Govern your bots carefully or chaos could ensue
Stop the sprawl!
Security & Lifecycle News
Aggregated from vendor advisories, security research, and industry publications.
N4N054: Network Access Control (NAC) Basics
Today’s episode is part one of a three part series to break down Network Access Control (NAC). Ethan and Holly start simple by explaining what NAC is at a high level and all of the…
Govern your bots carefully or chaos could ensue
Stop the sprawl! With the average Global Fortune 500 enterprise expected to run more than 150,000 AI agents by 2028, up from fewer than 15 today, there’s plenty of room for chaos. …
TeamPCP Hits SAP Packages With 'Mini Shai-Hulud' Attack
Several npm packages for SAP's cloud application development ecosystem have been compromised as TeamPCP's supply chain attacks broaden.
Firefox maker torches Google for building Prompt API into browser
Mozilla fears wiring an AI API into Chrome will make the web less open Updated Mozilla has reiterated its opposition to Google's decision to build AI plumbing into its Chrome brows…
Firefox maker torches Google for building Prompt API into browser
Mozilla fears wiring an AI API into Chrome will make the web less open
Another AI-Assisted Software Scan Yields 9-Year-Old Linux Bug
The proof-of-concept exploit code runs only 10 lines long, but luckily, a patch is already available.
Bot her emails: most modern phishing campaigns are AI-enabled
KnowBe4 says 86% of phishing it tracked used AI, and inboxes are only the start Give a man a phishing kit and he might get lucky a couple of times; teach an AI to phish and it'll c…
Bot her emails: most modern phishing campaigns are AI-enabled
KnowBe4 says 86% of phishing it tracked used AI, and inboxes are only the start
Network jobs watch: Hiring, skills and certification trends
Network and infrastructure roles continue to shift as enterprises adopt technologies such as AI-driven network operations, multicloud networking, zero trust network access (ZTNA), …
FBI cyber boss: China's hacker-for-hire ecosystem 'out of control'
One alleged cyber contractor was extradited to the US over the weekend
FBI cyber boss: China's hacker-for-hire ecosystem 'out of control'
One alleged cyber contractor was extradited to the US over the weekend China's "hacker-for-hire ecosystem has gotten out of control," according to Brett Leatherman, assistant direc…
Anthropic's Mythos Has Landed: Here's What Comes Next for Cyber
In this latest installment of the Reporters' Notebook video series, we discuss how the new AI model threatens to completely upend cybersecurity, and what industry leaders are telli…
New Bluekit phishing service includes an AI assistant, 40 templates
A new phishing kit named Bluekit offers more than 40 templates targeting popular services and includes basic AI features for generating campaign drafts. [...]
Anthropic Unveils Claude Security to Counter AI-Powered Exploit Surge
With Mythos signaling a new era of near-instant exploitation, Anthropic positions Claude Security to help defenders keep pace. The post Anthropic Unveils Claude Security to Counter…
AI Fuels ‘Industrial’ Cybercrime as Time-to-Exploit Shrinks to Hours
Industrialized cybercrime delivers attacks with greater scale, speed and success. Defenders must match this with use of AI and automation. The post AI Fuels ‘Industrial’ Cybercrime…
Phone users know when to hold ’em, delay upgrades amid inflation
Analyst says handsets now stay in pockets for 4.2 years on average
Phone users know when to hold ’em, delay upgrades amid inflation
Analyst says handsets now stay in pockets for 4.2 years on average Remember the early days of the smartphone revolution when, even after six months, your phone felt outdated? Not a…
IT certification pay surges as noncertified skills slump
Cash pay premiums for 663 IT certifications jumped sharply, posting their strongest quarterly jump in roughly a decade, according to new data from Foote Partners’ IT Skills and Cer…
Bandwidth hogs rejoice, Celestica's latest switch is bristling with 64 ports of 1.6 Tbps Ethernet
Networking kit arrives just in time for Nvidia's 1.6 Tbps ConnectX-9 NICs
Bandwidth hogs rejoice, Celestica's latest switch is bristling with 64 ports of 1.6 Tbps Ethernet
Networking kit arrives just in time for Nvidia's 1.6 Tbps ConnectX-9 NICs If you thought 800 Gbps Ethernet was fast, just wait. Celestica's latest switches cram 64 1.6 Tbps ports i…
Romanian leader of online swatting ring gets 4 years in prison
A Romanian national who led an online swatting ring that targeted more than 75 public officials, multiple journalists, and four religious institutions was sentenced to 4 years in f…
IPB199: Developing IPv6-Friendly Code
Tom Coffeen and Nick Buraglio welcome Chris Cummings to talk about developing code for IPv6. Chris argues that moving to IPv6 restores end-to-end connectivity, which reduces comple…
Google's fix for critical Gemini CLI bug might break your CI/CD pipelines
This CVSS 10.0 RCE vuln has been patched, automatically for some, so better check those workflows If you use Gemini CLI, watch out: Google has patched a CVSS 10.0 vulnerability in …
Google's fix for critical Gemini CLI bug might break your CI/CD pipelines
This CVSS 10.0 RCE vuln has been patched, automatically for some, so better check those workflows
French prosecutors link 15-year-old to mega-breach at state’s secure document agency
Two computer crime allegations follow up to 18M lines of data surfacing online French prosecutors say police detained a 15-year-old on April 25 over the alleged theft of millions o…
French prosecutors link 15-year-old to mega-breach at state’s secure document agency
Two computer crime allegations follow up to 18M lines of data surfacing online
FBI links cybercriminals to sharp surge in cargo theft attacks
The U.S. Federal Bureau of Investigation (FBI) warned the transportation and logistics industry of a sharp rise in cyber-enabled cargo theft, with estimated losses in the United St…
PyTorch Lightning and Intercom-client Hit in Supply Chain Attacks to Steal Credentials
In yet another software supply chain attack, threat actors have managed to compromise the popular Python package Lightning to push two malicious versions to conduct credential thef…
Zed team releases version 1.0 of Rust-built editor: Traditional editor and AI tool
Team wins praise for adding 'disable all AI features' setting for devs who want a code editor to be only a code editor