‘These attacks don’t look like break-ins’ — HP warns hackers are turning popular remote access tools into dangerous, stealthy backdoors

HP’s latest threat report reveals hackers are abusing legitimate remote access tools and fake downloads to silently compromise corporate devices.

Maine takes down its data breach notification portal after it is flooded by fake claims

Someone has been posting fake data breach notifications, forcing the Maine Attorney General’s Office to act.

Bug in FIFA World Cup internal system gave anyone ability to modify TV stream

A security researcher said a flaw in FIFA’s online platforms allowed her to access several internal systems, including one that could have allowed her to take control of the TV stream of every World Cup match.

‘Dangerous’ AI Models Are Coming No Matter What

The US government crackdown on Anthropic’s Claude Fable 5 and Mythos 5 hides a glaring truth: AI models with advanced hacking capabilities will soon be the norm.

CyCognito pushes AI pentesting beyond vulnerability scans as enterprise attack surfaces evolve
CyCognito pushes AI pentesting beyond vulnerability scans as enterprise attack surfaces evolve

The cybersecurity industry is confronting a new reality: traditional vulnerability management is no longer enough. As enterprises rapidly deploy AI-powered applications, autonomous agents, and large language model (LLM) infrastructure, security teams a…

Attackers hijacked over 1,500 Arch Linux packages to steal developers’ secrets, no hacking required
Attackers hijacked over 1,500 Arch Linux packages to steal developers’ secrets, no hacking required

One of the largest open-source package repositories just spent a weekend cleaning up after a malware campaign that did not break into anything. It did not need to. Attackers seized control of more than 1,500 packages in the Arch User Repository, or AUR…

The team that built Microsoft’s Security Copilot just raised $100M to stop attacks before they happen
The team that built Microsoft’s Security Copilot just raised $100M to stop attacks before they happen

For most of the past decade, the security industry quietly gave up on prevention. Breaches were treated as inevitable, and the money went into detecting and cleaning up the mess afterwards. A new startup from two veterans of that industry says AI has m…