‘Copy Fail’ is a real Linux security crisis wrapped in AI slop
Attackers are actively exploiting a Linux vulnerability in the wild, and researchers warn that the fallout could be broad — anyone with authenticated local access…
Category: Cyberscoop
A college student is suing a dating app that allegedly used her TikTok videos to target men in her dormitory
A 19-year-old woman is suing the makers of a dating app, alleging they took a video she posted online, repurposed it without her consent into…
Why data centers now belong on the critical infrastructure list
Missile and drone attacks that took out cloud data centers in the Middle East underscored a critical vulnerability in the modern economy: reliance on digital…
US government, allies publish guidance on how to safely deploy AI agents
Cybersecurity agencies from the United States, Australia, Canada, New Zealand and the United Kingdom jointly published guidance Friday urging organizations to treat autonomous artificial intelligence…
cPanel’s authentication bypass bug is being exploited in the wild, CISA warns
A severe authentication bypass vulnerability in cPanel, one of the most widely deployed web hosting control panel platforms on the internet, is being actively exploited…
Congress kicks the can down the road on surveillance law (again)
Congress extended a controversial surveillance law for 45 days on Thursday, hours before its latest expiration following an earlier extension. The Senate passed — then…
Former incident responders sentenced to 4 years in prison for committing ransomware attacks
Two former cybersecurity professionals who moonlighted as cybercriminals, committing a series of ransomware attacks in 2023, were each sentenced to four years in prison, the…
FCC tightens KYC rules for telecoms, closes loophole for banned foreign services
The Federal Communications Commission approved new regulations Wednesday designed to crack down on robocalling, protect telecommunications networks from cyberattacks and further vet equipment-testing labs based…
Two new extortion crews are speedrunning the Scattered Spider playbook
A pair of persistent and problematic threat groups affiliated with The Com are actively targeting organizations across multiple critical infrastructure sectors for rapid data theft…
Everyone’s building AI agents. Almost nobody’s ready for what they do to identity.
Anthropic recently announced that it would not release Mythos, its most powerful AI model, to the public. The model discovered thousands of previously unknown software…
Congress, industry ponder government posture for protecting data centers
The growth of data centers — and adversaries’ targeting of them — left lawmakers at a hearing Wednesday contemplating whether the federal government has the…
Federal CIO cautious on Anthropic’s Mythos despite planned rollout
Federal Chief Information Officer Greg Barbaccia said Tuesday the government is approaching Anthropic’s Mythos model with measured expectations, acknowledging both its potential to strengthen federal…