cybersecurity
60 stories related to this topic, newest first.
foxnews.comCalifornia Attorney General Sues 23andMe Over 2023 Data Breach
California’s attorney general filed suit against the genetic testing company, alleging inadequate security allowed a 2023 breach that exposed data of nearly 7 million users. The complaint seeks civil penalties and orders barring further violations of state privacy law.
ForbesFaster AI Vulnerability Discovery Widens Gap Between Findings and Fixes
BreachLock CEO Seemant Sehgal states that AI tools accelerate vulnerability discovery but do not address validation, prioritization, or remediation capacity. He argues organizations must improve operational workflows to close the gap between detection and resolution.
thehindu.comHub Cyber Security Shares Rise 70 Percent After Investor Files 13G
Hub Cyber Security Ltd. shares increased 70 percent in pre-market trading on Friday. The move followed an amended SEC filing showing a new 15.6 percent stake.
forbes.comOkta Reports Higher-Than-Expected First-Quarter Revenue and Earnings
Okta posted adjusted earnings of 91 cents per share and revenue of $765 million for its fiscal first quarter. The results exceeded analyst estimates and coincided with rising demand for identity security tools tied to agentic AI.
CnbcOkta CEO Discusses AI Agents in Cybersecurity Ahead of Earnings Call
Okta CEO Todd McKinnon appeared on CNBC's Closing Bell Overtime to preview the company's earnings results and describe how the firm is deploying AI agents for cybersecurity. The segment aired one hour before the scheduled investor call.
androidheadlines.comPhishing campaign targets Signal users for recovery keys
A hacking effort is attempting to obtain Signal users' secret recovery keys that unlock cloud message backups. The campaign uses phishing tactics to trick recipients into disclosing the keys.
theyeshivaworld.comPay Tel Secured Exposed Server Holding 300,000 Driver Licenses
Security researchers found an unprotected Microsoft Azure server containing driver license scans and other records from Pay Tel prison calling service users. The company secured the server after being notified of the exposure.
ibtimes.co.ukJapan's Three Largest Banks Plan Use of OpenAI Model for Cybersecurity
Japan's three largest banks will deploy a new OpenAI model to detect and respond to cyberattacks. The initiative follows a report by Nikkei citing internal bank planning documents.
The IndependentGCHQ Develops Blueprint for National AI Cyber Defense System
GCHQ has drawn up plans for a national AI-powered cyber defense system intended to protect critical infrastructure and major companies. The system is expected to become operational within five years.
yna.co.krLawmakers Push to Maintain Funding for Cybersecurity Agency
Republican and Democratic members of Congress have opposed proposed reductions to the Cybersecurity and Infrastructure Security Agency. The agency has lost roughly one-third of its staff since January 2025 through layoffs and reassignments.
citizen.co.zaGCHQ Director to Address Russian Cyber and Sabotage Threats in First Public Speech
GCHQ Director Anne Keast-Butler will deliver her inaugural public address on Wednesday at Bletchley Park, outlining threats to UK critical infrastructure and democratic processes. The speech will detail GCHQ operations against cyber attacks and alleged Russian hybrid activities.
yahoo.comLaw Firm Investigates Tulane University Data Breach
Bragar Eagel & Squire, P.C. announced an investigation into a data breach at Tulane University that occurred on August 10, 2025. The firm is examining potential claims related to unauthorized access of HR data stored on an Oracle platform.
dutchreview.comDutch Government Blocks Kyndryl Acquisition of Solvinity
The Dutch government has prohibited U.S. company Kyndryl from acquiring Dutch cloud provider Solvinity. Officials cited a risk to the public interest over control of the national identity platform DigiD.
en.globes.co.ilState Comptroller Report Details Cyber Vulnerabilities in Israeli Government Systems
State Comptroller Matanyahu Englman released audit findings on Tuesday showing multiple government bodies continued using vulnerable remote-work systems and left sensitive databases exposed during the period of conflict with Iran.
