Geek-Guy.com

Tag: with

AI, Compliance, Global Security News

AI infrastructure is cracking under sovereignty demands

AI deployments are moving into environments with tighter controls around data, infrastructure, and system operations. Organizations are building AI systems across multiple providers, platforms, and computing environments while managing governance, security, and compliance obligations within defined boundaries. NTT DATA’s 2026 Global AI Report A Playbook for Private and Sovereign AI examined these conditions in more…

Read more →

AI, Cybersecurity, Exploits, Global Security News

AI might cut false positives, but it won’t stop the slop 

As defenders get their hands on newer AI models with more powerful cybersecurity capabilities like Anthropic’s Mythos and OpenAI’s Daybreak, organizations are being told to prepare for a flood of new vulnerability reports. But for bug bounty programs across the nation, that day may already be here, as yesterday’s frontier models and today’s open-source AI…

Read more →

AI, Exploits, Global Security News, malware

Interpol leads cybercrime crackdown across 13 countries in Middle East, North Africa

Interpol coordinated an expansive investigation with 13 countries in the Middle East and North Africa to disrupt and take down cybercrime operations, including phishing services and tools, malware and scams. The law enforcement effort netted 201 arrests, led to the seizure of 53 servers and disrupted multiple cybercrime services, Interpol said Monday. Operation Ramz, which…

Read more →

AI, Exploits, Global Security News

Pwn2Own Berlin 2026, Day Three: DEVCORE Crowned Master of Pwn, $1.298 Million Total

Pwn2Own Berlin 2026 ended with 47 zero-days and $1.29M in payouts, as DEVCORE dominated the competition across all categories. Pwn2Own Berlin 2026 ended after three intense days, with participants discovering 47 unique zero-days, and earning $1,298,250 in total payouts. Pwn2Own Berlin 2026 wrapped up at OffensiveCon on Saturday with a final day that sealed DEVCORE’s…

Read more →

AI, Apps, Global Security News, malware, Network Security, Russia

Expired domain leads to supply chain attack on node-ipc npm package

A popular npm package called node-ipc has been compromised, with hackers publishing malicious versions that bundle credential stealing malware. The root cause of the compromise was an expired domain name that attackers managed to register in order to hijack a maintainer’s account. The node-ipc package has had malware added to its code in the past.…

Read more →

AI, Cybersecurity, Exploits, Global Security News, Network Security

Cisco zero-day under ongoing attack by persistent threat group

Attackers returned once again to a common target with a massive user base by exploiting a max-severity zero-day vulnerability affecting Cisco Catalyst SD-WAN Controller and Manager. The threat group behind the “limited” number of attacks Cisco is aware of thus far are also linked to a series of previously disclosed vulnerabilities in the vendor’s firewalls…

Read more →

AI, Cybersecurity, Exploits, Global Security News, Risk Management

Pwn2Own Berlin 2026, Day One: $523,000 paid out, AI products fall

Pwn2Own Berlin 2026 day one saw 22 entries and 24 zero-days across major software, with researchers earning $523,000 in total rewards. Day one of Pwn2Own Berlin 2026 featured 22 entries targeting widely used technologies, including browsers, operating systems, AI platforms, and NVIDIA infrastructure. By the end of the day, researchers demonstrated 24 unique zero-day vulnerabilities…

Read more →

AI, Apps, Compliance, Endpoint, Global Security News, Network Security, privacy, Risk Management

Automating post-quantum cryptography readiness using AWS Config

Migrating your TLS endpoints to Post-quantum cryptography (PQC) starts with understanding your current TLS endpoint inventory and posture. This post introduces the PQC Readiness Scanner — an automated tool that inventories your Application Load Balancer (ALB), Network Load Balancer (NLB), and Amazon API Gateway endpoints and continuously monitors their TLS configurations for PQC readiness. The…

Read more →

AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security, privacy, Risk Management

LATAM Under Siege: Agent Tesla’s 18-Month Credential Theft Campaign Against Chilean Enterprises

Credential theft malware rarely announces itself with ransomware-level noise. Instead, it operates like a silent siphon hidden inside everyday business workflows: invoices, payroll files, purchase orders, procurement requests. Agent Tesla campaigns are especially dangerous because they target the operational arteries of organizations, harvesting credentials that enable deeper compromise, business email compromise (BEC), financial fraud, cloud account takeover, and long-term…

