AI
AI Self-preferencing in Algorithmic Hiring: Empirical Evidence and Insights
LLMs consistently prefer resumes generated by themselves over those written by humans or produced by alternative models, even when content quality is controlled. Candidates using the same LLM as the evaluator are 23% to 60% more likely to be shortlisted than equally qualified applicants submitting human-written resumes.
7-0 wipeout: I put ChatGPT-5.5 vs Claude 4.7 through 7 impossible tests — and the results shocked me
Claude wins every time
US accuses China of “industrial-scale” AI theft. China says it’s “slander.”
Since the launch of DeepSeek—a Chinese model that OpenAI claimed was trained using outputs from its models—other AI firms have accused global rivals of using a method called distillation to steal their IP.
Detecting and preventing distillation attacks
Imagine An Army Of AI Minions Handling Incident Response
Politics
36-year-old left the U.S. for China—now pays $1,000 rent and $100 for groceries for family of 4: It’s my ‘version of the American Dream’
GLP-1 Drugs Linked to Cognitive Impairment, Though the Reason Why Probably Isn’t What You Expect
People live longer, so they have the opportunity to become demented.
Climate Scientists Shake Their Heads as First US City Running Completely Out of Water
Corpus Christi is on track to be the first American city to completely run out of water.
Palantir employees are talking about company’s “descent into fascism”
Palantir was founded—with initial venture capital investment from the CIA—at a moment of national consensus following the September 11, 2001, attacks, when many saw fighting terrorism abroad as the most critical mission facing the US.
But the killing of Alex Pretti in Minneapolis and the strike on an Iranian elementary school are making employees unhappy and rebellious.
Europe—not US—first to authorize Moderna’s combo mRNA flu-COVID vaccine
Moderna’s mRNA-based combination vaccine against both flu and COVID-19 has gotten the green light in Europe—but it continues to be shelved in the US, where it was developed.
‘We don’t understand’: oncologists condemn FDA’s ban on life-saving cancer drugs
Doctors said there was “no doubt in our minds” that RP1, an oncolytic immunotherapy used to treat melanoma, could save lives.
Personalized Vaccine For 'Deadliest Major Cancer' Keeps Patients Alive 6 Years Later
U.S. soldier involved in Maduro raid charged with betting on the operation
The special forces soldier made more than $400,000 on Polymarket.
A Hair Dryer May Have Gamed a Paris Weather Sensor for $34,000 on Polymarket
Someone may have used a hair dryer near a Paris airport weather sensor to win $34,000 on the prediction market platform Polymarket, prompting France’s national meteorological service to file a criminal complaint.
Colorado Adds Open-Source Exemption to Age-Verification Bill
Article 30 does not apply to an operating system provider or developer that distributes software under license terms that let recipients copy, redistribute, and modify the software without restrictions from the provider or developer... This wording covers Linux distributions and many open-source applications without linking the exemption to any specific project, company, or ecosystem.
If malware via monitor cables is a matter of national security, this might be the gadget for you
GCHQ's cyber arm has entered the hardware game with SilentGlass--its first device designed to prevent cyberattacks on display devices. These devices are equipped with hardware that identifies malicious traffic in the data channel, blocking the transfer between computer and display.
"It's not every day we hear about monitors being pwned via HDMI," but there are legitimate attack paths that are both applicable to modern environments and have been abused by known attackers.
Despite the lack of published cases of these attacks, the NCSC believes external computer monitors are "a hugely attractive target" for adversaries, particularly those with an espionage focus.
Infosec
Why are top university websites serving porn? It comes down to shoddy housekeeping.
Hundreds of subdomains from dozens of universities have been hijacked by scammers.
DORA and operational resilience: Credential management as a financial risk control
On January 17, 2025, the Digital Operational Resilience Act (DORA) entered into application across the EU. Article 9 of the regulation makes credential security a binding financial risk control, with supervisory consequences for institutions that fall short.
Least-privilege and MFA are now mandatory, and the compliance perimeter does not stop at the institution's own systems. Institutions must contractually require equivalent authentication standards from their vendors and audit compliance against those requirements.
Governments on high alert after CISA snuffs out Firestarter backdoor on fed network
A US federal agency was successfully targeted by a previously unknown backdoor malware called Firestarter, according to CISA cybersnoops and their UK counterparts – neither of which disclosed the agency's name.
CISA said Firestarter was especially sophisticated in that it maintained persistent access to compromised networking devices even after they were updated, allowing attackers to re-enter victims' networks without needing to exploit any new vulnerabilities.
Researcher breaks 15-bit elliptic curve key in 'largest quantum attack,' wins 1 bitcoin bounty from Project Eleven
Microsoft recommends weak passwords
To mitigate the impact on monthly limits...
Password Management: Use common passwords that Microsoft Defender can easily extract and scan, reducing the likelihood of these files being counted as unscannable.
In a first, a ransomware family is confirmed to be quantum-safe
Bitwarden CLI npm package compromised to steal developer credentials
The malicious package was distributed as version 2026.4.0 and remained available between 5:57 PM and 7:30 PM ET on April 22, 2026, before being removed.
Checkmarx Security Update: April 22
Supply-chain attack poisoned many Chackmarx products on April 22
|