Microsoft’s June update fixed 208 security flaws and introduced a cascade of new bugs across all Windows versions
Microsoft’s June update fixed 208 security flaws and introduced a cascade of new bugs across all Windows versions

Microsoft’s June 2026 Patch Tuesday update is causing problems across every supported version of Windows. KB5094126, released on June 9, patched a record 208 security vulnerabilities, but the update has introduced a string of bugs that range from cosme…

Amazon says human-in-the-loop AI oversight is failing because humans stop paying attention
Amazon says human-in-the-loop AI oversight is failing because humans stop paying attention

Amazon’s security leadership is arguing against one of the most widely accepted principles in AI governance. Eric Brandwine, VP and distinguished engineer at Amazon Security, told The Register that human-in-the-loop oversight is not the gold standard c…

Hackers hijacked Brazil’s emergency alert system and sent ‘misanthropy’ to millions of phones
Hackers hijacked Brazil’s emergency alert system and sent ‘misanthropy’ to millions of phones

Hackers breached Brazil’s national civil defense alert system overnight, sending fake “Extreme Alert” notifications containing the word “misantropi4” to millions of mobile phones across at least seven states. The Civil Defense Alert platform was taken …

Signal’s Meredith Whittaker says AI chatbots ‘are not your friends’ and calls Copilot agents a backdoor
Signal’s Meredith Whittaker says AI chatbots ‘are not your friends’ and calls Copilot agents a backdoor

Signal president Meredith Whittaker has warned that AI chatbots “are not your friends,” “are not conscious beings,” and “are not sentient interlocutors,” pushing back against the growing tendency of users to treat AI systems as trusted companions. The …

Hackers are mass-exploiting a Gravity SMTP flaw to steal API keys from 100,000 WordPress sites
Hackers are mass-exploiting a Gravity SMTP flaw to steal API keys from 100,000 WordPress sites

Attackers are actively exploiting a vulnerability in the Gravity SMTP WordPress plugin that exposes API keys, OAuth tokens, and detailed system configuration data to anyone who sends a single unauthenticated HTTP request. Wordfence, the WordPress secur…

Microsoft finds USB worm that steals cryptocurrency through clipboard hijacking and Tor
Microsoft finds USB worm that steals cryptocurrency through clipboard hijacking and Tor

Microsoft Threat Intelligence has identified a new strain of self-propagating malware that spreads through USB drives, monitors the Windows clipboard for cryptocurrency wallet addresses and seed phrases, and routes all stolen data through a portable To…

ShinyHunters published 45GB of Madison Square Garden data, including facial recognition surveillance records
ShinyHunters published 45GB of Madison Square Garden data, including facial recognition surveillance records

The cybercrime group ShinyHunters has published 45 gigabytes of data stolen from Madison Square Garden Entertainment after the company missed a June 15 ransom deadline. The dump includes facial recognition surveillance records, internal threat assessme…

Hackers have stopped breaking in. They’re abusing the things developers already trust.
Hackers have stopped breaking in. They’re abusing the things developers already trust.

Hackers are not really breaking in any more. They are walking through doors we hold open for them. This past week made the shift plain. Two campaigns showed that the things developers trust most, open-source code and AI tools, have become the easiest w…

The UK’s top data and AI regulator has quit, a first in the office’s 40-year history
The UK’s top data and AI regulator has quit, a first in the office’s 40-year history

The UK’s top data and AI regulator has resigned. It is the first time it has ever happened. John Edwards stepped down as information commissioner on Friday, with immediate effect. His exit followed a months-long workplace investigation. He said his pos…

GitHub for the factory floor: Copia raises $26M to protect the code that runs industry
GitHub for the factory floor: Copia raises $26M to protect the code that runs industry

Ask an industrial engineer how their plant would recover if a controller’s code got corrupted or encrypted, and the honest answer is often grim: a backup on someone’s laptop, in a folder named “final_backup_2”. Copia Automation wants to replace that wi…