Sources
Hacker News
- Phases of Ice 36 min 2 sec old
- White House asks OpenAI to limit its next model release 36 min 20 sec old
- Hallucination in World Models Is Predictable and Preventable 36 min 36 sec old
- Honesty gets Emacs patch rejected 38 min 44 sec old
- Guardrails for offensive AI agents and why instructions are never enough 40 min 45 sec old
- How to Write an Effective Software Design Document 42 min 26 sec old
- Vanguard on Demand: Kernel Level Cheating (Prevention) 46 min 43 sec old
- Offline Access and Authentication 48 min 14 sec old
- My Argument Against Self-Care 49 min 16 sec old
- Why Problem Statements Aren't Enough 50 min 8 sec old
CNET Feed
- Today's NYT Connections: Sports Edition Hints and Answers for June 26, #641 2 hours 42 min old
- Here We Go Again: Microsoft Raises Xbox Prices Amid Memory Shortage 4 hours 13 min old
- Best Battery Life Laptops of 2026 6 hours 10 min old
- Peppa Pig Contract Backlash Is the Latest Over the Use of AI in Entertainment 6 hours 24 min old
- These Products Dodged Apple's Price Hikes. Our Expert Explains Why 6 hours 41 min old
- Some Apple Products Just Got More Way More Expensive. Are iPhones Next? 6 hours 42 min old
- Today's NYT Strands Hints, Answers and Help for June 26 #845 6 hours 46 min old
- Today's Wordle Hints, Answer and Help for June 26, #1833 6 hours 46 min old
- Today's NYT Connections Hints, Answers and Help for June 26, #1111 6 hours 46 min old
- Apple's Price Increases Extend to Refurbished Macs and iPads 7 hours 16 min old
Cloud Security Briefing: News and Advice
- The Cloud Security Alliance (CSA) is a nonprofit organization that promotes research into best practices for securing cloud computing and the use of cloud technologies to secure other forms of computing. 3 hours 23 min old
- What are the necessary components of a cloud security policy, and why should an organization go to the trouble to create one? Download a template to get the process started. 3 hours 23 min old
- This cloud security guide explains challenges enterprises face today; best practices for securing and managing SaaS, IaaS and PaaS; and comparisons of cloud-native security tools. 3 hours 23 min old
- Automating security in the cloud can be invaluable for threat detection and mitigation. Explore key areas where security professionals should implement automation. 3 hours 23 min old
- With so many apps and data residing in cloud, employing a security framework to help protect cloud infrastructure is an essential move for an organization. 3 hours 23 min old
- SaaS has become ubiquitous. To secure it, take steps to inventory SaaS usage, securely authenticate usage, encrypt data, adopt single sign-on and more. 3 hours 23 min old
- When it comes to adopting SASE or zero trust, it's not a question of either/or, but using SASE to establish and enable zero-trust network access. 3 hours 23 min old
- Let's break down some cloud security alphabet soup. CASB, CSPM and CWPP overlap to an extent, but you'll want to pay close attention to how they accomplish different things. 3 hours 23 min old
- Extended detection and response tools are open or native. Learn the differences between them, and get help choosing the right XDR type for your organization. 3 hours 23 min old
- SIEM, SOAR and XDR each possess distinct capabilities and drawbacks. Learn the differences among the three, how they can work together and which your company needs. 3 hours 23 min old
Security Wire Weekly
- Check out the latest security news from the Informa TechTarget team. 3 hours 23 min old
- Loss of electric power presents a major risk to business continuity, and no organization is immune. Take these steps to create a solid business continuity plan for power outages. 1 day 20 hours old
- AI can improve the speed and effectiveness of risk management efforts. Here are the potential benefits, use cases and challenges your organization needs to know about. 6 days 11 hours old
- A passkey is an alternative user authentication method that eliminates the need for usernames and passwords. 1 week 9 hours old
- Several IT security frameworks and standards exist to help protect company data. Here's advice for choosing the right ones for your organization. 1 week 20 hours old
- Mobile compliance now requires governance over how sensitive data is accessed across managed and personal devices. Here are practical steps for sustainable enterprise compliance. 1 week 2 days old
