China-linked hackers target US, Canada research using legacy REDCap exploits
Google is warning of a cyber espionage campaign linked to a China-nexus threat actor, UNC6508, that […]
Cisco patches SD-WAN flaw amid evidence of active exploitation
Cisco has released fixes for a vulnerability in its Catalyst SD-WAN Manager software after becoming aware […]
Zero trust isn’t broken. Most companies just do it wrong.
Zero trust is 15 years old, and like many teenagers, it can feel misunderstood and underappreciated. […]
US Directive Forces Anthropic to Disable Fable 5 Worldwide
Anthropic disabled Fable 5 and Mythos 5 after a US export-control directive, raising new questions about […]
EU Sets Rules Roadmap for Deepfake, AI Content Labels
The EU published a voluntary Code of Practice to help companies label AI-generated content and deepfakes […]
Google Lawsuit: China-Based Scammers Used Gemini to Scale Phishing
Google sued Outsider Enterprise, alleging the China-based phishing network used Gemini and other AI tools to […]
Langflow RCE under active attack months after a patch was shipped
Enterprises using the open-source AI orchestration platform Langflow are being urged to patch a high-severity path […]
Attackers can turn AI agent guardrails into denial-of-service weapons
Attackers can turn AI agent guardrails into denial-of-service weapons, according to new research that found a […]
Governing the ghost workforce
Every enterprise security team is fighting a workforce problem they cannot see on any org chart. […]
5 runtime signals for catching a compromised AI agent
In June 2025, Simon Willison, the engineer who coined the term “prompt injection,” published a warning […]