While generation of malicious code, media, and phishing material are already making heavy use of AI, threat actors are “experimenting” with AI agents to automate decision making.
A lighter than normal week, but still we saw LexisNexis, a global paint maker, and more get hit, plus an update to the UH Cancer Center's breach.
Google Threat Intelligence Group has identified a “powerful exploit kit” targeting iPhones running iOS 13.0 to 17.2.1 used by a surveillance company and crypto-stealing sites.
A new quantum decryption algorithm called JVG could significantly reduce the amount of resources needed to decrypt classical RSA encryption that we’ve been relying on for decades.
TikTok told the BBC that it will not be rolling out end-to-end encrypted DMs, citing user safety as a concern.
According to a report by SVD, Meta’s Ray-Ban AI Smart Glasses have been sending sensitive recordings of people, including “bank details, sex and naked people,” to outsourced companies to review and annotate.
Oasis Security discovered a vulnerability in the popular OpenClaw agentic AI software that allows websites to silently bruteforce access to a locally running instance and take it over.
The founder, Tal Dilian, and three other executives of Intellexa, a collective of spyware makers responsible for what was dubbed “Greek Watergate” have been sentenced to eight years in prison.
Attorney General of Texas Ken Paxton secured an agreement with Samsung that “will ensure Samsung no longer collects Automated Content Recognition (“ACR”) data without consumers being fully informed and consenting prior to any information being collected.”
Geopolitical tensions threaten cybersecurity research and sharing between countries, but research from Georgia Tech demonstrates a possible system of auditable provenance data to validate how threat intelligence was produced instead of trusting who produced it.
Android 17 Beta 2 released, bringing with it the rumored Contacts Picker for selecting individual contacts and the Local Network Access permission for preventing apps from seeing other devices on your local network.
Burger King is testing out a new AI called Patty in 500 restaurants that will listen for keywords like “welcome,” “please” and “thank you” and in employees’ headsets and report to managers.
PayPal, the French bank registry, the Mexican tax authority, and more big names were hit this week.
Samsung recently made the new Galaxy S26 Ultra available for pre-order, which features a huge privacy improvement never seen before on a phone: a builtin, toggleable privacy screen that functions on a per-pixel level.
Notepad++ has released a blog post describing the security enhancements they’ve made since the state-sponsored hack earlier this month, highlighting their new “double lock” update mechanism.
Firefox version 148 has released, bringing with it the AI killswitch feature that was promised, allowing users to disable all AI features from a single switch.
Google is expanding support for Quick Share and AirDrop compatibility between Pixel 10 phones and iPhones to include Pixel 9 phones as well.
ChatGPT has added Lockdown Mode, "an optional, advanced security setting designed for a small set of highly security-conscious users—such as executives or security teams at prominent organizations—who require increased protection against advanced threats."
A sex toy maker, a fintech giant, a pharmacy, a luxury brand, and more.
The long-awaited cross-platform end-to-end encrypted RCS messaging between Android and iOS users has finally begun its testing phase in the recently released beta for iOS 26.4.
According to Android Authority, Google's secret Project Toscana is upgrading the face unlock on future Pixels and even Chromebooks.