AI
Anthropic's new Claude Security tool scans your codebase for flaws - and helps you decide what to fix first
US government, allies publish guidance on how to safely deploy AI agents
The document identifies five broad categories of risk:
- Privilege: When agents are granted too much access, a single compromise can cause far more damage than a typical software vulnerability.
- Design and configuration flaws, where poor setup creates security gaps before a system even goes live.
- Behavioral risks, or cases where an agent pursues a goal in ways its designers never intended or predicted.
- Structural risk, where interconnected networks of agents can trigger failures that spread across an organization’s systems.
- Accountability--inadequate logs or audit trails
Data center demand drives 66% surge in natural gas power plant costs
GPT-5.5-Cyber Matches Heavily Hyped Mythos Preview In New Cybersecurity Tests
OpenAI's GPT-5.5, which launched publicly last week, reached "a similar level of performance on our cyber evaluations" as Mythos Preview.
OpenAI locks GPT-5.5-Cyber behind velvet rope despite slamming Anthropic for doing exactly that
ChatGPT Became So Obsessed With Goblins That OpenAI Had to Intervene
OpenAI Rolls Out Advanced Security for ChatGPT Accounts
Advanced Account Security provides stronger login methods, more secure account recovery, shorter sessions, and training exclusion.
Politics
Edtech Firm Instructure Discloses Data Breach Amid Hacker Leak Threats
Instructure has not shared details on how many institutions and users were affected, nor on the threat actor behind the incident.
Delete Request and Opt-out Platform (DROP)
A free service like DeleteMe
Pro-Iran crew turns DDoS into shakedown as Ubuntu.com stays down
313 Team tells Canonical: pay up or the packets keep coming
Pentagon Reaches Agreements With Top AI Companies, But Not Anthropic
76% of All Crypto Stolen in 2026 Is Now in North Korea
FBI cyber boss: China's hacker-for-hire ecosystem 'out of control'
Xu Zewei's extradition and the criminal charges against him, however, should send a message to China's contractor ecosystem, he added: "The protection you assume from operating inside China does not extend the moment you cross a border."
Infosec
FBI links cybercriminals to sharp surge in cargo theft attacks
Threat actors have been infiltrating the computer systems of freight brokers and carriers through spoofed emails and fake web links.
What Happens in the First 24 Hours After a New Asset Goes Live
Scanning, enumeration, active probing, and compromise
Feuding Ransomware Groups Leak Each Other's Data
0APT and KryBit attacked each other, leaving both in shambles. Both operators will likely have to rebuild, rebrand, and create new infrastructure in order to recover from this.
The never-ending supply chain attacks worm into SAP npm packages, other dev tools
DigiCert hacked with a malicious screensaver file
A threat actor gained access to DigiCert's backend and stole 27 code signing certificates they later used to sign malware.
ORNL’s breakthrough detector protects trucking shipments from GPS deception
New portable technology detects GPS spoofing in real time to secure transportation
The GPS III Rollout Is Almost Complete, But What Is It?
Just last week, the tenth GPS III satellite was placed in orbit. Over the next decade, as many as 22 revised GPS III satellites are slated to take their position over the Earth, eventually replacing all of the aging satellites that billions of people currently rely on.
|