Geek-Guy.com

Tag: data

AI, Exploits, Global Security News, Network Security, Risk Management

AI agents can bypass guardrails and put credentials at risk, Okta study finds

An AI agent that revealed sensitive data without being asked. An agent that overruled its own guardrails. Another that sent credentials to an attacker via Telegram, because it forgot it wasn’t supposed to do so after a reset. It’s no secret that AI agents have huge potential, balanced by equally big risks. What’s becoming apparent,…

Read more →

AI, Cybersecurity, Global Security News, Government & Policy, Risk Management

Congress, industry ponder government posture for protecting data centers

The growth of data centers — and adversaries’ targeting of them — left lawmakers at a hearing Wednesday contemplating whether the federal government has the right setup for defending them. Some industry witnesses and experts at the hearing of the House Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection testified that the answer might be…

Read more →

AI, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Network Security, privacy

LINKEDIN BROWSERGATE

BrowserGate claims LinkedIn secretly fingerprints users via extensions and device data, sending encrypted results to third parties for tracking. BrowserGate is an investigation conducted by Fairlinked (https://browsergate.eu/), an association of commercial LinkedIn users, which documents what it describes as one of the largest data breach and corporate espionage scandals in digital history. The central thesis:…

Read more →

AI, Funding, Global Security News, Government & Policy, Risk Management

The Victorian Government will allocate $3.5 million – Technology Driven Safety Security Measures for Family Violence Victims and Survivors

The funding announcement comes as new data reveals an 8% increase in family and domestic violence offenders over the past financial year, reinforcing the scale and persistence of the issue across the state. Against this backdrop, the latest investment focuses on practical, immediate protections designed to reduce risk for those most vulnerable.

Read more →

AI, Global Security News

The Future of Data Platforms: From Pipelines to Intelligent Orchestration

GUEST OPINION:  For years, organisations have invested heavily in building data pipelines — structured flows that move data from source systems into warehouses, lakes, and dashboards. These pipelines have been the backbone of reporting and analytics. But as enterprises accelerate their adoption of AI, digital platforms, and real-time decision-making, pipelines alone are no longer enough.

Read more →

AI, Global Security News, malware, Network Security

Trigona ransomware adopts custom tool to steal data and evade detection

Trigona ransomware now uses a custom command-line tool to steal data faster and evade detection, replacing tools like Rclone and MegaSync. Symantec researchers report that recent Trigona ransomware attacks used a custom-built data exfiltration tool instead of common utilities like Rclone or MegaSync. This shift, seen in March 2026 incidents, gives attackers more control and…

Read more →

AI, Apps, Global Security News, Government & Policy, Network Security, Politics, privacy, Risk Management

Palantir Is Helping Trump’s IRS Conduct “Massive-Scale” Data Mining

military contractor Palantir is helping the IRS analyze dozens of different data sets on Americans to investigate a broad range of financial crimes, according to records shared with The Intercept. Since 2018, the Internal Revenue Service’s Criminal Investigation division has used Palantir’s Lead and Case Analytics platform to aggregate and analyze a sprawling list of…

Read more →

AI, Endpoint, Global Security News, Government & Policy, malware, Network Security, Russia

RAMP Uncovered: Anatomy of Russia’s Ransomware Marketplace

Leaked data from RAMP reveals Russia’s ransomware ecosystem, analyzing 1,732 threads, 7,707 users, and 340,000 IP records from the forum. RAMP was not just another dark web forum. It was one of the clearest examples of how ransomware has become an organized marketplace, with sellers, buyers, brokers, and recruiters all playing different roles in the…

Read more →

AI, Apps, Global Security News

Scenario: Open-source framework for automated AI app red-teaming

Enterprises running customer service bots, data analytics agents, and other AI-driven applications in production handle sensitive records and connect to core business systems every day. LangWatch has released Scenario, an open-source framework that runs automated red-team exercises against AI agents using multi-turn attack techniques that mirror how adversaries operate in the wild. Multi-turn attacks replace…