CoinDeskStablR Suspends USDR and EURR After Attacker Mints $13.5 Million in Unbacked Tokens
StablR halted minting and redemption for its USDR and EURR stablecoins after a multisignature wallet exploit created $13.5 million in unbacked tokens. The tokens fell below their pegs and no longer meet the 1:1 backing required by European Union rules.
teslarati.comAnthropic Limits Release of New AI Model Over Security Concerns
Anthropic announced in April that its Claude Mythos model had identified vulnerabilities in major operating systems and browsers. The company restricted access to about 50 trusted organizations under Project Glasswing.
koreatimes.co.krLithuania Reports Theft of 600,000 National Records
Lithuanian authorities announced a breach of more than 600,000 entries from national registers. The prosecutor’s office said a foreign country is suspected. The head of the State Enterprise Centre of Registers resigned after the incident.
The Sydney Morning HeraldWhatsApp Accounts of Australian MP and Staff Hacked in March
A federal politician and three staff members had their WhatsApp accounts breached in March. Officials said the incident prompted a temporary block on the app for parliamentary laptops.
pymnts.comEuropean Central Bank to Urge Banks to Accelerate Cybersecurity Upgrades
The European Central Bank will press lenders to speed up IT security work after testing showed new risks from advanced AI models. The move follows an internal meeting that examined threats posed by systems such as Anthropic’s Claude Mythos Preview.
GB NewsFarage Says Russian Agents Hacked Phone Over £5 Million Gift
Reform UK leader Nigel Farage stated that Russian intelligence accessed his phone to obtain details of a £5 million donation from cryptocurrency businessman Christopher Harborne. The claim follows a forensic review prompted by the limited number of people who knew about the payme…
TechCrunchApple, Google, and Meta offer device modes to counter spyware
The companies provide optional security settings that limit certain device functions to reduce the risk of targeted spyware attacks. The modes restrict features such as message attachments, app installations, and network connections.
rismedia.comFBI Seeks Nationwide Access to License Plate Reader Data
Procurement records show the FBI plans to purchase access to automated license plate reader networks. The agency seeks near real-time data on vehicle movements across major U.S. highways.
nbcnews.comAnthropic Reports Over 10,000 High-Severity Bugs Found in Project Glasswing
Anthropic said its AI-assisted security testing program has identified more than 10,000 high- or critical-severity vulnerabilities. The company is working with about 50 partner organizations and expanding the project to additional participants.
nbcnews.comReport Highlights Weak Authentication in U.S. Industrial Control Systems
FDD reported that weak authentication and exposed industrial control systems increase risks of Iranian cyber intrusions into U.S. critical infrastructure. The assessment focuses on vulnerabilities in operational technology environments.
Fox NewsInheritance Scam Email Uses Official Language and 48-Hour Deadline
An email claiming recipients may be entitled to an unclaimed inheritance has appeared in inboxes. The message includes a reference ID and a button labeled 'Check My Unclaimed Inheritance.'
forbes.comSupply Chain Cybersecurity Incidents Rise as AI Expands Attack Surfaces
Third-party involvement in data breaches doubled to 30 percent according to the 2025 Verizon Data Breach Investigations Report. Over 70 percent of organizations reported at least one material third-party cybersecurity incident in the past year. AI tools are being used both to aut…
jpost.comIranian Hackers Target Aviation and Oil Firms in Espionage Campaign
Iranian hackers posed as job recruiters to target software engineers at aviation and oil and gas companies. Researchers from Palo Alto Networks Unit 42 tracked the activity during the U.S. and Israeli conflict with Iran.
nbcnews.comStartup Depthfirst AI Model Finds Vulnerabilities Missed by Anthropic Mythos
Depthfirst reported that its AI model identified additional security flaws in widely used internet software. The company said the findings cost one-tenth the price of comparable results from Anthropic's Mythos model.
theyeshivaworld.comLaw Enforcement Agencies Shut Down VPN Service Used by Ransomware Groups
An international coalition of law enforcement agencies announced the shutdown of First VPN, a service used by cybercriminals. The FBI and Europol reported that at least 25 ransomware gangs relied on the service to conceal their activities.
