48 results found

Capital One has launched VulnHunter, an open-source AI tool designed to identify and fix software vulnerabilities proactively. This agentic AI scans source code using an "attacker-first" approach and a "falsification engine" to minimize false positives, providing targeted code fixes. The move reflects Capital One's commitment to collaborative defense against rising AI threats, especially after its significant 2019 data breach.

Global financial giant JPMorgan Chase is making a significant strategic investment in Seattle, establishing a new AI software infrastructure team. This pivotal group will build an "AI control layer" to manage the bank's AI operations, aiming to control costs, protect intellectual property, and prevent vendor lock-in.
New data from Anubis' honeypot reveals a pervasive scraping problem, with nearly 90% of observed scraper IPs not on traditional threat lists. This global phenomenon is likely driven by compromised smart appliances, highlighting a hidden botnet threat. The findings underscore the need for advanced WAFs and user vigilance in securing IoT devices.

Cloudflare has launched Precursor, a new defense system, in response to bots now generating over 57% of all web traffic. Precursor monitors entire user sessions to distinguish humans from sophisticated bots, moving beyond traditional single-check methods. This initiative is part of a broader strategy to classify and manage AI agents, control content reuse, and rebuild the web's foundational infrastructure for a machine-dominated internet.
Learn to set up a Virtual Local Area Network (VLAN) for your smart home to enhance security by isolating vulnerable IoT devices from your main network in a few structured steps.

OpenAI has publicly launched its advanced AI model, GPT-5.6 Sol, known for its cybersecurity capabilities. This launch proceeds despite the Trump administration's earlier request to restrict access to government-approved partners, with the White House now stating its engagement with AI companies is voluntary. The move signals a complex interplay between rapid AI development and evolving government oversight.

As developers, we understand data, but often overlook our own digital footprints. This article offers practical strategies to reclaim online privacy, covering everything from auditing your presence and fortifying security to leveraging privacy-focused tools and staying informed about emerging threats. Learn to navigate the data economy with intention and build healthier digital habits.

F5, the Seattle-based tech veteran, marks its 30th anniversary by unveiling a significant pivot into AI security, highlighted by its recent acquisition of SurePath AI. CEO François Locoh-Donou discusses the company's journey from early internet load-balancing to a modern enterprise security platform addressing the complex challenges of AI visibility and governance.

The Trump administration has lifted its ban on Anthropic's powerful Mythos 5 AI, allowing over 100 U.S. government agencies and companies, including non-American staff, to use it. This decision, two weeks after both Mythos 5 and Fable 5 were pulled, comes with "appropriate safeguards," though Fable 5 remains restricted.

Anthropic's advanced AI model, Mythos 5, is partially reinstated for select cybersecurity and infrastructure providers after two weeks of negotiations with the Trump administration. The public-facing Fable 5 remains restricted. This limited return is an exception to an export control directive, similar to a deal granted to OpenAI's GPT-5.6, highlighting evolving US AI regulation.

The Trump administration has ordered Anthropic to take its advanced AI models, Fable 5 and Mythos 5, offline due to unspecified “national security concerns.” This move follows reports of Amazon researchers bypassing Fable 5's guardrails. While cybersecurity experts deem the ban dangerous, some speculate it could inadvertently boost Anthropic's image, positioning its models as uniquely powerful.

Signal President Meredith Whittaker warns that AI chatbots "are not your friends," lacking consciousness or sentience, and pose significant privacy risks. She critiques the vision of deeply integrated AI assistants, arguing their need for pervasive personal data access constitutes a "backdoor" for secure platforms like Signal.

The White House last Friday ordered AI giant Anthropic to immediately restrict the export of its powerful AI models, Fable and Mythos, citing unspecified national security concerns. This directive led Anthropic to

Nearly 100 prominent cybersecurity experts have signed an open letter condemning the US government's ban on Anthropic's Fable 5 and Mythos 5 AI models. They argue the move disarms defenders, creates market uncertainty, and risks America's AI leadership without justifiable cause, potentially benefiting adversaries more than protecting national security.

Security researcher Chaotic Eclipse has publicly released "RoguePlanet," a seventh Windows zero-day exploit, just hours after Microsoft's record-breaking June Patch Tuesday. This vulnerability grants SYSTEM privileges on fully patched Windows 10 and 11 systems, deepening a dispute with Microsoft over previous disclosures. The exploit leverages a race condition in Windows Defender.

Anthropic CEO Dario Amodei is pushing for FAA-style regulation of powerful AI models, citing public safety concerns amid rapidly advancing AI capabilities and potential misuses. This call for oversight, backed by new policy frameworks and $350 million in funding, suggests future operational, regulatory, and workforce constraints for enterprises. Key implications include potential deployment holds for frontier models, elevating AI cybersecurity to critical infrastructure status, and the need for proactive strategies to manage structural labor displacement.

Google and the FBI have issued a joint warning about the Silent Ransom Group, a cybercriminal gang now dispatching fake IT workers to victims' offices for in-person data theft. Targeting law firms, these imposters steal sensitive data via USBs or set up remote access. This novel approach, combining physical intrusion with digital methods, marks a significant escalation in ransomware tactics.

Instagram is alerting users targeted by hackers who exploited Meta's AI support chatbot to take over accounts. The simple attack, involving asking the bot to link accounts to hacker-controlled emails, continued even after Meta claimed a fix. The incident highlights critical security flaws in AI-driven support systems.

President Trump has signed an executive order creating a voluntary framework for AI companies to share advanced models with the federal government before release. This initiative aims to bolster secure innovation and protect critical infrastructure, reflecting a shift from the administration's previous hands-off approach to AI safety. Companies opting for pre-release review may receive confidentiality protections.

An intense internal power struggle within the Trump administration has stalled US federal AI regulation, leaving a policy vacuum after Anthropic's Mythos model revealed critical cybersecurity risks. Factions within the Commerce Department, intelligence agencies, and pro-industry groups are locked in a "knife fight" over who gets to evaluate and oversee advanced AI systems. This paralysis follows the abrupt cancellation of a landmark executive order and the unexplained withdrawal of AI testing announcements.

Google Cloud COO Francis de Souza advises companies to adopt a proactive, platform-centric approach to AI security, emphasizing integration from the start and defense at machine speed. However, Google itself has recently faced significant security challenges, including developers incurring five-figure bills from unauthorized Gemini API usage due to silent key scope expansions and delayed key revocation times.

Apple, Google, and Meta have rolled out new opt-in features to combat sophisticated government spyware targeting at-risk individuals like journalists and dissidents. These protections, including Apple's Lockdown Mode, Google's Advanced Protection Program, Android's Advanced Protection Mode, and WhatsApp's Strict Account Settings, harden devices and accounts against tools that grant attackers full data access. Experts strongly recommend activating these proven defenses.

This comprehensive review examines the shocking incident where twin brothers, minutes after being fired, deleted 96 government databases. It highlights critical failures in HR, IT security, and incident response, offering crucial lessons for organizations.

Quick Verdict Google's recent disclosure of thwarting an AI-powered cyberattack is a pivotal moment, affirming long-held fears: AI is now being weaponized at an industrial scale for malicious purposes. While Google's

Starbucks is cutting 61 tech jobs at its Seattle headquarters as part of a technology department reorganization, a recent Washington state filing confirms. The layoffs, impacting roles from cybersecurity to management, are tied to CEO Brian Niccol's turnaround strategy and new CTO Anand Varadarajan's vision.