Anduril Wants to Own the Future of War Tech. Mishaps, Delays, and Challenges Abound
One lesson on wrangling equipment arrived within months. A recently hired maintenance technician trying to clean out a fairly new machine disconnected a part before…
Month: March 2026
GhostClaw AI Malware Targets macOS Users with Credential-Stealing Payloads
GhostClaw is a multi-stage macOS infostealer that now abuses both GitHub and AI-assisted development workflows to harvest credentials and deploy secondary payloads, significantly widening its…
New Ghost Campaign Uses Fake npm Progress Bars to Phish Sudo Passwords
Cybersecurity researchers have spotted a sneaky new trick used by hackers to compromise developers’ computers. This latest threat, which first appeared at the beginning of…
Make OpenAI’s models misbehave and earn a reward
OpenAI’s public Safety Bug Bounty program focuses on AI abuse and safety risks across its products. The goal is to support safe and secure systems…
Claude Extension Flaw Enabled Zero-Click XSS Prompt Injection via Any Website
Ravie LakshmananMar 26, 2026Browser Security / Vulnerability Cybersecurity researchers have disclosed a vulnerability in Anthropic’s Claude Google Chrome Extension that could have been exploited to…
Bank of England IT project offers lessons for wider government
MPs on the Public Accounts Committee (PAC) were in new territory as they looked for lessons learned from a government IT project that was a…
ACMA to set safeguards for telco consumers directly
The Australian Communications and Media Authority has moved to clamp down on consumer telco service providers by ending co-regulatory arrangements with the industry. Instead, the…
Coruna exploit reveals evolution of Triangulation iOS exploitation framework
Coruna exploit reveals evolution of Triangulation iOS exploitation framework Pierluigi Paganini March 26, 2026 Kaspersky found Coruna iOS exploits reuse updated code from the 2023…
ODNI tackles AI, threat hunting, app cybersecurity in year-one tech review
A year-long effort to strengthen cybersecurity and modernize tech at U.S. intelligence agencies has led to policy standards for using AI to bolster cyber defenses,…
Google: The quantum apocalypse is coming sooner than we thought
She expects Microsoft and AWS to set similar migration schedules, and CSOs will need to move their PQC transition plans up the priority list. “It’s…
Internet Yiff Machine: We hacked 93GB of “anonymous” crime tips
I used P3’s own site to find the tips page for my local Philly “fusion center,” clicked “continue,” and was immediately sent to the “Greater…
A puppet made me cry and all I got was this t-shirt
Welcome to this week’s edition of the Threat Source newsletter. Anyone who spoke with me in the last several weeks has had to deal with me loudly waiting in anticipation for the long-awaited “Project…