The FTC’s AI portfolio is about to get bigger
The Federal Trade Commission is poised to deepen its involvement in curbing the use of AI for malicious purposes, including the spread of nonconsensual sexualized…
Category: Cyberscoop
Vuln in Google’s Antigravity AI agent manager could escape sandbox, give attackers remote code execution
As organizations consider agentic AI for their business and IT stacks, researchers continue to find bugs and vulnerabilities in major, commercial models that can significantly…
Vercel’s security breach started with malware disguised as Roblox cheats
Vercel customers are at risk of compromise after an attacker hopped through multiple internal systems to steal credentials and other sensitive data, the company said…
Why the Axios attack proves AI is mandatory for supply chain security
Two weeks ago, a suspected North Korean threat actor slipped malicious code into a package within Axios, a widely used JavaScript library. The immediate concern…
Network ‘background noise’ may predict the next big edge-device vulnerability
Attackers rarely exploit an edge-device vulnerability indiscriminately. Typically, they first test how widely the flaw can be used and how much access it can provide,…
The surveillance law Congress can’t quit — and can’t explain
Congress is grappling with renewal of a surveillance law set to expire at the end of this month that critics say is a mystery on…
US nationals sentenced for aiding North Korea’s tech worker scheme
Two New Jersey men were sentenced Wednesday for facilitating North Korea’s long-running scheme to plant operatives inside U.S. businesses as employees, generating more than $5…
Officials seize 53 DDoS-for-hire domains in ongoing crackdown
Authorities from 21 countries took down 53 domains and arrested four people allegedly involved in distributed denial-of-service operations used by more than 75,000 cybercriminals, Europol…
Ghost breaches: How AI-mediated narratives have become a new threat vector
A company wakes up to a news story claiming it has suffered a major data breach. The details are specific, technical and convincing. But the…
Executive orders likely ahead in next steps for national cyber strategy
National Cyber Director Sean Cairncross expects more executive orders coming from the White House as part of implementing the national cybersecurity strategy, he said Wednesday.…
NIST narrows scope of CVE analysis to keep up with rising tide of vulnerabilities
The federal agency tasked with analyzing security vulnerabilities is overwhelmed as it and other authorities struggle to keep pace with a flood of defects that…
OpenAI expands Trusted Access for Cyber program with new GPT 5.4 Cyber model
OpenAI said it is expanding its Trusted Access for Cyber program to “thousands of individuals and organizations,” who will use the company’s technology to root…