- A penetration test, also called a 'pen test,' is a simulated cyberattack on a computer system, network or application to identify and highlight vulnerabilities in an organization's security posture. 2 weeks 10 hours old
- CISO as a service, or CISOaaS, is the outsourcing of CISO (chief information security officer) and information security leadership responsibilities to a third-party provider. 2 weeks 11 hours old
- Admins will want to focus on issuing corrections for the large number of flaws, some of which require no user interaction, in Windows RRAS and Microsoft Office. 2 weeks 14 hours old
- When assessing cybersecurity risk, be sure to consider the scope of the project, your organization's specific assets and leadership's tolerance for risk. 2 weeks 14 hours old
SlashDot
- Polestar Banned From Selling Cars In US From Model Year 2027 3 hours 23 min old
- Trump Administration Asks OpenAI To Stagger Release of New Model 4 hours 24 min old
- Apple Raises Prices On Macs, iPads, and More By Hundreds of Dollars 5 hours 25 min old
- Linux Foundation Launches Akrites To Coordinate AI-Driven Open Source Security 5 hours 25 min old
- LastPass Says Hackers Stole Customer Support Case Data During Klue Breach 7 hours 25 min old
- Anthropic Says Alibaba Must Be Punished For Largest Claude Cloning Attack 8 hours 26 min old
- Ford Rehires 350 Engineers After AI Fails To Preserve Expertise or Train Juniors 9 hours 26 min old
- Micron Locks In Historically High Memory Prices For Five Years 10 hours 27 min old
- Google Starts Lowering Play Store Fees, Making Good On Epic Games Settlement 11 hours 27 min old
- New Study Shows That Tall Vehicle Hoods Cause Hundreds More Deaths Per Year 15 hours 31 min old
Microsoft Malware Protection Center
- Photo ZIP campaign targeting hospitality industry delivers Node.js implant for persistent access 4 hours 17 min old
- Microsoft a Leader in The Forrester Wave™ for Endpoint Management Platforms 10 hours 47 min old
- CNAPP evolution: How Microsoft aligns with leading cloud risk management platforms 1 day 8 hours old
- StealC and Amadey: Breaking down infostealers and the cybercrime services that deliver them 1 day 14 hours old
- Guarding AI memory 3 days 7 hours old
- One intrusion, two cyberattackers: Uncovering parallel threat activity 3 days 10 hours old
- AutoJack: How a single page can RCE the host running your AI agent 1 week 2 hours old
- New Forrester study shows customers who unified with Microsoft Security benefited from 124% ROI 1 week 7 hours old
- From package to postinstall payload: Inside the Mastra npm supply chain compromise 1 week 23 hours old
- Crypto Clipper uses Tor and worm-like propagation for persistence and control 1 week 1 day old
Security Wire Daily News
- With AI, security at runtime means protecting access, vetting inputs, checking outputs and detecting anomalous behaviors. It is challenging to get right. 8 hours 26 min old
- Quantum computing could break encryption in the next several years, and research suggests that few organizations are ready. Experts say CISOs must act now. 1 day 7 hours old
- Infostealers aren't new. But what is new is that almost anyone -- regardless of skill -- can now deploy the malware. Update incident response plans to safeguard your operations. 3 days 9 hours old
- 'The Life and Times of Cybersecurity Professionals' survey assessed how workers feel about defending against constant threats, as well as what's getting better and what is not. 1 week 4 hours old
- Zscaler's Zenith Live event revealed AI-focused innovations like Enterprise Browser and ZAgent Framework, positioning zero trust at the core of AI security. 1 week 1 day old
- The business case for OpenClaw is clear, but so are the security risks. Learn why a cybersecurity expert says deployments are putting enterprises in real danger. 1 week 1 day old
- Today's distributed computing environments require a cloud strategy that goes well beyond choosing the best security tools. Instead, CISOs need a far more integrated approach. 1 week 2 days old
- Cyber ranges, once the domain of national defense agencies, are becoming more widely accessible. In the public sector, the state of Florida is leading the charge. 1 week 3 days old
- Cyber insurance forces companies to rethink risk management 1 week 3 days old
- Your latest cybersecurity incident might not be a threat actor, but an internal AI agent doing what it's authorized to do. Incident response must evolve to accommodate AI. 1 week 6 days old
Malware Bytes Security
