External News

Krebs On Security

• Poor Passwords Tattle on AI Hiring Bot Maker Paradox.ai
  July 18, 2025
  Security researchers recently revealed that the personal information of millions of people who applied for jobs at McDonald's was exposed after they guessed the password […]
• DOGE Denizen Marko Elez Leaked API Key for xAI
  July 15, 2025
  Marko Elez, a 25-year-old employee at Elon Musk's Department of Government Efficiency (DOGE), has been granted access to sensitive databases at the U.S. Social Security […]
• UK Arrests Four in ‘Scattered Spider’ Ransom Group
  July 10, 2025
  Authorities in the United Kingdom this week arrested four alleged members of "Scattered Spider," a prolific data theft and extortion group whose recent victims include […]
• Microsoft Patch Tuesday, July 2025 Edition
  July 9, 2025
  Microsoft today released updates to fix at least 137 security vulnerabilities in its Windows operating systems and supported software. None of the weaknesses addressed this […]
• Big Tech’s Mixed Response to U.S. Treasury Sanctions
  July 3, 2025
  In May 2025, the U.S. government sanctioned a Chinese national for operating a cloud provider linked to the majority of virtual currency investment scam websites […]
• Senator Chides FBI for Weak Advice on Mobile Security
  June 30, 2025
  Agents with the Federal Bureau of Investigation (FBI) briefed Capitol Hill staff recently on hardening the security of their mobile devices, after a contacts list […]

Secure World

• AI-Driven Fraud and Impersonation: The New Face of Financial Crime
  July 18, 2025
  In early 2024, an employee at a Hong Kong firm joined what appeared to be a routine video meeting with […]
• OT Under Siege No More? Fortinet Report Shows Improving Landscape
  July 17, 2025
  For cybersecurity professionals safeguarding the intersection of digital and industrial systems, Fortinet's newly released 2025 State of Operational Technology and […]
• Salt Typhoon Breached U.S. Army National Guard, DHS Memo Reveals
  July 16, 2025
  A newly surfaced U.S. Department of Homeland Security (DHS) memo has confirmed that a Chinese state-linked hacking group known as […]
• AI Appreciation Day Recognizes Positive Contributions
  July 16, 2025
  July 16th marks Artificial Intelligence Appreciation Day, a relatively new observance established in May 2021 by A.I. Heart LLC. The […]
• Goldman Sachs Pilots Its First Autonomous Coder
  July 15, 2025
  Goldman Sachs has officially entered the era of the "hybrid workforce" with the announcement of Devin, an autonomous AI software engineer […]
• The Potential of NATO's Cybersecurity Proposals
  July 14, 2025
  The North Atlantic Treaty Organization's (NATO) approach to cybersecurity is evolving rapidly in response to an increasingly volatile digital landscape. […]

Dark Reading

• 'PoisonSeed' Attacker Skates Around FIDO Keys
  July 18, 2025
  Researchers discovered a novel phishing attack that serves the victim a QR code as part of supposed multifactor authentication (MFA), […]
• Nearly 2,000 MCP Servers Possess No Security Whatsoever
  July 18, 2025
  Authentication in MCP — the backbone of agentic AI — is optional, and nobody's implementing it. Instead, they're allowing any […]
• 3 Ways Security Teams Can Minimize Agentic AI Chaos
  July 18, 2025
  Security often lags behind innovation. The path forward requires striking a balance.
• Firmware Vulnerabilities Continue to Plague Supply Chain
  July 18, 2025
  Four flaws in the basic software for Gigabyte motherboards could allow persistent implants, underscoring problems in the ways firmware is […]
• 4 Chinese APTs Attack Taiwan's Semiconductor Industry
  July 18, 2025
  Chinese threat actors have turned to cyberattacks as a way to undermine and destabilize Taiwan's most important industrial sector.
• Cisco Discloses '10' Flaw in ISE, ISE-PIC — Patch Now
  July 17, 2025
  Cisco just disclosed a critical severity flaw in its ISE and ISE-PIC products, joining two similar bugs disclosed last month.