Read more →

AI, Global Security News, privacy

Google’s Workspace Intelligence promises privacy while running on your data

Security and data governance are among the key considerations in Google’s latest AI update, which introduces Workspace Intelligence within Google Workspace. Google describes the feature as “a secure, dynamic system that inherently understands complex semantic relationships within your Workspace apps (such as Docs, Slides, or Gmail) content, your active projects, your collaborators, and your organization’s…

Read more →

AI, Data Breaches, Global Security News, Government & Policy

Cyberattack on French government agency triggers phishing alert for users

France Titres, a French government agency, has disclosed a data breach that may have exposed user data from its online portal. France Titres, also known as the Agence nationale des titres sécurisés (ANTS), operates under the French Ministry of the Interior and manages systems for official identity and registration documents, including driver’s licences, national ID…

Read more →

AI, Apps, Compliance, Data Breaches, Endpoint, Global Security News, Network Security, privacy

Attacking the MCP Trust Boundary

Every secure API draws a line between code and data. HTTP separates headers from bodies. SQL has prepared statements. Even email distinguishes the envelope from the message. The Model Context Protocol (MCP), the fast-growing standard for connecting AI agents to external services, inherits that gap from the models it sits on top of. Its central…

Read more →

AI, Apps, Cybersecurity, Data Breaches, Exploits, Global Security News, Government & Policy

France’s ANTS ID System website hit by cyberattack, possible data breach

A cyberattack hit France’s ANTS website, possibly exposing personal data from users applying for IDs, passports, and driver’s licenses. A cyberattack targeted France’s ANTS platform, which handles applications for passports, ID cards, residence permits, and driver’s licenses. Authorities detected the incident on April 15 and warned it may have exposed personal data from both individuals…

Read more →

AI, Apps, Global Security News

Mozilla challenges enterprise AI providers with Thunderbolt, open-source AI client under your control

For organizations that want to keep company data within their own systems and have more control over how AI is deployed, Mozilla is offering an alternative to externally hosted AI services with Thunderbolt, an open-source AI client designed for self-hosted use. Thunderbolt is available through a waitlist, with native applications for web, macOS, Windows, Linux,…

Read more →

AI, Data Breaches, Global Security News, Network Security

Cookeville Regional Medical Center hospital data breach impacts 337,917 people

A ransomware attack on Cookeville Regional Medical Center hospital (Tennessee) exposed data of 337,000 people after hackers stole 500GB of sensitive information from its systems. A ransomware attack on Cookeville Regional Medical Center (CRMC) in Tennessee led to a major data breach affecting about 337,000 people. The attack, carried out by the Rhysida group, involved…

Read more →

AI, Cybersecurity, Exploits, Global Security News, malware, privacy, Risk Management

Microsoft’s Windows Recall still allows silent data extraction

Microsoft’s Windows Recall feature remains vulnerable to complete data extraction despite a major security overhaul, according to a cybersecurity researcher who says malware running in a user’s context can quietly siphon off everything Recall has captured, without administrator privileges, kernel exploits, or breaking encryption. Alexander Hagenah, executive director at Zürich-based financial infrastructure operator SIX Group,…

Read more →

AI, Cybersecurity, Exploits, Global Security News, malware, privacy, Risk Management

Microsoft’s Windows Recall still allows silent data extraction

Microsoft’s Windows Recall feature remains vulnerable to complete data extraction despite a major security overhaul, according to a cybersecurity researcher who says malware running in a user’s context can quietly siphon off everything Recall has captured, without administrator privileges, kernel exploits, or breaking encryption. Alexander Hagenah, executive director at Zürich-based financial infrastructure operator SIX Group,…

Read more →

AI, Cybersecurity, Data Breaches, Global Security News, privacy, Risk Management

Ghost breaches: How AI-mediated narratives have become a new threat vector

A company wakes up to a news story claiming it has suffered a major data breach. The details are specific, technical and convincing. But the breach didn’t happen. No systems were compromised. No data was taken. A language model generated the entire story, filling in plausible details from scratch. And before the company can figure…

