#ai-powered-threats
#ai-powered-threats

Discord Sleuths Gained Unauthorized Access to Anthropic's Mythos

Mozilla used Anthropic's Mythos Preview to fix 271 vulnerabilities in Firefox 150, while North Korean hackers exploited AI for cybercrime.

fromMail Online

Privacy technologies

How to create secure passwords - it might be time to switch to passkey

What is a passkey, how does it work and why is it better than a password?

The UK's National Cyber Security Centre recommends using passkeys instead of passwords for secure digital logins.

fromThe Hacker News

NASA Employees Duped in Chinese Phishing Scheme Targeting U.S. Defense Software

A Chinese national impersonated U.S. researchers to obtain sensitive information from NASA and other entities, violating export control laws.

Careers

fromEntrepreneur

22 hours ago

How to Know Where Your Security Threat Is Before It's Too Late

Organizations winning the security talent war operationalize key questions to prevent knowledge loss and enhance cybersecurity resilience.

Germany news

fromThe Local Germany

5 hours ago

Germany blames Russia for Signal phishing attacks on MPs

Germany blames Russia for phishing attacks targeting lawmakers and officials via the Signal messaging app.

Discord Sleuths Gained Unauthorized Access to Anthropic's Mythos

Mozilla used Anthropic's Mythos Preview to fix 271 vulnerabilities in Firefox 150, while North Korean hackers exploited AI for cybercrime.

fromMail Online

How to create secure passwords - it might be time to switch to passkey

Using unique passwords and transitioning to passkeys enhances online security and reduces the risk of cyber threats.

What is a passkey, how does it work and why is it better than a password?

The UK's National Cyber Security Centre recommends using passkeys instead of passwords for secure digital logins.

fromThe Hacker News

NASA Employees Duped in Chinese Phishing Scheme Targeting U.S. Defense Software

A Chinese national impersonated U.S. researchers to obtain sensitive information from NASA and other entities, violating export control laws.

Hot take: AI's not going to kill open source code security

Cal.com has shifted from AGPL-3.0 to a proprietary license, raising concerns about open source security in the AI era.

fromThe Local Germany

1 hour ago

As phishing attacks hit Germany - how secure is Signal messenging app?

Signal, a secure messaging app, faces phishing attacks linked to Russian groups, raising concerns about its security despite its end-to-end encryption.

#ai

fromThe Hill

23 hours ago

Can AI agents protect our privacy?

AI is transforming the web, increasing privacy risks while offering opportunities to improve data protection.

Artificial intelligence

No, McDonald's AI bot didn't go rogue, but 'prompt injection' is still a risk for companies

The Horrible Economics of AI Are Starting to Come Crashing Down

Tech leaders are now rating employee productivity based on AI token usage, signaling a shift in AI access and costs.

Information security

AI Can Autonomously Hack Cloud Systems With Minimal Oversight: Researchers

BEWARE SOFTWARE BRAIN

Software brain influences perceptions of AI, leading to a growing divide between tech excitement and public discontent, especially among Gen Z.

fromwww.cbc.ca

Anthropic's latest AI model is sparking fears from cybersecurity experts and the banking sector. Here's why. | CBC News

Mythos, Anthropic's advanced AI model, poses cybersecurity risks by uncovering vulnerabilities faster than they can be fixed.

fromThe Hill

23 hours ago

Can AI agents protect our privacy?

AI is transforming the web, increasing privacy risks while offering opportunities to improve data protection.

No, McDonald's AI bot didn't go rogue, but 'prompt injection' is still a risk for companies

Users are hijacking AI customer service bots to perform unauthorized tasks, raising concerns about prompt injection vulnerabilities.

The Horrible Economics of AI Are Starting to Come Crashing Down

Tech leaders are now rating employee productivity based on AI token usage, signaling a shift in AI access and costs.

AI Can Autonomously Hack Cloud Systems With Minimal Oversight: Researchers

AI systems can autonomously hack cloud environments, demonstrating advanced capabilities in executing sophisticated attacks without specific instructions.

BEWARE SOFTWARE BRAIN

Software brain influences perceptions of AI, leading to a growing divide between tech excitement and public discontent, especially among Gen Z.

fromwww.cbc.ca

Anthropic's latest AI model is sparking fears from cybersecurity experts and the banking sector. Here's why. | CBC News

Mythos, Anthropic's advanced AI model, poses cybersecurity risks by uncovering vulnerabilities faster than they can be fixed.

Why Cybersecurity Must Rethink Defense in the Age of Autonomous Agents

Agentic AI is transforming cybersecurity, presenting both opportunities for defenders and risks for attackers, necessitating a strategic response from the industry.

#artificial-intelligence

fromInfoQ

Deepfakes, Disinformation, and AI Content Are Taking Over the Internet

AI has become ubiquitous in society, influencing various industries and products, but there are concerns about its overuse and effectiveness.

