Microsoft and a prominent cybersecurity researcher have gotten into a very public and rather personal exchange of unpleasantries about what responsible cybersecurity disclosures should mean in 2026. A cybersecurity researcher going by the name Nightmare Eclipse, who has disclosed several cybersecurity holes before patches were available, posted that he had tried to contact Microsoft officials…
Tag: very
AI, Europe, Global Security News, Network Security, privacy
Apple’s iPhone satellite ambition goes beyond rescuing hikers
Apple has spent billions of dollars to develop satellite connectivity for iPhone; I very much doubt it did so solely to rescue stranded hikers. The company will most certainly have had a bigger prize in its sights when it first began working with GlobalStar (now owned by Amazon). The most logical reason to invest in satellite…
AI, Global Security News
Weekly Update 502
It’s a fascinating display of leverage: the ShinyHunters folks, with very limited resources and experience (their demographic will be teenagers to their early 20s), consistently gaining access to the data of massive brands. Not through technical ingenuity alone (although I’m sure there’s a portion of that), but primarily through good ol’ social engineering. That’s coming…
AI, Global Security News, privacy
OpenAI plans its own ‘iPhone killer’
It looks very much as if Apple’s former designer Jony Ive will compete against the company his friend Steve Jobs created as he works with OpenAI on a device that seems to be some form of competitor for the iPhone. In a post on X, TF International Securities analyst Ming-Chi Kuo claims OpenAI is working with Qualcomm and…
AI, Global Security News, malware
⚡ Weekly Recap: Fast16 Malware, XChat Launch, Federal Backdoor, AI Employee Tracking & More
Everything is dumb again. This week feels broken in a very familiar way. Old tricks are back. New tools are doing shady crap. Supply chains got hit. Fake help desks worked. Weird research showed how easy some attacks still are. Most of it feels like stuff we should have fixed years ago. Bad extensions. Stolen…
Global Security News
Singer loses life savings to fake wallet downloaded from the Apple App Store
If you hold cryptocurrency, there’s a very simple golden rule that you should always follow. Never hand over your seed phrase. Garrett Dutton, better known as G. Love – the front man of blues-hip-hop outfit G. Love & Special Sauce – has learnt that lesson the hard way. Read more in my article on the…
Exploits, Global Security News
Citrix urges admins to patch NetScaler flaws as soon as possible
Citrix has patched two NetScaler ADC and NetScaler Gateway vulnerabilities, one of which is very similar to the CitrixBleed and CitrixBleed2 flaws exploited in zero-day attacks in recent years. […]
AI, Global Security News
Apple goes global with key MDM tools and services for business
As it steadily grows its share in business markets, Apple has at last introduced its very useful collection of services for small and mid-sized businesses (SMBs), Apple Business Essentials, outside the US; except it’s not called Apple Business Essentials, and much of it will be free. First introduced November 2021 following the company’s acquisition of Fleetsmith, Business Essentials is…
AI, Global Security News
Scans for “adminer”, (Wed, Mar 18th)
A very popular target of attackers scanning our honeypots is “phpmyadmin”. phpMyAdmin is a script first released in the late 90s, before many security concepts had been discovered. It’s rich history of vulnerabilities made it a favorite target. Its alternative, “adminer”, began appearing about a decade later (https://www.adminer.org). One of its main “selling” points was simplicity.…
Global Security News
What Entertainment Might Look Like in 20 Years
Among them: Hollywood-quality movies you can make at home for very little money.
AI, Cybersecurity, Global Security News, Risk Management
AI doesn’t think like a human. Stop talking to it as if it does
Autonomous agents take the first part of their names very seriously and don’t necessarily do what their humans tell them to do — or not to do. But the situation is more complicated than that. Generative (genAI) and agentic systems operate quite differently than other systems — including older AI systems — and humans. That…
Exploits, Global Security News
Cisco SD-WAN Zero-Day Under Exploitation for 3 Years
The maximum-severity vulnerability CVE-2026-20127 was exploited by an unknown but sophisticated threat actor who left very little evidence behind.