Plus, AI topples a 80 year-old math problem, the Brockmans sit for an interview and physical AI gets its due.
Tag: problem
AI, Global Security News
A Famous Math Problem Stumped Humans for 80 Years. AI Just Cracked It.
The math world is losing its mind over the new solution to an Erdős problem. This is what AI found, how we missed it—and why it matters.
AI, Global Security News, Network Security
⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More
Monday opens with a trust problem. A mail server flaw is under active use. A network control system was targeted. Trusted packages were poisoned. A fake model page pushed a stealer. Then came the familiar ransom claim: the data was returned and deleted. The pattern is clear. One weak dependency can leak keys. One leaked…
AI, Global Security News, Risk Management
Webinar: What the Riskiest SOC Alerts Go Unanswered – and How Radiant Security Can Help
Why do the Riskiest SOC Alerts Go Unanswered? Security operations teams are drowning in alerts. But the real problem isn’t always alert volume; it’s the blind spots. The most dangerous alerts are the ones no one is investigating. A recent report from The Hacker News examined why certain high-risk alert categories – WAF, DLP, OT/IoT,…
AI, Compliance, Exploits, Global Security News, Network Security, Risk Management
Your refresh plan has a CVE blind spot
The conversation is straightforward, but the problem behind it is not. The customer bought servers in 2017 and typically refresh every five to six years. Generally, around the 2022 to 2023 timeframe, they would have looked to buy new. Historically, that is what would have happened. But COVID hit, and there were supply chain constraints…
AI, Exploits, Global Security News
AI finds 20-year-old bugs in PostgreSQL and MariaDB
Open-source databases are facing a bit of a memory problem as AI helps surface decades-old buffer overflow issues in widely used components. Security researchers have disclosed a set of high and critical-severity vulnerabilities affecting PostgreSQL and MariaDB, with two bugs reportedly tracing their roots back more than 20 years. At Wiz’s zeroday.cloud hacking event, researchers…
AI, Global Security News, Risk Management
DXC Launches OASIS for AI-Driven Managed Services
DXC Technology is tackling a problem that most IT teams already face. Their environments are often a mix of different systems, tools, and data that don’t fully connect. DXC just introduced OASIS, a platform designed to sit across all of it and coordinate how everything runs in real time. The goal here is to connect…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management
The fake IT worker problem CISOs can’t ignore
Hiring fake IT workers has been a growing problem in recent years — but it’s often a problem very few want to admit to. From Fortune 500 companies down to smaller organizations, remote hiring practices have been exploited to grant trusted access to individuals who are not who they claim to be creating an insider…
Global Security News
Broken VECT 2.0 ransomware acts as a data wiper for large files
Researchers are warning that the VECT 2.0 ransomware has a problem in the way it handles encryption nonces that leads to permanently destroying larger files rather than encrypt them. […]
Global Security News
Why Secure Data Movement Is the Zero Trust Bottleneck Nobody Talks About
Every security program is betting on the same assumption: once a system is connected, the problem is solved. Open a ticket, stand up a gateway, push the data through. Done. That assumption is wrong. It is also a major reason Zero Trust programs stall. New research my team just published puts numbers on it. The…
AI, Apps, Compliance, Endpoint, Exploits, Global Security News, Risk Management
6 Lessons Security Leaders Must Learn About AI and APIs
Most organizations treating AI security as a model problem are defending the wrong layer. Security teams filter prompts, patch jailbreaks, and tune model behavior, which is all necessary work, while the actual attack surface sits largely unexamined underneath. That surface is the API layer: the endpoints AI systems use to retrieve data, call tools, and…
Global Security News
Careful what you wish for
The problem with advertising is not that you waste half your money but that you don’t know which half.