Read more →

AI, Cybersecurity, Global Security News, Government & Policy

AI cyber capability is speeding past earlier projections

AI cyber capability is improving faster than expected, with newer models surpassing earlier projections, according to the UK government’s AI Security Institute (AISI). AISI measures AI cyber capability using “time horizon benchmarks”, which estimate how long AI systems can complete cybersecurity tasks autonomously compared to human experts. “In February 2026, we estimated that frontier models’…

Read more →

Cybersecurity, Global Security News

Windows Zero-Days Expose BitLocker Bypasses And CTFMON Privilege Escalation

An anonymous cybersecurity researcher who disclosed three Microsoft Defender vulnerabilities has returned with two more zero-days involving a BitLocker bypass and a privilege escalation impacting Windows Collaborative Translation Framework (CTFMON). The security defects have been codenamed YellowKey and GreenPlasma, respectively, by the researcher, who goes by the online aliases Chaotic Eclipse

Read more →

AI, china, Global Security News

Azerbaijani Energy Firm Hit by Repeated Microsoft Exchange Exploitation

A threat actor with affiliations to China has been linked to a “multi-wave intrusion” targeting an unnamed Azerbaijani oil and gas company between late December 2025 and late February 2026, marking an expansion of its targeting. The activity has been attributed by Bitdefender with moderate-to-high confidence to a hacking group known as FamousSparrow (aka UAT-9244),…

Read more →

AI, Cybersecurity, Data Breaches, Data Security, Global Security News, Government & Policy, Risk Management

Instructure settles with hackers following massive student data theft

Educational tech firm Instructure reached a deal with hackers after a major Canvas breach exposed data stolen from schools and universities. Educational tech firm Instructure says it reached an agreement with the cybercrime group behind a major Canvas data theft, after attackers broke into its systems and threatened to publish stolen information from schools and…

Read more →

AI, Global Security News, Network Security

Researchers open-source a Wi-Fi cyber range for security training

Wireless security training programs lean heavily on generic network labs, with Wi-Fi appearing as a checkbox alongside Bluetooth, Zigbee, and cellular. Hands-on environments dedicated to IEEE 802.11 are uncommon, even as Wi-Fi remains the default on-ramp to corporate networks and a recurring entry point for attackers. A new paper from researchers at the Norwegian University…

Read more →

AI, Apps, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management

Palo Alto Networks Targets AI Identity Risks with Idira

Palo Alto Networks is expanding its identity security business with the launch of Idira, a platform designed to secure human users, machine identities, and autonomous AI agents as enterprises face growing identity-related cyber risk.  The company also named Oracle veteran Sonny Singh to lead the business, signaling a broader push around identity security for AI-driven…

Read more →

AI, Apps, Cybersecurity, Endpoint, Global Security News, Risk Management

Huntress and Acrisure Launch Streamlined Cyber Insurance Program

Huntress has collaborated with Acrisure to launch a new cyber insurance program that gives businesses a faster, simpler path to protection against cybersecurity risks.  The program offers eligible organizations access to unique Cyber or Tech Errors and Omissions (Tech E&O) insurance policies with no deductible, through a streamlined application process that reduces the complexity typically…

Read more →

AI, APAC, Compliance, Global Security News, Network Security

SonicWall Expands Security Platform With Cloud-Focused NSv XS

SonicWall is expanding its Gen 8 security platform beyond physical appliances with the launch of the NSv XS, a new virtual firewall designed for managed service providers (MSPs) and managed security service providers (MSSPs). Gen 8 security platform expands to virtual environments Announced Tuesday, the NSv XS brings SonicWall’s Gen 8 protections into cloud and…

Read more →

AI, Data Breaches, Endpoint, Global Security News, Network Security, Risk Management

Claude Code MCP Attack Enables Persistent Token Theft

AI coding assistants are becoming deeply integrated with enterprise SaaS platforms, but new research shows those connections may introduce hard-to-detect credential theft risks.   Researchers demonstrated a MitM attack targeting Anthropic’s Claude Code that abuses MCP integrations to steal OAuth tokens and maintain persistent access to connected SaaS platforms and APIs.  “AI agents used for code…

Read more →

AI, Compliance, Global Security News, Network Security

TD SYNNEX Adds BCM One Voice and UCaaS Services

TD SYNNEX is adding more communications firepower to its partner ecosystem through a new partnership with BCM One, bringing voice, network services, and white-label UCaaS into the mix. Through the agreement, partners can now offer Pure IP’s global voice and network services alongside SkySwitch’s white-label UCaaS platform. It makes it much easier to integrate communications…