ForbesAI Agents in Cybersecurity Add Complexity Instead of Reducing Workload
Siloed AI agents in security tools perform isolated tasks but cannot share context or coordinate actions. Enterprises are adopting agentic systems that orchestrate multiple agents toward unified security outcomes.
nypost.comArmy Holds First Defense Critical Infrastructure Summit at Fort Bragg
The U.S. Army conducted a tabletop exercise at Fort Bragg to test responses to simultaneous attacks on critical infrastructure. The exercise involved 14 external partners and focused on maintaining rapid deployment capability during crises.
phonearena.comScammers Send Emails From Microsoft Notification Address
Scammers have used a loophole to send messages from a Microsoft email address normally reserved for account alerts. The activity has continued for several months, and Microsoft has not yet responded to inquiries about stopping the abuse.
tass.comBluesky Reports Russian Efforts to Hijack Accounts for Propaganda
Bluesky stated it is addressing Russian-linked attempts to take over user accounts and post content. The company described the activity as a new method of spreading material on its platform.
WiredGitHub Reports Breach of 3,800 Repositories by TeamPCP
GitHub announced a breach in which a poisoned VSCode extension allowed TeamPCP to access internal code repositories. The incident is the latest in a series of supply chain attacks attributed to the group.
investinghaven.comVisa Reports Rise in AI-Assisted Scams and Drop in Ransomware Payments
Visa released its Spring 2026 Biannual Threats Report showing changes in cybercrime patterns. Device-token fraud fell nearly 10 percent year-over-year while total ransomware attacks increased 26 percent.
benzinga.comDiscord Completes Rollout of End-to-End Encryption for Voice and Video Calls
Discord has finished implementing end-to-end encryption for voice and video calls on its platform. The feature now applies automatically to all calls except Stage Channels. Users do not need to change any settings for the encryption to activate.
bleedingcool.comGoogle Publishes Exploit Code for Unfixed Chromium Vulnerability
Google published proof-of-concept code for a vulnerability in its Chromium browser that affects Chrome, Edge, and other Chromium-based browsers. The flaw, reported 29 months earlier, allows attackers to monitor browser activity and create persistent connections.
themarysue.comTrump Mobile Customer Data Exposed Online
YouTubers Coffeezilla and penguinz0 reported that Trump Mobile is leaking customer email and mailing addresses. The company has not responded to alerts about the exposure. Only about 30,000 units appear to have been ordered so far.
koreatimes.co.krGitHub Reports Breach of 3,800 Internal Repositories
GitHub confirmed a breach that affected around 3,800 internal code repositories. The company stated it found no evidence that customer data stored outside those repositories was accessed.
forbes.comSecurity Experts Pair AI With Human Judgment for Threat Detection
Security teams are combining artificial intelligence tools with human analysis to identify potential threats. The approach, described as vibe hunting, is presented as an example of collaboration between experts and AI systems in 2026.
thehindu.comPhilippine lawmakers propose National Cybersecurity Council
Multiple bills in the 20th Congress seek to create a centralized inter-agency body to coordinate cybersecurity policy and protect critical information infrastructure.
ForbesAI Agents Expand Enterprise Identity Counts Beyond Human Users
Non-human identities now outnumber human accounts in many organizations. Enterprises report limited visibility and rising incidents tied to AI agents and automated credentials.
fonearena.comDiscord Rolls Out End-to-End Encryption for All Voice and Video Calls
Discord has made end-to-end encryption the default for voice and video calls across its platform. The change applies automatically to all users without requiring any action.
manilatimes.netOcean Raises $28 Million for AI Email Security Platform
Ocean emerged from stealth with $28 million in funding to develop an agentic email security system designed to counter AI-powered phishing. The startup was founded by Shay Shwartz, who previously worked on cybersecurity projects for Israeli defense units.
/cdn.vox-cdn.com/uploads/chorus_asset/file/23962441/acastro_STK067__02.jpg)
theverge.comT-Mobile Forms Nonprofit to Strengthen Telecom Cybersecurity Collaboration
T-Mobile established a nonprofit organization called C2 ISAC to coordinate cybersecurity efforts among telecommunications companies. The group includes seven other firms such as AT&T, Charter, Verizon, and Comcast.