AI, Global Security News
Your IAM was built for humans, AI agents don’t care
Identity and access management was built for a simpler world. One where the hardest problem was a human logging in, and where “Who are you?” was sufficient to decide what someone could do. That model served enterprises well for decades. It was not built for a world where non-human identities now account for more than…
AI, APAC, Data Breaches, Global Security News
DetectFlow: Deploying Detections at Scale Without the Engineering Overhead
The Problem: Achieving Threat Detections at Scale At SOC Prime, we have spent over a decade making detection engineering easier for organizations of every size. Each year, as threats multiply and environments grow more complex, the traditional approach puts SOC Managers in an impossible position — responsible for coverage they cannot achieve with the tools…
AI, Apps, Cybersecurity, Exploits, Global Security News, Government & Policy, Network Security
Anthropic bets on EPSS for the coming bug surge
Anthropic’s Mythos has intensified a problem that vulnerability management programs were already struggling to contain: too many vulnerabilities and not enough clarity about which ones matter. What changes with Mythos — and the AI-based class of vulnerability discovery systems it represents — is the speed at which software flaws can be found and exploited. That…
AI, Apps, Compliance, Europe, Global Security News
Survey: Governance Gaps Threaten MSP AI Revenue Opportunity
For managed service providers, AI represents a $276 billion opportunity. The problem? More than half of them can’t get their customers ready for it. That’s the headline finding from new research published this week by AvePoint and analyst firm Omdia, which surveyed 333 MSPs across North America, Europe, and Asia-Pacific on what’s actually blocking AI…
AI, Apps, Cybersecurity, Endpoint, Global Security News
Why 24/7 Threat Monitoring Has Become Essential for Modern Businesses
GUEST OPINION – Cybersecurity used to be treated like a perimeter problem. Put up a firewall, install antivirus, enforce a few password rules, and hope that was enough. That approach no longer works. Today’s attacks do not wait for business hours. They move quietly through cloud platforms, endpoints, email, collaboration tools, and third-party applications. In…
AI, Global Security News, Network Security
AHEAD Brings NetBox Into Its Core Stack
NetBox Labs is partnering with AHEAD to tackle a problem most teams don’t pay much attention to until something breaks: infrastructure data. The partnership brings NetBox Labs’ platform into AHEAD’s core technology stack, where it will serve as the system of record behind network automation, cloud migration, and AI infrastructure efforts. This basically means that…
Global Security News
Residential proxies evaded IP reputation checks in 78% of 4B sessions
Researchers warn that residential proxies used to route malicious traffic are a big problem for IP reputation systems, as there is no clear distinction between attackers and legitimate users. […]
AI, Compliance, Cybersecurity, Data Breaches, Global Security News, Risk Management
9 ways CISOs can combat AI hallucinations
AI hallucinations are a well-known problem and, when it comes to compliance assessments, these convincing but inaccurate assessments can cause real damage with poor risk assessments, incorrect policy guidance, or even inaccurate incident reports. Cybersecurity leaders say the real trouble starts when AI moves past writing summaries and begins making judgment calls. That’s when it’s…
AI, Cybersecurity, Global Security News
Why I’m done calling humans the weakest link
Cybersecurity has long suffered from a people problem, but not in the way we often hear about. As industry that is based on enabling communication across the globe via the internet and many types of devices, many of us practitioners are very bad at communicating to people. A primary example is the phrase “humans are…
AI, Apps, Compliance, Data Security, Global Security News, Government & Policy, Network Security, Risk Management
RSAC 2026: AI Security Tools Aim to Cut Response Time
Security vendors at RSAC 2026 are zeroing in on one core problem: investigation speed. Across the show floor, new AI-powered tools promise to cut threat response times from hours to seconds while helping overwhelmed security teams keep pace with rising alert volumes. From autonomous investigation agents to platforms designed to secure enterprise AI systems, this…
AI, Apps, Compliance, Cybersecurity, Europe, Global Security News, Government & Policy, malware, Network Security, Risk Management
Kamasers Analysis: A Multi-Vector DDoS Botnet Targeting Organizations Worldwide
DDoS attacks are no longer only an infrastructure problem. They can quickly turn into a business issue, affecting uptime, customer experience, and operational stability. Kamasers is a strong example of this new reality, with broad attack capabilities and resilient command-and-control mechanisms that allow it to remain active under pressure. Let’s explore the Kamasers botnet through…
AI, Apps, Compliance, Cybersecurity, Europe, Global Security News, Government & Policy, malware, Network Security, Risk Management
Kamasers Analysis: A Multi-Vector DDoS Botnet Targeting Organizations Worldwide
DDoS attacks are no longer only an infrastructure problem. They can quickly turn into a business issue, affecting uptime, customer experience, and operational stability. Kamasers is a strong example of this new reality, with broad attack capabilities and resilient command-and-control mechanisms that allow it to remain active under pressure. Let’s explore the Kamasers botnet through…
AI, Global Security News
Google’s TurboQuant cuts AI memory use without losing accuracy
