Rodent-obsessed developer creates Ratty to bring 3D graphics to the command line
Inspired by TempleOS, this terminal emulator is just about as bonkers
Security & Lifecycle News
Aggregated from vendor advisories, security research, and industry publications.
Microsoft researchers find AI models and agents can't handle long-running tasks
An intern who failed this much would be shown the door
Cookie thieves caught stealing dev secrets via fake Claude Code installers
New IElevator2 COM interface? No problem
Tech Can't Stop These Threats — Your People Can
Security controls can do only so much. Here are four attacks where your employees are usually your first, and only, line of cyber defense.
HPE memory server targets compute-heavy and agentic AI workloads
HPE has rolled out a new enterprise memory server built for complex business workloads, compute-heavy systems, and emerging agentic AI workloads. The HPE Compute Scale-up Server…
20 Leaders Who Built the CISO Era: 2 Decades of Change
As part of Dark Reading's 20th anniversary special coverage, we profile the CISOs, founders, researchers, criminals, and policymakers who rewrote the enterprise risk playbook.
PCI group begins work on new spec to support bandwidth-hungry apps like AI, HPC
The PCI-SIG consortium announced PCIe 7.0 nearly four years ago and no products supporting it have come to market yet, but the standards body is going forward with the first draft …
OpenAI can't have incompetent AI consultants ruining the market, so bought its own
By which we mean it bought someone else's with other people's money
TeamPCP Compromises Checkmarx Jenkins AST Plugin Weeks After KICS Supply Chain Attack
Checkmarx has confirmed that a modified version of the Jenkins AST plugin was published to the Jenkins Marketplace. "If you are using Checkmarx Jenkins AST plugin, you need to ensu…
cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor
A threat actor named Mr_Rot13 has been attributed to the exploitation of a recently disclosed critical cPanel flaw to deploy a backdoor codenamed Filemanager on compromised environ…
NB574: Extreme’s New AI Agent Nudges You; Cloudflare Evaporates 20% of Employees
Take a Network Break! There’s a Red Alert for Apache Polaris with four CVEs that could enable unauthorized read/write access. On the news front, Lumen is spending $475 million in c…
Frame Security Emerges From Stealth With $50M for Awareness and Training Platform
Team8, Index Ventures, Picture Capital, Elad Gil, Cerca Partners, and Tesonet invested in Frame Security. The post Frame Security Emerges From Stealth With $50M for Awareness and T…
Debian 14 cracks down on unreproducible packages
Dull but important … so, a bit like Debian itself, really
Cisco: Latest news and insights
Cisco (Nasdaq:CSCO) is the dominant vendor in enterprise networking, and under CEO Chuck Robbins, it continues to shake things up. Cisco’s momentum is accelerating across multiple …
Anthropic’s bug-hunting Mythos was greatest marketing stunt ever, says cURL creator
After all that hype, AI scanner found one low-severity cURL flaw
Hackers Used AI to Develop First Known Zero-Day 2FA Bypass for Mass Exploitation
Google on Monday disclosed that it identified an unknown threat actor using a zero-day exploit that it said was likely developed with an artificial intelligence (AI) system, markin…
Instructure confirms hackers used Canvas flaw to deface portals
Education technology giant Instructure has confirmed that a security vulnerability allowed hackers to modify Canvas login portals and leave an extortion message. [...]
'Dirty Frag' Exploit Poised to Blow Up on Enterprise Linux Distros
The privilege escalation vulnerability, which is similar to other Linux flaws like Copy Fail and Dirty Pipe, may already be under limited exploitation.
Gtk2-NG, next generation of Gtk 2, comes back to life
Debian 14 plans to ax Gtk2 – and hard pruning stimulates fresh growth
BWH Hotels guests warned after reservation data checks out with cybercrooks
Customers urged to keep an eye out for phisherfolk
Feature freeze for Python 3.15 as first beta released
JIT compiler much improved, but no reinstatement for leaky incremental garbage collector
Build Application Firewalls Aim to Stop the Next Supply Chain Attack
Rather than scanning code alone, Build Application Firewalls inspect runtime behavior inside the software build pipeline. The post Build Application Firewalls Aim to Stop the Next …
Why Changing Passwords Doesn’t End an Active Directory Breach
Resetting a password doesn't always remove attackers from Active Directory. Specops Software explains how cached credentials and Kerberos tickets can keep attackers authenticated a…
Google says criminals used AI-built zero-day in planned mass hack spree
GTIG says AI-powered hacking has moved well beyond phishing emails and chatbot tricks
SoftBank bets on battery building to back bit barns
Tech investment giant wants batteries for its own AI datacenters, and lots of them
Lyrie.ai Joins First Batch of Anthropic’s Cyber Verification Program
Dubai-founded OTT Cybersecurity LLC also unveils the Agent Trust Protocol (ATP), the first open cryptographic standard for AI agent identity, scope, and action verification — slate…
Google Detects First AI-Generated Zero-Day Exploit
The zero-day was designed to bypass 2FA and it was developed by a prominent cybercrime group. The post Google Detects First AI-Generated Zero-Day Exploit appeared first on Security…
Google: Hackers used AI to develop zero-day exploit for web admin tool
Researchers at Google Threat Intelligence Group (GTIG) say that a zero-day exploit targeting a popular open-source web administration tool was likely generated using AI. [...]
Hackers Use AI for Exploit Development, Attack Automation
Cyber adversaries have long used AI, but now attackers are using large language models to develop exploits and orchestrate complex attacks.
Water company's leaky security earns near-£1M fine
Utility provider failed to detect Cl0p ransomware attack for nearly two years