Big tech firms continue to push back against fines levied for alleged violations of European data protection law, in what could be a harbinger for AI regulations to come. While lawyers and experts quizzed by CSO broadly argue that big tech firms contesting data protection rules isn’t a particular cause for concern, the more widespread…

Read more →

AI, Apps, Cloud Security, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security, Risk Management

6 Under-the-Radar Vendors That Supercharge Breach and Attack Simulation in 2026

This guide is for IT leaders and security teams looking to validate their defenses against real-world cyberattacks in 2026. It covers the top breach and attack simulation (BAS) solutions and the key capabilities organizations should evaluate to strengthen endpoint, cloud, and network security resilience. Key Takeaways of BAS Solutions in 2026 Breach and attack simulation…

Read more →

AI, Global Security News, malware

Product showcase: F-Secure Internet Security blocks phishing sites, fake stores, and SMS scams

F-Secure Internet Security protects against viruses, ransomware, spyware, infected email attachments, and other cyber threats. It focuses on securing devices and online activity through malware protection, scam prevention, safe browsing, and banking safeguards. The platform supports Windows, macOS, Android, and iOS devices under a single subscription. After downloading the Android app from the Play Store,…

Read more →

AI, Global Security News, Government & Policy, Network Security

Alleged leader of Kimwolf, a sweeping botnet for cybercriminals, arrested in Canada

Authorities arrested and unsealed charges against a Canadian man accused of running Kimwolf, one of the most far-reaching DDoS botnets on record, the Justice Department said Thursday. Jacob Butler was arrested Wednesday in Ottawa, Canada, and awaits extradition to the United States where he is charged with aiding and abetting computer intrusions and, if convicted,…

Read more →

AI, Data Breaches, Global Security News, malware

DigiCert breached via malicious screensaver file

A targeted social engineering attack against DigiCert’s support channel led to the compromise of internal systems and the unauthorized issuance of EV Code Signing certificates. DigiCert is a global Certificate Authority (CA) providing digital trust services, specializing in TLS/SSL certificates, PKI management, and IoT security. According to DigiCert’s incident report, a threat actor contacted the…

Read more →

AI, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

Over 1,300 SharePoint Servers Still Exposed to Actively Exploited Spoofing Flaw

More than 1,300 internet-exposed Microsoft SharePoint servers remain unpatched against a spoofing flaw previously exploited as a zero-day. “Improper input validation in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network,” said Microsoft in its advisory. SharePoint Servers Still Exposed  The vulnerability, tracked as CVE-2026-32201, affects SharePoint Enterprise Server 2016, SharePoint…

Read more →

AI, Data Breaches, Global Security News

Shadow AI, deepfakes, and supply chain compromise are rewriting the financial sector threat playbook

Financially motivated attacks continued to drive the bulk of cyber incidents against banks, insurers, and payment processors in 2025. Approximately 90% of breaches affecting financial institutions carried a financial motive, with data breaches accounting for roughly 64% of incidents and ransomware making up the remaining 36%. The average cost of a data breach in the…

Read more →

AI, Cybersecurity, Global Security News, Risk Management

Lawmakers ponder terrorism designations, homicide charges over hospital ransomware attacks

Lawmakers at a hearing Tuesday explored ways to beef up punishments for ransomware attacks against hospitals, possibly by labeling them as more severe crimes. One proposal floated at the House Homeland Security Committee hearing, to treat ransomware attacks as terrorism, is an idea Congress has flirted with before. Another would be to press prosecutors to…

Read more →

AI, Apps, Cybersecurity, Europe, Global Security News, Government & Policy, Risk Management

FIRESIDE CHAT: Geopolitical turmoil, rising AI risk add a new layer to enterprise cyber defense

As if securing the enterprise against a tidal wave of AI tools wasn’t hard enough, it turns out the geopolitical instability of the moment is making things worse. That wasn’t the headline at RSAC 2026 last week — agentic AI dominated the agenda — but the stress was visible at the ground level if you…

Read more →

AI, Data Breaches, Exploits, Global Security News

New GPUBreach Attack Enables Full CPU Privilege Escalation via GDDR6 Bit-Flips

New academic research has identified multiple RowHammer attacks against high-performance graphics processing units (GPUs) that could be exploited to escalate privileges and, in some cases, even take full control of a host. The efforts have been codenamed GPUBreach, GDDRHammer, and GeForge. GPUBreach goes a step further than GPUHammer, demonstrating for the first time that

Read more →

AI, Compliance, Global Security News, Risk Management

Delve Compliance Scandal Exposes AI Vendor Risk Gaps

Allegations against AI compliance startup Delve are raising urgent questions about how enterprises vet vendors in the race to adopt automation.  As scrutiny grows, the controversy underscores a broader issue: many AI tools marketed as “enterprise-ready” may lack the safeguards, validation, and transparency buyers assume are in place. Compliance platform Delve faces allegations of fabricated…

Read more →

AI, china, Cybersecurity, Exploits, Global Security News, Government & Policy, Network Security, Politics, Russia

Stryker attack highlights nebulous nature of Iranian cyber activity amid joint U.S.-Israel conflict

A cyberattack that an Iranian hacking group said it carried out against medical device manufacturer Stryker might mark Tehran’s first significant cyber action since the start of the joint U.S.-Israel conflict. But even that may have been a happy accident for Iranian hackers in what has been a low buzz of activity during that timeframe,…

Read more →

AI, Cybersecurity, Europe, Global Security News, Government & Policy, Politics, Risk Management

Anthropic’s US gov’t lawsuit says federal action “unprecedented and unlawful”

Anthropic on Monday fought back against the US federal government’s determination that it is a supply chain risk, suing the feds and arguing to a California federal judge that the government is being inconsistent and contradictory. “The Constitution confers on Anthropic the right to express its views—both publicly and to the government—about the limitations of…

