$ page 16/47

Senator launches inquiry into 8 tech giants over child abuse material reporting failures

A U.S. Senator has launched an inquiry into Meta, Google, Apple, and others over alleged failures to report child abuse material, citing new AI risks.

2 min readApr 11

Hims breach exposes the most sensitive kinds of PHI

Telehealth giant Hims & Hers exposed sensitive health data of nearly 400,000 users, creating a severe risk of targeted blackmail, fraud, and extortion

6 min readApr 11

Dutch hospitals face disruptions after ransomware attack on software provider ChipSoft

A detailed analysis of the ransomware attack on Dutch healthcare software provider ChipSoft, its impact on hospitals, and steps to mitigate such threa

6 min readApr 11

‘It reads like a spy novel’: North Korean operatives use fake companies in $280 million crypto theft campaign

A deep-dive into the sophisticated, multi-month social engineering campaign by North Korea that targeted Drift Protocol as part of a larger $280M cryp

6 min readApr 11

UK puts tech execs on notice: Jail time looms for failing to stop AI 'nudification' tools

The UK's Online Safety Act now threatens tech executives with prison time if their platforms fail to combat the spread of AI-generated 'nudification'

6 min readApr 11

Critical Marimo flaw exploited hours after public disclosure

A critical remote code execution flaw in Marimo was weaponized and exploited just nine hours after its disclosure, highlighting a shrinking defense wi

6 min readApr 11

Florida investigates OpenAI for ChatGPT's alleged role in deadly shooting

Florida's investigation into OpenAI after a deadly shooting marks a pivotal test for AI liability, questioning if a chatbot's output can cause real-wo

6 min readApr 11

Can Anthropic keep its exploit-writing AI out of the wrong hands?

Anthropic's Mythos Preview model can allegedly find and exploit critical zero-days, raising questions about the responsible deployment of powerful, du

6 min readApr 11

Microsoft suspends developer accounts for popular open-source projects

Microsoft has suspended developer accounts for popular open-source apps like Rufus and qBittorrent, blocking critical software updates and security pa

2 min readApr 10

AI-powered attack scans thousands of GitHub repositories for misconfigurations

A new automated attack, PRT-scan, is exploiting GitHub Actions misconfigurations to steal access tokens, threatening the software supply chain.

2 min readApr 10

Fortinet patches critical zero-day vulnerability under active attack

A critical authentication bypass flaw in FortiClient EMS, CVE-2023-35616, allows for remote code execution and is being actively exploited by attacker

2 min readApr 10

China-linked Storm-1175 exploits zero-days to rapidly deploy Medusa ransomware

A China-linked threat actor, Storm-1175, is using zero-day exploits to deploy Medusa ransomware in high-velocity attacks against internet-facing syste

6 min readApr 10