- Beware of “Parcel Expert” job offers: They’re parcel mule scams 8 hours 34 min old
- Update Chrome to patch critical browser security flaws 15 hours 42 min old
- Fake domain renewal emails trick website owners into paying scammers 16 hours 20 min old
- Elite network says it was hacked after members’ personal data was left exposed 17 hours 39 min old
- PixelSmash flaw turns video files into attack tools 1 day 9 hours old
- Watch out for renewal scams pretending to be Malwarebytes 1 day 12 hours old
- “Total access to all your devices.” Sextortion scammers strike again 1 day 15 hours old
- Inside the dark web: Stolen identities for 95¢, malware, and scams-for-hire 2 days 10 hours old
- Meta pauses controversial employee-tracking program after security review 2 days 13 hours old
- Hackers steal passport and driver’s license data of 3 million Texans 2 days 16 hours old
Computer Weekly Feed
- Post Office general counsel, who led court case against subpostmasters, failed to appear at statutory public inquiry 11 hours 27 min old
- Six UK companies have been selected as part as UK government’s plans to introduce AI tutoring tools in schools 11 hours 27 min old
- Steve Lucas, CEO of Boomi, believes the answer is prompt routing, which sends queries to the LLM with the lowest token cost and caches responses 12 hours 28 min old
- Nationwide extends its VCF contract with Broadcom. Meanwhile, in the Tesco legal case, Broadcom disputes that VMware is a dominant software platform 13 hours 28 min old
- Survey reveals concerns over the take-up of artificial intelligence technology in Finland 14 hours 30 min old
- The UK’s national museums and galleries have failed to heed the lessons of high-profile cyber attacks and remain highly vulnerable. The Public Accounts Committee is calling on DCMS to do more to help 17 hours 33 min old
- AI-native networks, intelligent computing and token-based business models are emerging as the next frontier of digital infrastructure 17 hours 33 min old
- Enhanced powers to collect and share data are at the heart of EU plans to expand Europol, putting it at loggerheads with human rights groups 17 hours 33 min old
- The UK’s national museums and galleries have failed to heed the lessons of high-profile cyber attacks and remain highly vulnerable. The Public Accounts Committee is calling on DCMS to do more to help. 1 day 8 hours old
- Space-based datacentres are becoming technically feasible in the next decade, with one in eight AI workloads running in space by 2040, according to Boston Consulting Group – but costs will pose a major barrier to its adoption 1 day 10 hours old
Security Week
- Runlayer Raises $30 Million in Series A Funding 14 hours 7 min old
- Cal Water Finds No Evidence of OT Activity After Hackers Claimed They Could Disrupt Water Supply 14 hours 40 min old
- Lantronix Serial-to-IP Converter Flaw Exploited in Attacks After OT Threat Warning 15 hours 24 min old
- GitLab Patches Code Execution, Information Disclosure Vulnerabilities 15 hours 37 min old
- 25-Year-Old Vulnerability Patched in Curl 17 hours 22 min old
- SecurityWeek ICS Cybersecurity Conference Heads to Nashville for Special 25-Year Anniversary Edition 17 hours 47 min old
- NIST Opens Updated IoT Security Guidance to Public Review 18 hours 18 min old
- Chrome 149 Update Resolves 18 Severe Vulnerabilities 18 hours 51 min old
- Cisco SD-WAN Zero-Day Exploited Months Before Patching 20 hours 39 min old
- When Information Becomes the Attack Surface – Understanding AI Agent Traps 1 day 9 hours old
Wired Security
- British Police Built a Sprawling Crime-Prediction Machine. Some Results Couldn’t Be Trusted 16 hours 47 min old
- Dialog Claims It Was Hacked. A Misconfigured Website Left Its Members Exposed 2 days 7 hours old
- OpenAI Launches Full-Scale Effort to Patch Open-Source Bugs as It Takes on Anthropic’s Mythos 3 days 9 hours old
- World Cup Scams Are Getting Harder to Spot 3 days 17 hours old
- A Critical Deadline Is Approaching for Windows and Linux Security 4 days 17 hours old
- Hackers Claim to Leak Stolen Madison Square Garden Data 5 days 17 hours old
- How the Peter Thiel-Linked Dialog Club Secretly Ranks Its Members 1 week 4 hours old
- How to Watch the Knicks Parade on NYC Traffic Surveillance Cameras 1 week 15 hours old
- The UK Will Scan Asylum-Seekers’ Faces for Age Checks—Despite Knowing the Tech Is Flawed 1 week 20 hours old
- Leak Exposes Members of Peter Thiel’s Secretive ‘Dialog’ Society 1 week 2 days old
