AI hiring algorithms reject Black, Asian job seekers at higher rates
Stanford researchers argue need for transparency and independent testing
Security & Lifecycle News
Aggregated from vendor advisories, security research, and industry publications.
D2DO303: Commiserating About AI with Ned and Kyler
Hosts Ned and Kyler compare notes on everything they’ve been doing with AI, including the successes they’ve enjoyed and headaches they’ve suffered building and implementing AI agen…
CrowdStrike, Google shatter Glassworm botnet
Developer-targeted, supply-chain attacks all the rage these days
UK Cyberspying Chief Calls AI ‘an Unstoppable Force’ and Warns About Russia
The speech is the latest in a string of warnings from intelligence experts that Russia is stepping up hostile activity in a “gray zone” that falls just below the threshold of war. …
Bosses blinded by confidence about shadow AI use by workers
More than half of orgs in Okta survey faced an AI-related security incident or near miss last year
AIs don't like religion – particularly Jehovah's Witnesses, study claims
LLMs prefer secular, rational reasoning, and while they'll still get religious on occasion, they have a negative view of Jehovah's Witnesses
Zero trust isn’t broken, but most companies are doing it wrong
Zero trust is 15 years old, and like many teenagers, it can feel misunderstood and underappreciated. The concept of zero trust was first defined by John Kindervag, a Forrester a…
Latin American Cybercriminals Hoover Up Government Data
A purported leak exposing 5.8 million records of Uruguayan citizens is the latest incident where cybercriminals targeted government agencies to monetize citizen data.
Extortion crews are visiting law firms pretending to be tech support, FBI warns
Cybercriminals still allowed to walk into office blocks and convince staff to let them plug in their own thumb drives
AI-Assisted Exploit Development Outpaces Scanner Detection
Attackers are using AI to dramatically reduce the time they need to develop a working exploit for a CVE, according to new research.
Grandoreiro Malware and BTMOB RAT Campaigns Target Windows and Android Users
Latin America and Europe become the target of two banking trojan campaigns that are designed to infect Windows and Android devices with Grandoreiro and BTMOB malware, respectively.…
As AI datacenter memory becomes hot commodity, SK Hynix makes it cooler
South Korean semiconductor giant SK Hynix has announced a new type of high-bandwidth memory (HBM) for AI datacenters that improves heat dissipation by integrating a cooling layer w…
Malicious npm Package Stole Files From Claude AI User Directory via GitHub
Cybersecurity researchers have discovered a new malicious package on the npm registry that comes with information stealing capabilities. According to OX Security, the package, nam…
Researchers find all big-name bots bomb EU compliance tests
Given a chance, AI will be breaking the law, breaking the law
Swift thinking buys NASA observatory a little more time before re-entry
Rescue mission might have until the end of summer after science operations halted
4 in 10 AI agents headed for demotion or the rubbish bin
Gartner predicts governance struggles to plague rollout of this year’s much-hyped technology
Vulnerability in Popular Conference Software Granted Attackers a 100% Talk Acceptance Rate
Novee researchers discovered an account takeover vulnerability in the open source CFP management tool Pretalx. The post Vulnerability in Popular Conference Software Granted Attacke…
FBI’s 2025 Internet Crime Report
The 2025 Internet Crime Report was published a few weeks ago, but I only just saw it. Lots of interesting statistics. Press release. News articles.
Can you enforce strong Active Directory password rules without frustrating users?
Strong Active Directory passwords don't have to come at the expense of usability. Specops Software explains how passphrases, breached password protection, and self-service resets c…
India's cyber agency sets clock at 12 hours to tackle exploited bugs as AI turns up the heat
CERT-In says internet-facing or critical systems should be patched, mitigated, or cut off within half a day where feasible
Windows 11 update preview promises faster launches, puts Task Manager on NPU patrol
Just mind the known issue that can still send installs rolling back
Glassworm botnet disrupted after resilient C2 infrastructure takedown
The Glassworm botnet targeting developers in software supply-chain attacks has been disrupted after researchers took down its resilient command-and-control infrastructure relying o…
Cisco research finds standard AI safety benchmarks miss the real threat
Enterprises deploying closed AI models have generally relied on published safety benchmarks to assess risk before procurement and deployment decisions. New research from Cisco’s AI…
Broadcom gets early start on WiFi 8 with next-gen wireless routing kit
Better, more reliable, and cheaper? Isn't that the story every generation?
Broadcom's custom ASIC biz adds South Korea's FuriosaAI to its empire
Third-gen chips to use Broadzilla's advanced packaging, networking tech
SecurityWeek to Host AI Risk Summit August 11-12 at the Ritz-Carlton, Half Moon Bay
Now in its third year, the AI Risk Summit is the leading conference that brings together CISOs, security leaders, AI researchers, developers, policymakers, and enterprise risk prof…
Tony Blair and the Reform party both want AI in government, though they can't agree on what for
Former UK PM demands modernization, and right wing party channels inner Musk to call for mass job cuts in public sector
UK armed forces aims for secure comms via optical satellite links
Brit military boffins test ground station with infra-red lasers to deliver multi-gigabits downloads
Cybersecurity Evolution: How We Went From Perimeter Defense to AI-Native Security
The cybersecurity industry of 2006 barely resembled today's billion-dollar behemoth. As part of Dark Reading's 20th anniversary celebration, we trace the industry's evolution throu…
How to guarantee a speaker gig: Hack the system. Literally
Make your mark on the call-for-proposal platform