Three Microsoft Defender zero-days actively exploited; two still unpatched
Security firm Huntress warns of active exploitation of three Microsoft Defender zero-days, codenamed BlueHammer, RedSun, and UnDefend. Two remain unpa
Every old vulnerability is now an AI vulnerability
AI's primary danger isn't creating new bugs, but its power to amplify and accelerate the exploitation of existing, unpatched vulnerabilities.
London healthcare faces months of disruption after ransomware attack on key supplier
A major ransomware attack on pathology provider Synnovis has caused severe, ongoing disruption to London hospitals, highlighting critical supply chain
White House deepens engagement with Anthropic over frontier AI security
A White House meeting with Anthropic's CEO signals a major government push to address frontier AI's unique security and national security risks.
Lawmakers' closed-door AI meetings reveal deep fears of societal destruction
A private meeting between tech titans and U.S. senators exposed profound anxieties over AI's potential for catastrophic risk, moving the debate from t
The surveillance law Congress can’t quit — and can’t explain
Despite a 2024 overhaul with 56 amendments, Section 702 of FISA remains deeply controversial as supporters and critics cannot even agree on its scope.
Congress renews controversial FISA Section 702 surveillance law after years of debate
Congress renewed the controversial FISA Section 702 spying law for two years, preserving a key intelligence tool despite fierce opposition over privac
Grinex exchange blames 'Western intelligence' for $13.7M crypto hack, but evidence suggests an exit scam
A Kyrgyzstan-based crypto exchange claims a $13.7M hack by Western spies, but the lack of evidence and classic warning signs point to a probable exit
Ukrainian emergency services and hospitals hit by espionage campaign using new AgingFly malware
Russian state-sponsored hackers are using new 'AgingFly' malware in an espionage campaign targeting Ukrainian hospitals and emergency services.
Most 'AI SOCs' are just faster triage, and that's not enough
Many AI security tools only speed up alert analysis, failing to reduce analyst workload. Experts argue real gains require AI that automates response a
US nationals jailed for operating fake remote worker laptop farms for North Korea
Two US nationals have been jailed for helping North Korean IT workers infiltrate over 100 American firms, funneling millions to the DPRK's weapons pro
ZionSiphon malware designed to sabotage water treatment systems
A new proof-of-concept malware, ZionSiphon, demonstrates how attackers can sabotage water treatment plants by manipulating industrial control systems.