Graham Cluely Security Blog
- Smashing Security podcast #473: How a hacker could have Rickrolled the entire World Cup 1 day 3 hours old
- Hacker hijacks Brazil’s national alert system, sending “misanthropy” to millions of phones 2 days 14 hours old
- Apple’s Hide My Email tweak leaves privacy fans fuming 6 days 10 hours old
- Imposter scams cost Americans $3.5 billion in 2025 – and it’s getting worse 6 days 12 hours old
- Smashing Security podcast #472: AI gets hacked, and BitLocker gets bypassed 1 week 1 day old
- Maine forced to take down data breach portal after fake notices filed with authorities 1 week 3 days old
- Privacy own-goal: World Cup blunder leaks Lionel Messi’s passport details 1 week 6 days old
- Silent Ransom Group: what you need to know 2 weeks 11 hours old
- Smashing Security podcast #471: This AI worm just rewrote its own rules 2 weeks 1 day old
- Why schools remain one of cybercriminals’ favourite targets 2 weeks 1 day old
Cisco Security Advisories
- Cisco Advance Notification for Publication of July 1, 2026, Security Advisories 1 day 6 hours old
- Cisco Packaged Contact Center Enterprise and Cisco Unified Contact Center Enterprise Cross-Site Scripting Vulnerabilities 3 days 7 hours old
- Cisco Umbrella Virtual Appliance Privilege Escalation Vulnerability 1 week 1 day old
- Cisco Webex App Open Redirect Vulnerability 1 week 1 day old
- Cisco Crosswork Network Controller Server-Side Template Injection Vulnerability 1 week 1 day old
- Cisco Identity Services Engine Remote Code Execution and Information Disclosure Vulnerabilities 1 week 1 day old
- Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability 1 week 2 days old
- Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability 1 week 2 days old
- Cisco Catalyst SD-WAN Manager Arbitrary File Write Vulnerability 1 week 3 days old
- Cisco Catalyst SD-WAN Manager Authenticated Privilege Escalation Vulnerability 3 weeks 20 min old
Security Now
- SN 1084: The Residential Proxy Threat - Malicious Proxies in Your Living Room 2 days 14 min old
- SN 1083: Patch Tuesday à la AI - Arch Linux Repo Under Siege 1 week 2 days old
- SN 1082: The Malicious Use of AI - Anthropic's Red Team Report 2 weeks 2 days old
- SN 1081: AI Captured the Flag - Personal AI: Productivity Superpower or Privacy Threat? 3 weeks 1 day old
KrebsOnSecurity
- Scattered Spider Hackers Plead Guilty on Day 1 of Trial 2 days 10 hours old
- ‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm 1 week 9 hours old
- Who Runs the Ransomware Group ‘The Gentlemen?’ 2 weeks 1 day old
- A Record-Breaking Patch Tuesday for June 2026 2 weeks 2 days old
- Hackers Used Meta’s AI Support Bot to Seize Instagram Accounts 3 weeks 3 days old
Guardian Security
- AI models that can take down governments and business months away, rare Five Eyes statement warns 3 days 13 hours old
- Readers reply: Experts say we should use passkeys, but can a smartphone pin really be safer than a password? 1 week 4 days old
- Spyware firm targeted WhatsApp users in defiance of US court order, Meta says 2 weeks 2 days old
Tao Security
US-Cert Current Activity
- CISA Adds Two Known Exploited Vulnerabilities to Catalog 3 weeks 2 days old
- CISA Adds One Known Exploited Vulnerability to Catalog 3 weeks 3 days old
- CISA Adds One Known Exploited Vulnerability to Catalog 3 weeks 6 days old
EFF
- Microsoft Took a Step Toward Human Rights Accountability. Google and Amazon (and Others) Should Pay Attention! 1 month 1 week old
- Your Privacy Shouldn't Be A Corporate Decision 1 month 1 week old
- We Updated Our Privacy Policy. Here's What Changed and Why. 1 month 1 week old
- We Must Not Normalize Digital Surveillance Abuses. EFF’s New Guide Underlines Concrete Steps to Fight Back. 1 month 1 week old
- Help EFF Solve an Issue That's Bigger than Creepy Ads 1 month 1 week old
- The Science is Not Settled: How Weak Evidence is Fueling a National Push to Ban Social Media for Youth 1 month 1 week old
Cisco Threat Outbreak
Corero Security
CSOOnline - Salted Hash - Top Security News
Dark Reading Attacks and Breaches
Dark Reading Cloud
Dark Reading Security Monitoring
Dark Reading Threat Intelligence
Dark Readuing Vulnerability and Threats
Google Security Blog
InfoSec Island
InfoWorld
Naked Security
Network World
NoticeBored
Paul's Security Weekly
PC Magazine Security
Schneier on Security
Security News White Papers
Tech Crunch Security
Techworld Security
The Security Ledger
Threat Post
US-Cert Alerts
ZDNet Security