Read more →

AI, Apps, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

Perplexity Comet Browser Bug Leaks Local Files via AI Prompt Injection

A newly disclosed attack against Perplexity’s AI-powered Comet browser shows how agentic browsers can be manipulated into leaking sensitive data directly from a user’s machine.  Zenity Labs researchers demonstrated a zero-click attack that tricks the browser’s AI agent into reading local files and sending their contents to an attacker-controlled server. The attack “… results in…

Read more →

AI, Apps, china, Cybersecurity, Data Security, Exploits, Global Security News, Government & Policy, Network Security, Politics, Risk Management

Texas Sues TP-Link Over Alleged Security Risks and Supply Chain Deception

Texas has filed a lawsuit against networking manufacturer TP-Link Systems, accusing the company of misleading consumers about the security and origins of its routers while exposing users to exploitation by Chinese state-backed threat actors.  The complaint alleges that TP-Link marketed its devices as secure and labeled them “Made in Vietnam,” despite sourcing nearly all components…

Read more →

AI, APAC, Cybersecurity, Global Security News

The defense industrial base is a prime target for cyber disruption

Cyber threats against the defense industrial base (DIB) are intensifying, with adversaries shifting from traditional espionage toward operations designed to disrupt production capacity and compromise supply chains. In this Help Net Security interview, Luke McNamara, Deputy Chief Analyst, Google Threat Intelligence Group, explains how attackers target the broader defense ecosystem and why identity has become…

Read more →

AI, Compliance, Cybersecurity, Global Security News, Network Security, privacy, Russia

AI was not plotting humanity’s demise. Humans were

AI bots are having existential crises, inventing religions, and allegedly plotting against humanity… or so the internet would have you believe. We dig into Moltbook, the “AI-only” social network that sent Twitter into a meltdown, attracted breathless talk of the singularity, and turned out to be far less Terminator and far more humans role-playing as…

Read more →

AI, Cybersecurity, Denial of Service, Global Security News, Law & order, Network Security, Podcast, Russia, Security threats

Smashing Security podcast #454: AI was not plotting humanity’s demise. Humans were

AI bots are having existential crises, inventing religions, and allegedly plotting against humanity… or so the internet would have you believe. We dig into Moltbook, the “AI-only” social network that sent Twitter into a meltdown, attracted breathless talk of the singularity, and turned out to be far less Terminator and far more humans role-playing as…

Read more →

AI, Apps, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, Network Security, Risk Management

Software developers: Prime cyber targets and a rising risk vector for CISOs

Threats against corporate software developers are increasing and diversifying, challenging security leaders to develop more agile defenses against this growing attack vector. Attackers are increasingly targeting the tools, access, and trusted channels used by software developers rather than simply exploiting application bugs. The threats blend technical compromise — malicious packages, development pipeline abuse, etc. —…

Read more →

AI, Apps, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, Network Security, Risk Management

Software developers: Prime cyber targets and a rising risk vector for CISOs

Threats against corporate software developers are increasing and diversifying, challenging security leaders to develop more agile defenses against this growing attack vector. Attackers are increasingly targeting the tools, access, and trusted channels used by software developers rather than simply exploiting application bugs. The threats blend technical compromise — malicious packages, development pipeline abuse, etc. —…

Read more →

AI, Apps, Europe, Global Security News, Government & Policy, Government, Industry, Laws and Regulations, Markets, Technology Industry

How the EU’s trade ‘bazooka’ could hit the US tech sector

When the Trump Administration threatened tariffs last month against countries looking to block any plan to annex Greenland, European leaders debated responding with the region’s trade “bazooka” – a retaliation mechanism that could target US tech firms selling into the European Union.  The anti-coercion instrument, introduced in 2023 and so far unused, is designed to deter…

Read more →

AI, Compliance, Cybersecurity, Global Security News, malware, privacy, Russia

The dark web’s worst assassins, and Pegasus in the dock

In episode 452, a London-based YouTuber wins a landmark court case against Saudi Arabia after his phone was hacked with Pegasus spyware — exposing how a single, seemingly harmless text message can turn a smartphone into a round-the-clock surveillance device. Plus, we go looking for professional hitmen online – only to uncover uncomfortable questions about…

Read more →

AI, Apps, APT, Blog, CERT-UA, CVEs, Cybersecurity, Exploits, Global Security News, Government & Policy, malware, Network Security, Pluggyape, Risk Management, Russia

UAC-0190 Attack Detection: Fake Charity Lures Used to Deploy the PLUGGYAPE Backdoor Against the Ukrainian Armed Forces

On January 12, 2026, the CERT-UA team disclosed a targeted cyber-espionage campaign against the Ukrainian Armed Forces that abused charity-themed social engineering to deliver the PLUGGYAPE backdoor. The activity, observed between October and December 2025, is attributed with medium confidence to the russia-aligned threat actor known as Void Blizzard (Laundry Bear), tracked by CERT-UA as…

Read more →

AI, Apps, APT, Blog, CERT-UA, CVEs, Cybersecurity, Exploits, Global Security News, Government & Policy, malware, Network Security, Pluggyape, Risk Management, Russia

UAC-0190 Attack Detection: Fake Charity Lures Used to Deploy the PLUGGYAPE Backdoor Against the Ukrainian Armed Forces

On January 12, 2026, the CERT-UA team disclosed a targeted cyber-espionage campaign against the Ukrainian Armed Forces that abused charity-themed social engineering to deliver the PLUGGYAPE backdoor. The activity, observed between October and December 2025, is attributed with medium confidence to the russia-aligned threat actor known as Void Blizzard (Laundry Bear), tracked by CERT-UA as…

Read more →