Latest stories — Page 11

Adobe Is Doubling Its Patch Releases — Here's Why That Matters
Starting in July, Adobe will push security fixes twice a month instead of once. Blame faster vulnerability discovery, AI-assisted research, and a threat pace that monthly updates can no longer keep up with.

Armored Likho: the newly-named hacking crew hitting power grids and government offices
Russian security firm Kaspersky says the group mixes espionage against big institutions with money-driven attacks on ordinary people.

New Chinese AI Models Challenge Cyber Defenses
Recent advances in Chinese AI models reveal vulnerabilities at a rapid pace, posing a challenge to cybersecurity defenses.

Citrix NetScaler Vulnerability Sparks Exploitation Attempts
Citrix patches a high-severity flaw in NetScaler appliances as exploitation attempts are reported within 24 hours.

An AI Agent Ran a Ransomware Attack by Itself. Here's What That Means.
Criminals used an AI tool called Langflow to let a machine plan and carry out a multi-step ransomware intrusion without a human guiding every move — a shift that could make attacks faster and cheaper to run at scale.

A Spyware Investigator Got Spied On: Pegasus Hit an EU Lawmaker Probing Pegasus
Forensic analysis of Stelios Kouloglou's phone shows repeated Pegasus infections while he sat on the European Parliament's own spyware inquiry.

ShinyHunters Breach Hits Medtronic: 3.8 Million Patients' Medical Records Stolen
The extortion group ShinyHunters broke into the medical device maker's systems in April 2026, walking away with names, Social Security numbers, and sensitive health details belonging to nearly four million people.

PamStealer: Fake Maccy App Hides Mac Password-Grabbing Script
Researchers say the AppleScript malware poses as a popular clipboard tool, tricks users into typing their Mac password, then quietly ships browser data and crypto wallets to its operators.

Popular AI Coding Tool Cursor Has Flaws That Could Let Attackers Run Code on Your Computer
Security researchers found two vulnerabilities in the Cursor AI code editor that could allow an attacker to silently take control of a developer's machine — no click required.

OpenAI's New AI Model Faces Unprecedented Government Scrutiny
OpenAI limits release of GPT-5.6 Sol to Trump-approved partners amid cybersecurity concerns.

Google and FBI Shut Down NetNut, a Criminal Anonymity Network Built on Millions of Hijacked Home Devices
NetNut rented out access to infected home and business routers so criminals and foreign spies could hide their tracks. A joint operation has disrupted it.

American Tech Is Quietly Powering the Global Scam Machine
A joint investigation by AP and FRONTLINE found that tools built by US companies are helping criminals run fraud operations at industrial scale — and most victims never see it coming.

Cisco Spends Around $400 Million to Plug a Growing Security Blind Spot: AI Agents
Two rapid-fire acquisitions — Astrix Security and WideField Security — are Cisco's answer to a question most companies haven't thought to ask: who's watching the bots?

Anthropic's Fable 5 AI Is Back Online After a Three-Week Government Ban
The U.S. Commerce Department lifted its export restrictions on Anthropic's Fable 5 model Tuesday, after weeks of closed-door negotiations over whether the AI could be weaponised by bad actors.

Five Eyes spy agencies warn AI will outpace cybersecurity defences within months
The intelligence alliance that links the US, UK, Australia, Canada and New Zealand says AI-powered attacks are arriving faster than most organisations can adapt — and breaches are now a question of when, not if.

Criminals Are Stealing AI Computing Power From Companies That Left a Door Open
Security researchers set traps and caught three separate groups hijacking exposed AI software endpoints to run hacking tools — no password required.

NIST's Cutback on Vulnerability Enrichment Sparks Concerns
Cybersecurity analysts warn of challenges in managing vulnerabilities after NIST reduces its support for detailed assessments.

A Year of Testing Has Cooled Security Teams' Enthusiasm for AI-Run Hacking Drills
Companies that hoped AI could fully replace human security testers have pulled back sharply. New data shows only 9% still trust fully automated systems — down from nearly a third just twelve months ago.

An AI Coding Tool Built Into Millions of Developer Setups Had a Flaw That Could Hand Hackers Your Cloud Keys
A security hole in Amazon's AI coding assistant let criminals steal cloud passwords just by getting a developer to open a poisoned folder. It's patched — but the attack method is spreading.

Education Sector Faces Rising Threats from Third-Party Software Breaches
Schools and universities struggle with cybersecurity as breaches through third-party applications rise, highlighting the need for better vendor risk management.

Iran, Russia, and China Have Been Quietly Attacking Water Systems — and the Door Was Usually Left Unlocked
A new threat-intelligence report finds three governments targeting water and wastewater infrastructure, not primarily to poison anyone, but to cause fear, probe weaknesses, and pre-position for future conflict. The tools they're using are embarrassingly basic.