Read more →

AI, Global Security News, Network Security, Russia

Crimenetwork returns after takedown, dismantled again by German authorities

German police shut down a revived Crimenetwork marketplace with 22,000 users and 100+ sellers months after the original takedown. German police dismantled a resurrected version of the German-language cybercrime marketplace Crimenetwork, just months after the original platform was taken down. The second iteration of the site had already attracted more than 22,000 users and over…

Read more →

AI, Cybersecurity, Exploits, Funding, Global Security News, Government & Policy, Risk Management

Sen. Schumer seeks DHS plan on AI cyber coordination with state, local governments

The Senate’s top Democrat called on the Department of Homeland Security Friday to work closely with state and local governments to defend against artificial intelligence-strengthened hacks.  Senate Minority Leader Chuck Schumer, D-N.Y., wrote to DHS Secretary Markwayne Mullin to make sure state, local, tribal and territorial (SLTT) governments aren’t left behind as AI models advance,…

Read more →

AI, Global Security News

Avantra’s new AI can diagnose SAP failures in seconds

Avantra launched Avantra 26, an advancement in AI-driven operations, strengthening native integration with SAP Cloud ALM, and delivering automated visibility across SAP Business Technology Platform (BTP). Avantra also announced Avantra AIR Root Cause Analyzer, an AI-powered intelligence engine that automatically investigates SAP incidents and surfaces a structured diagnosis the moment an issue is detected. Available…

Read more →

AI, Apps, Compliance, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Network Security, Risk Management

April 2026 Leadership Recap: New CEOs and Promotions Start Q2

We’re at the start of Q2 of 2026, as hard as that is to believe – and with that comes new appointments to company leadership and promotions across the channel. Organizations such as Syspro, Kiteworks, Coro, and Paessler have all made significant updates to their executive benches to enhance their strategies. Read more about the…

Read more →

AI, Exploits, Global Security News, malware, Risk Management

From Android TVs to routers: the xlabs_v1 Mirai-based botnet built for DDoS attacks

A new Mirai‑based botnet, xlabs_v1, hijacks ADB‑exposed IoT devices for powerful DDoS attacks, with 21 flooding methods and DDoS‑for‑hire use. A new Mirai‑derived botnet called xlabs_v1 is hijacking internet‑exposed devices running Android Debug Bridge (ADB) and using them for large‑scale DDoS attacks. Hunt.io discovered the bot on an unsecured server, it includes 21 flood techniques…

Read more →

AI, Apps, Cybersecurity, Endpoint, Exploits, Funding, Global Security News, Government & Policy, Risk Management, Venture

A DOD contractor’s API flaw exposed military course data and service member records

A defense technology company with Department of Defense contracts exposed user records and military training materials through API endpoints that lacked meaningful authorization checks, according to an account published by Strix, an open-source autonomous security testing project. The issue affected Schemata, an AI-powered virtual training platform used in military and defense settings. According to Strix,…

Read more →

AI, Apps, Data Breaches, Endpoint, Global Security News

Tanium Teams With ServiceNow on Autonomous IT Solution

Autonomous IT organization Tanium is joining forces with ServiceNow to deliver a joint Autonomous IT solution, ITOM AI Prime. This bundled offering integrates Tanium Autonomous IT Platform with ServiceNow IT Operations Management (ITOM) AI Prime into a single solution. Tanium and ServiceNow continue to support integrated workflows across IT operations The joint solution provides a…

Read more →

AI, Global Security News

groundcover expands its observability platform with enhanced Synthetic Monitoring and RUM

groundcover has expanded its capabilities with new and enhanced offerings across Synthetic Monitoring and Real User Monitoring (RUM). These innovations give engineering teams greater visibility into the user experience, from proactive testing to real-world session insights, while keeping data securely within their own cloud environments. “Modern observability isn’t just about infrastructure, it’s about understanding the…

Read more →

AI, Global Security News

Weekly Update 502

It’s a fascinating display of leverage: the ShinyHunters folks, with very limited resources and experience (their demographic will be teenagers to their early 20s), consistently gaining access to the data of massive brands. Not through technical ingenuity alone (although I’m sure there’s a portion of that), but primarily through good ol’ social engineering. That’s coming…

Read more →

AI, Exploits, Global Security News, malware, Risk Management

Edge browser leaves passwords exposed in plain text, says researcher

A Norwegian researcher has identified an issue with Microsoft Edge’s Password Manager that could be a serious concern for businesses. Tom Jøran Sønstebyseter Rønning found that passwords are being saved within the browser in plain text, with the effect that any PC, particularly a shared machine, within an organization is a potential risk. In a…