Large language models carry a persistent scaling problem. As context windows grow, the memory required to store key-value (KV) caches expands proportionally, consuming GPU memory and slowing inference. A team at Google Research has developed three compression algorithms: TurboQuant, PolarQuant, and Quantized Johnson-Lindenstrauss (QJL). All three are designed to compress those caches aggressively without degrading…
AI, Cybersecurity, Data Breaches, Global Security News, Network Security
Bot Traffic, Click Farms, and Ad Fraud: The Cyber Threats Marketers Keep Ignoring
Bot traffic and click farms are draining ad budgets worldwide. Discover why ad fraud is a cybersecurity problem and how businesses can fight back. When cybersecurity professionals think about threats, they usually focus on ransomware, phishing, data breaches, and network intrusions. Rarely does ad fraud make the list. Yet this overlooked category of cybercrime is…
AI, APAC, Apps, Compliance, Cybersecurity, Global Security News, privacy, Risk Management
Observability Pipeline: Managing Telemetry at Scale
Observability began as a visibility problem. Yet, today it is framed just as much as a control challenge because teams have to manage the floods of telemetry moving daily through the business environment. Most organizations already collect large volumes of logs, metrics, events, and traces. The issue now lies in managing tons of that data…
AI, Apps, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Risk Management
AI use is changing how much companies pay for cyber insurance
In July 2025, McDonald’s had an unexpected problem on the menu, one involving McHire, its AI-powered platform used to recruit and screen job applicants. The system, developed by Paradox.ai, featured a rookie-level security flaw: the backend for restaurant operators accepted “123456” as both username and password, and lacked multi-factor authentication. As a result, the personal…
AI, Cybersecurity, Data Breaches, Global Security News, Network Security, Risk Management
Why zero trust breaks down in IoT and OT environments
Zero trust solves the wrong problem in OT Zero trust has become the dominant security narrative of the past decade, and rightly so. Its core principles, never trust, always verify; assume breach; enforce least privilege, have reshaped how organizations think about identity, access and lateral movement. In enterprise IT environments, these principles have produced measurable…
Global Security News
A Chatbot Relationship Ends in Suicide
Plus, schools’ growing pot problem, cancer-screening blood tests and the workplace skills Gen Z is lacking
AI, Endpoint, Exploits, Global Security News, Risk Management
From Shadow APIs to Shadow AI: How the API Threat Model Is Expanding Faster Than Most Defenses
The shadow technology problem is getting worse. Over the past few years, organizations have scaled microservices, cloud-native apps, and partner integrations faster than corporate governance models could keep up, resulting in undocumented or shadow APIs. We’re now seeing this pattern all over again with AI systems. And, even worse, AI introduces non-deterministic behavior, autonomous actions,…
Apps, Global Security News
What 5 Million Apps Revealed About Secrets in JavaScript
Leaked API keys are nothing new, but the scale of the problem in front-end code has been largely a mystery – until now. Intruder’s research team built a new secrets detection method and scanned 5 million applications specifically looking for secrets hidden in JavaScript bundles. Here’s what we learned. […]
AI, Artificial Intelligence, Global Security News, guide, How To, News, owasp
Picking an AI red teaming vendor is getting harder
Vendor noise is already a problem in traditional security testing. AI red teaming has added another layer of confusion, with providers offering everything from consulting engagements to automated testing platforms. Many buyers still struggle to tell whether a vendor can test real-world AI system behavior or only run a packaged set of jailbreak prompts. This…
AI, Global Security News, Weekly update
Weekly Update 490
A big “thank you” to everyone who helped me troubleshoot the problem with my “Print Screen” button on the new PC. Try as we all might, none of us could figure out why it refused to bind to SnagIt and instead insisted on dumping the entire collection of screens to a file on the desktop.…
AI, Global Security News, Risk Management, Venture
Microsoft aims to reward publishers for content used by AI
Microsoft thinks it has a win-win-win answer to the problem of AI chatbots delivering unreliable information: let them pay publishers for access to information that users can trust. Its Publisher Content Marketplace (PCM) has the triple aim of improving the quality of material provided to AI systems, providing revenue to those who provide the information,…
AI, Apps, Artificial Intelligence, Cybersecurity, Data Breaches, Endpoint, Global Security News, malware, Network Security, News, Risk Management, Threats, trends
Hundreds of Malicious Skills Found in OpenClaw’s ClawHub
A routine question about trust exposed a far more serious problem when researchers discovered hundreds of malicious skills hidden inside a widely used AI agent marketplace. Koi researchers analyzed ClawHub, the third-party skill repository for OpenClaw, and found that threat actors had quietly turned the ecosystem into a large-scale malware distribution channel. We found “……
AI, Compliance, Global Security News, malware, Network Security, privacy
How hackers turned AI into their new henchman
Your AI reads the small print, and that’s a problem. This week in episode 433 of “Smashing Security” we dig into LegalPwn – malicious instructions tucked into code comments and disclaimers that sweet-talks AI into rubber-stamping dangerous payloads (or even pretending they’re a harmless calculator). Meanwhile, new research from Anthropic reveals that hackers have already…