Read more →

AI, Apps, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

McGraw-Hill Confirms Data Exposure Tied to Salesforce Issue 

McGraw-Hill has confirmed unauthorized access to a limited set of internal data following a reported Salesforce misconfiguration.  The disclosure comes after an extortion threat that raised questions about the scale and sensitivity of the incident.  “ShinyHunters has no shortage of options for potential follow-up campaigns. They can target instructors with convincingly branded messages, pivot into…

Read more →

AI, Data Breaches, Europe, Global Security News

Personal data of 1 million gym members compromised in Basic-Fit security incident

A breach at Basic-Fit exposed data of 1M members, including names, birth dates and bank details after unauthorized access. Basic-Fit, Europe’s largest gym chain, has disclosed a data breach affecting around 1 million members. Hackers gained unauthorized access to the company systems and stole personal. The gym chain said it recently detected the intrusion and…

Read more →

AI, APAC, Global Security News

Nearly 80% of Enterprises Say AI Is Held Back by Data Access Challenges, New Cloudera Report Finds

GUEST RESEARCH: Cloudera’s latest global survey, The Data Readiness Index, reveals a growing “AI readiness illusion,” where widespread adoption outpaces the data foundations required to deliver real business impact. In APAC, 85% of organisations claim to have complete visibility over where their data resides, but 38% struggle to use their data effectively due to complicated…

Read more →

AI, Data Breaches, Europe, Exploits, Global Security News, Network Security

ShinyHunters claim the hack of Rockstar Games breach and started leaking data

Leak of 8.1GB data tied to Rockstar Games includes anti-cheat code, game data, analytics and more, reportedly exposed by ShinyHunters. An 8.1GB data leak reportedly linked to Rockstar Games has surfaced, with files shared by ShinyHunters after being obtained via Anodot. The dataset includes anti-cheat source code, player analytics, game assets, Zendesk support tickets and…

Read more →

AI, Data Breaches, Endpoint, Exploits, Global Security News, Network Security, Risk Management

This Booking.com Breach Could Expose Your Travel Plans

Booking.com has disclosed a security incident involving unauthorized access to customer reservation data, prompting the company to reset reservation PINs tied to affected bookings. The activity, described as “suspicious access” to a subset of reservation records, did not expose payment card data but surfaced a category of information that, from an operational security standpoint, is…

Read more →

AI, Data Breaches, Global Security News

Hackers access Booking.com user data, company secures systems

Hackers accessed some Booking.com user data, including names, emails, phone numbers, and booking details. The issue is now contained. Booking.com warned that hackers may have accessed customer data linked to travel reservations. Exposed details could include names, email addresses, phone numbers, and information shared with accommodations. Booking.com is one of the world’s leading online travel agencies…

Read more →

AI, Cybersecurity, Global Security News, Network Security

Siemens expands Industrial Automation DataCenter with edge AI and cybersecurity

Siemens will present the next generation of its Industrial Automation DataCenter, a custom-configured data center for IT needs in production, expanding its turnkey solution into an AI-ready platform. Structure of the Siemens Industrial Automation DataCenter and its Remote Industrial Operations Services (Source: Siemens AG) In partnership with NVIDIA and in collaboration with Palo Alto Networks,…

Read more →

AI, china, Data Breaches, Global Security News, Network Security, Risk Management

Alleged 10 Petabyte Data Theft From China’s Tianjin Supercomputing Hub

Threat actors are claiming responsibility for what could be one of the largest data breaches in China’s history — allegedly stealing more than 10 petabytes of data from a key national supercomputing facility tied to scientific and defense research. “The reports that hackers with the alias of FlamingChina stole 10 petabytes of data containing Chinese…

Read more →

AI, Compliance, Cybersecurity, Data Breaches, Europe, Global Security News, Network Security