Read more →

AI, Exploits, Global Security News, malware, Risk Management

Edge browser leaves passwords exposed in plain text, says researcher

A Norwegian researcher has identified an issue with Microsoft Edge’s Password Manager that could be a serious concern for businesses. Tom Jøran Sønstebyseter Rønning found that passwords are being saved within the browser in plain text, with the effect that any PC, particularly a shared machine, within an organization is a potential risk. In a…

Read more →

AI, Compliance, Cybersecurity, Endpoint, Global Security News, Government & Policy, malware, Network Security, privacy, Risk Management

New Phishing Campaign Targets US with Credential Theft: What CISOs Need to Know

A new large-scale phishing campaign is targeting U.S. organizations with fake event invitations that lead to credential theft, OTP interception, or RMM tool installation. ANY.RUN researchers found that the campaign uses a repeatable phishing framework to create event-themed lure pages at scale. Some pages steal email credentials and OTP codes, while others deliver legitimate remote…

Read more →

AI, Apps, Cybersecurity, Global Security News, privacy, Risk Management

Microsoft, Google push AI agent governance into enterprise IT mainstream

Microsoft and Google are adding new controls for AI agents, as enterprise IT teams try to keep up with tools that can access corporate data and act across business applications. Microsoft’s Agent 365, made generally available for commercial customers on May 1, is designed to help organizations discover, govern, and secure AI agents, including those…

Read more →

AI, Apps, Global Security News, Risk Management

Start small, but start now: How to bring AI into your small business

Small and medium-sized businesses recognize the transformative nature of AI, with two-thirds of respondents in a recent ASUS survey agreeing AI is creating a significant evolution in business practices, and some even calling it “generational.” The question, then, is how best to realize AI’s potential. For SMBs, following a simple, three-pronged strategy is a good…

Read more →

AI, Cybersecurity, Global Security News, Government & Policy, Risk Management

Security agencies draw red lines around agentic AI deployments

With prompt injection and other attack pathways consistently surfacing across agentic AI deployments, security watchdogs have stepped in, collectively, to draw some hard boundaries. A joint advisory from the US Cybersecurity and Infrastructure Security Agency (CISA) and international partners has called for tighter control over permissions, stronger monitoring, and a more deliberate rollout strategy, urging…

Read more →

AI, Global Security News, Network Security

Pipelock: Open-source AI agent firewall

AI coding agents run with shell access, environment variables containing API keys, and unrestricted internet connectivity, creating a single point of failure where one compromised tool call can leak credentials to an attacker-controlled domain. Pipelock, an open-source security harness developed by Joshua Waldrep under the PipeLab project, addresses this exposure by inserting an enforcement layer…

Read more →

AI, Data Breaches, Exploits, Global Security News, malware, Risk Management

Digital attacks drive a new wave of cargo theft, FBI says

The FBI warns of rising cyber cargo theft, with hackers targeting brokers and carriers. Experts say digital attacks are replacing traditional cargo theft. The FBI has issued a Public Service Announcement (PSA) about a surge in cyber-enabled cargo theft, with hackers increasingly targeting brokers and carriers. This trend confirms earlier findings from Proofpoint and alerts…

Read more →

AI, Cybersecurity, Global Security News, Risk Management

Securonix Partners with AI SPERA for Criminal IP in ThreatQ

Cybersecurity provider Securonix has announced a new partnership with AI SPERA, the company behind Criminal IP, to deliver integrated threat intelligence enrichment through the ThreatQ Platform.  The integration combines ThreatQ data-driven orchestration and investigation capabilities with Criminal IP’s real-time IP threat intelligence, providing security teams with deeper context to prioritize and respond to threats faster. …

Read more →

AI, Cloud Security, Cybersecurity, Europe, Global Security News, Government & Policy, privacy, Risk Management

Bank regulator sounds warning over cybersecurity threat posed by AI models

Frontier AI models inspired by Anthropic’s Claude Mythos could arm attackers with advanced capabilities that the banking sector is ill equipped to cope with, Australia’s financial regulator, the Australian Prudential Regulation Authority (APRA), has warned. In a letter addressed to the country’s financial sector this week, the body lays out how the arrival of Claude…

Read more →

AI, Data Breaches, Exploits, Global Security News, Network Security

Two new extortion crews are speedrunning the Scattered Spider playbook

A pair of persistent and problematic threat groups affiliated with The Com are actively targeting organizations across multiple critical infrastructure sectors for rapid data theft and extortion attacks, according to CrowdStrike. The financially-motivated attackers, which CrowdStrike tracks as Cordial Spider and Snarky Spider, have used voice-phishing and social engineering attacks to break into victims’ identity…

Read more →