Patching practices are coming under intense pressure of late, as time-to-exploit windows accelerate — a new reality likely to worsen as AI assistance in attack chains rises. Now cyber defenders have another cause for flaw alarm: Vulnerability exploitation has significantly pulled away from stolen credentials as the most common entry point in security breaches, according…
Tag: late
AI, Data Breaches, Endpoint, Global Security News, Government & Policy, malware, Risk Management
GitHub says internal repositories were taken in poisoned VS Code extension attack
GitHub said late Tuesday that internal repositories were exfiltrated after an employee device was compromised through a poisoned Visual Studio Code extension, an incident that underscores the growing risks facing software development platforms and the ecosystems built around third-party developer tools. The Microsoft-owned company said in posts on X that it detected and contained the…
AI, Data Breaches, Global Security News
Who’s the winner in the new Microsoft-OpenAI deal?
It feels like the world’s longest and most public divorce: In late April, Microsoft and OpenAI once again renegotiated the slow-motion breakup that has been playing out between the two over the last several years. At first glance, it looks like a win-win. In the broadest terms, OpenAI gets more freedom to set its own course — it can sell its…
Data Breaches, Global Security News
French police arrest 21-year-old “HexDex” hacker over 100 alleged data breaches
A 21-year-old man suspected of conducting approximately 100 data breaches since late 2025 – including a hack of the French Ministry of National Education that exposed records on almost a quarter of a million employees – has been arrested at his home in western France. Read more in my article on the Hot for Security…
AI, Global Security News
With John Ternus as CEO, expect Apple’s platforms to proliferate
Apple now has a new iCEO, as current leader Tim Cook (65) announced late Monday that he is set to become chairman of the board, while current head of hardware engineering, John Ternus, prepares to take over as CEO on Sept. 1. As you’d expect, this leadership transition at one of the world’s most successful firms, is…
AI, Global Security News
Apple CEO Tim Cook stepping down, to be replaced by John Ternus
Apple announced late Monday that Tim Cook, the company’s CEO since 2011, is stepping down Sept. 1 to be replaced by current senior vice president of hardware engineering, John Ternus. Cook will become executive chairman of the board. Cook, who is 65, will continue as CEO until the end of August to assist in the…
AI, Global Security News, malware
Hackers hijacked CPUID downloads, served STX RAT to victims
If you tried to download software from CPUID’s website late last week, you might have downloaded malware instead. “Investigations are still ongoing, but it appears that a secondary feature (basically a side API) was compromised for approximately six hours between April 9 and April 10, causing the main website to randomly display malicious links (our…
AI, APAC, Global Security News, Risk Management
Job disruption by AI remains limited — and traditional metrics may be missing the real impact
AI’s impact on human jobs is a hot topic of late, with all kinds of forecasting, reporting, and sounding of alarm bells. But two new analyses seem to indicate that AI isn’t yet fundamentally disrupting the employment landscape, and that traditional metrics don’t accurately capture its actual impact on work. According to a job cut…
AI, Apps, Compliance, Endpoint, Europe, Global Security News, Government & Policy, malware, Risk Management
Google Workspace vs. Microsoft 365: What’s the best office suite for business?
Once upon a time, Microsoft Office ruled the business world. By the late ’90s and early 2000s, Microsoft’s office suite had brushed aside rivals such as WordPerfect Office and Lotus SmartSuite, and there was no competition on the horizon. Then in 2006 Google came along with Google Docs & Spreadsheets, a collaborative online word processing and…
AI, Global Security News, malware
Arkanix Stealer: AI-assisted info-stealer shuts down after brief campaign
Arkanix Stealer surfaced in late 2025 as a short-lived info-stealer, likely built as an AI-assisted experiment and quickly abandoned. Arkanix Stealer emerged in late 2025 as a short-lived information-stealing malware promoted on dark web forums. Researchers believe it was likely created as an AI-assisted experiment, suggesting the operators were testing automated development techniques rather than…
AI, Data Breaches, Global Security News
Data on 1.2 million French bank accounts accessed in registry breach
In late January 2026, a malicious intruder accessed France’s national bank account registry, FICOBA, enabling them to view information tied to 1.2 million accounts, the Ministry of the Economy and Finance disclosed on Wednesday. TV5 Monde reported that the perpetrator (or perpetrators) obtained login credentials belonging to a civil cervant authorized to use the database…
AI, Apps, Cybersecurity, Exploits, Funding, Global Security News, Network Security, Risk Management
Why 2025’s agentic AI boom is a CISO’s worst nightmare
By late 2025, the enterprise AI landscape had shifted. Standard RAG systems are failing at a rate of 80%, forcing a pivot to autonomous agents. But while “agentic RAG” solves the reliability problem, it introduces a terrifying new one: the autonomous execution of malicious instructions. If 2023 was the year of the chatbot and 2024…
Cybersecurity, Global Security News
Urgent warnings from UK and US cyber agencies after Polish energy grid attack
A coordinated cyberattack that targeted Poland’s energy infrastructure in late December 2025 has prompted cybersecurity agencies to issue urgent warnings to critical national infrastructure operators on both sides of the Atlantic. Read more in my article on the Fortra blog.
AI, Enterprise, Global Security News, HP, Risk Management
HP Buys Poly and Moves to Dominate Desktop Communications
HP has been making some interesting moves of late. The latest, to acquire Poly, is one of the most interesting, because unlike HP’s more diverse peers that are expanding in all directions, HP is instead focusing on increasing its depth in the desktop and collaboration segments. Poly, a combination of Polycom and Plantronics that previously…
AI, Global Security News, Risk Management
HP Buys Poly and Moves to Dominate Desktop Communications
HP has been making some interesting moves of late. The latest, to acquire Poly, is one of the most interesting, because unlike HP’s more diverse peers that are expanding in all directions, HP is instead focusing on increasing its depth in the desktop and collaboration segments. Poly, a combination of Polycom and Plantronics that previously…