9to5google.comGoogle Expands Access to CodeMender AI Tool for Security Testing
Google announced expanded external testing of its CodeMender AI agent at its annual I/O developer conference. The tool identifies and repairs code vulnerabilities and is now available to select expert groups.
usmagazine.comPresident Trump Discusses Cyber Issues With Chinese Leader Xi Jinping
President Trump stated that both the United States and China engage in spying activities during remarks after a recent meeting with Chinese leader Xi Jinping. The comments addressed U.S. concerns about Chinese cyberattacks on American infrastructure and institutions.
manilatimes.netIBM Expands AI Security Tools and Joins Project Glasswing
IBM announced an expansion of its enterprise security offerings for the AI era on May 19, 2026. The company also became a member of Project Glasswing, an industry initiative focused on protecting critical software infrastructure.
medianama.comHackers Compromise Dozens of Open Source Packages in Supply Chain Attack
Cybersecurity firms reported that hackers took control of developer accounts and published malicious versions of widely used open source packages. The packages are relied on by software developers worldwide. The attack aims to steal credentials from downstream users.
9to5mac.comCISA Exposed Credentials in Public GitHub Repository
A federal cybersecurity agency left plaintext passwords and cloud keys in a spreadsheet uploaded to a public GitHub repository. An independent researcher identified the exposure and reported it after the contractor did not respond.
cointelegraph.comCrypto Industry Increases Security Measures After 75 Percent Rise in Attacks
The crypto industry reported a 75 percent increase in attacks on digital asset holders last year. Companies are expanding security protocols in response to the rise in incidents.
indiatoday.intoday.inAnthropic Allows Mythos AI Users to Share Cybersecurity Threats
Anthropic has started letting users of its Mythos artificial-intelligence model share cybersecurity threats with others who may face similar vulnerabilities. The feature enables users to exchange information about potential risks.
indiatoday.intoday.inAnthropic Allows Mythos Users to Share Cyber Threat Intelligence
Anthropic has updated its Mythos platform to permit users to share cyber threat intelligence with other organizations. The change expands how participants can exchange information on security threats.
prnewswire.comNYC Health and Hospitals Reports Data Breach Affecting at Least 1.8 Million People
NYC Health and Hospitals disclosed a data breach that exposed personal, medical, and biometric information of at least 1.8 million individuals. The incident involved unauthorized access to its network from November 2025 through February 2026.
indiatoday.intoday.inAnthropic to Brief Financial Stability Board on AI Model Mythos
Anthropic will discuss its Mythos Preview AI model with finance ministries and central banks in the Financial Stability Board. The briefing follows a request from Bank of England Governor Andrew Bailey, who chairs the FSB.
cbinsights.comGrafana Labs Says Hackers Stole Source Code but Refused Ransom Demand
Grafana Labs confirmed a breach of its GitLab environment through a stolen credential. The company said it refused to pay the ransom and has added security measures.
forbes.comGenerative AI Shifts Cybersecurity From Reactive Detection to Predictive Defense
Generative AI systems now analyze logs, access attempts and historical patterns to predict attacker moves before exploits occur. The technology also creates context-aware credentials and identifies sensitive data across formats without manual rules.
finance.yahoo.comAI Enters U.S.-China Talks, Cybersecurity, and Layoff Decisions
President Trump discussed AI during a summit with Xi Jinping in Beijing last week. AI agents and cybersecurity models have expanded workplace and security uses since January. Cisco cited AI as a factor in recent layoffs.
Anthropic's Mythos Model Raises Cybersecurity Concerns
Anthropic announced its Mythos AI model on April 7 after it identified thousands of severe security vulnerabilities. The release prompted global discussions on AI risks and defensive measures. OpenAI's GPT-5.5 and coding tools from both companies have also drawn scrutiny.
forbes.comVPS Hosting Explained: Costs, Security and When Businesses Need It
Virtual private server hosting provides dedicated resources between shared and managed options. It costs £20 to £50 monthly and requires users to manage security on unmanaged plans. Experts say it suits growing sites that experience slowdowns or handle payments.