Eurail data breach impacted 308,777 people

Hackers breached Eurail in Dec 2025, stole names and passport data, and exposed over 300,000 travelers’ personal information. Threat actors breached Eurail in December 2025 and stole names and passport numbers from its network. The company now notifies 308,777 people that attackers exposed their personal data, raising concerns about identity theft and misuse of sensitive…

Read more →

AI, Global Security News, Network Security

GigaOm names Nokia “Leader” and “Outperformer” in Data Center Switching for fifth straight year

Independent analysis highlights Nokia’s Data Center Fabric for innovation, performance and readiness for AI-scale infrastructure Nokia’s Data Center Fabric Solution earns top marks for AI capabilities, automation, and reliability Recognition highlights how Nokia is delivering secure and reliable solutions in data center networking where it has clear technology leadership

Read more →

AI, Data Breaches, Global Security News

113,000 explicit prompts from AI girlfriend platform exposed, many linked to user IDs

MyLovely.AI, an AI girlfriend platform, suffered a data breach that exposed over 100,000 users. MyLovely.AI allows people to create personalized not safe for work (NSFW) content and engage in real-time conversations with AI-generated companions, often involving highly personal prompts and interactions. According to Have I Been Pwned, the breach exposed email addresses, user-created prompts, links…

Read more →

AI, Apps, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

GrafanaGhost Flaw Allows Silent Data Exfiltration

A vulnerability called GrafanaGhost allows attackers to quietly extract sensitive data from Grafana environments without user interaction or traditional compromise techniques.  Discovered by researchers at Noma Security, the flaw highlights how AI-driven features can introduce new, difficult-to-detect attack paths in widely used platforms. “Across ForcedLeak, GeminiJack, DockerDash, and now GrafanaGhost, we keep seeing the same…

Read more →

AI, china, Cybersecurity, Data Breaches, Global Security News, Government & Policy, Risk Management

The alleged breach of China’s National Supercomputing Center can have serious geopolitical consequences

A hacker allegedly stole 10+ PB of sensitive military and aerospace data from China’s National Supercomputing Center, risking national security. A massive alleged breach has hit China’s National Supercomputing Center (NSCC) in Tianjin. A hacker claims to have exfiltrated over 10 petabytes of highly sensitive data, including military, aerospace, and missile-related information. The facility supports…

Read more →

AI, Data Security, Global Security News, Risk Management

Trellix strengthens data security for the GenAI era

Trellix announced enhanced data security capabilities and a strategic framework designed to help organizations confidently adopt generative AI while protecting sensitive data from exposure and loss. “The rapid adoption of AI tools across the enterprise is creating new and often invisible data risks,” said Alex Au Yeung, CPO, Trellix. “Trellix brings together policy, visibility, and…

Read more →

AI, Data Breaches, Global Security News, malware, Network Security, Risk Management, Russia

Qilin ransomware group claims the hack of German political party Die Linke

Qilin ransomware claims it stole data from Germany’s Die Linke and threatens to leak it; the party confirmed the incident, but not a breach. The Qilin ransomware group claims it stole data from Die Linke, a German political party, and is threatening to release it. Die Linke is a left-wing political party in Germany. Its…

Read more →

AI, Cybersecurity, Data Breaches, Europe, Global Security News, malware, Network Security, Risk Management

European Commission breach exposed data of 30 EU entities, CERT-EU says

CERT-EU says a European Commission cloud hack exposed data from 30 EU entities and links the breach to the TeamPCP group. CERT-EU attributed a European Commission cloud breach to the TeamPCP threat group, revealing that data from at least 30 EU entities was exposed. The incident was publicly disclosed on March 27 after inquiries confirmed…

Read more →

AI, Apps, Compliance, Cybersecurity, Global Security News

How AWS KMS and AWS Encryption SDK overcome symmetric encryption bounds

If you run high-scale applications that encrypt large volumes of data, you might be concerned about tracking encryption limits and rotating keys. This post explains how AWS Key Management Service (AWS KMS) and the AWS Encryption SDK handle Advanced Encryption Standard in Galois Counter Mode’s (AES-GCM) encryption limits or bounds automatically by using derived key…

Read more →