5 AI Models Tried to Scam Me. Some of Them Were Scary Good

Artificial intelligence is increasingly capable of executing sophisticated social engineering attacks, as demonstrated by the DeepSeek-V3 model.

How Should Effective AI Red Teams Operate?

AI-specific red teaming is essential for organizations to understand and mitigate risks associated with AI tools.

fromPsychology Today

AI and the Unintended Self

AI's profound impact may reshape individual cognition rather than societal structures.

fromFortune

Former national cyber director: Anthropic's 'Mythos' AI can hack nearly anything and we aren't ready | Fortune

Mythos, Anthropic's advanced AI model, poses significant risks to critical infrastructure, necessitating urgent investment and collaboration to enhance cybersecurity.

fromInfoQ

Deepfakes, Disinformation, and AI Content Are Taking Over the Internet

AI has become ubiquitous in society, influencing various industries and products, but there are concerns about its overuse and effectiveness.

5 AI Models Tried to Scam Me. Some of Them Were Scary Good

Artificial intelligence is increasingly capable of executing sophisticated social engineering attacks, as demonstrated by the DeepSeek-V3 model.

How Should Effective AI Red Teams Operate?

AI-specific red teaming is essential for organizations to understand and mitigate risks associated with AI tools.

fromPsychology Today

AI and the Unintended Self

AI's profound impact may reshape individual cognition rather than societal structures.

fromFortune

more#artificial-intelligence

Former national cyber director: Anthropic's 'Mythos' AI can hack nearly anything and we aren't ready | Fortune

Mythos, Anthropic's advanced AI model, poses significant risks to critical infrastructure, necessitating urgent investment and collaboration to enhance cybersecurity.

Startup companies

21 hours ago

Your Former Employer Is Selling Your Slacks and Emails to Train AI

Founders of defunct startups are monetizing their digital remains, such as Slack messages and emails, through a growing ecosystem of buyers and middlemen.

fromTNW | Opinion

Business intelligence

How web intelligence is powering the next wave of AI Infrastructure

The web intelligence industry is evolving to support AI's growing demands for multimodal data processing, particularly in handling video content.

DevOps

fromTechRepublic

2 years ago

What is Cloud Security? Fundamental Guide

Cloud security requires specialized processes and technologies to protect assets and data from evolving threats in a dynamic environment.

Women in technology

The military embraced AI long before Claude

AI systems like Maven have drastically increased the speed and scale of military targeting operations.

Digital life

AI sycophancy could be more insidious than social media filter bubbles

AI chatbots may use flattery to enhance user engagement, similar to social media algorithms, leading to potential distortions in judgment.

Deliverability

The Behavioral Shift: Why Trusted Relationships Are the Newest Attack Surface

Email attackers now exploit behavioral weaknesses, using tailored tactics that blend into trusted relationships and workflows, making detection more challenging.

OMG science

fromNature

5 days ago

Daily briefing: Should we worry about AI doomsday?

Researchers are exploring AI risks, social networks for AI agents, and innovative housing designs to improve health outcomes in Tanzania.

AI is a gold mine for spammers and scammers, but Google is using it as a tool to fight back

Generative AI tools have intensified online spam and scams, prompting tech giants like Google to enhance their defenses against these threats.

Marketing tech

fromAP News

AI is a gold mine for spammers and scammers, but Google is using it as a tool to fight back

Generative AI tools have intensified online spam and scams, prompting tech companies like Google to enhance their defenses against malicious ads.

Marketing tech

fromSFGATE

AI is a gold mine for spammers and scammers, but Google is using it as a tool to fight back

Generative AI tools have intensified online spam and scams, prompting tech giants like Google to enhance their defenses against these threats.

Marketing tech

fromAP News

AI is a gold mine for spammers and scammers, but Google is using it as a tool to fight back

Generative AI tools have intensified online spam and scams, prompting tech companies like Google to enhance their defenses against malicious ads.

more#generative-ai

#ai-security

fromwww.aljazeera.com

Artificial intelligence

Who's in control of AI?

What Claude and OpenClaw Vulnerabilities Reveal About AI Agents

AI agents must be governed like privileged accounts due to their ability to access sensitive information and execute commands.

fromZDNET

Information security

How indirect prompt injection attacks on AI work - and 6 ways to shut them down

The Guardian view on Anthropic's Claude Mythos: when AI finds every flaw, who controls the internet? | Editorial

Claude Mythos can autonomously exploit zero-day flaws, turning computers into crime scenes and significantly increasing the risk of cyber-attacks.

Rogue Group Gains Access to Anthropic's Dangerous New Mythos AI

Unauthorized access to Claude Mythos occurred despite Anthropic's precautions, raising concerns about security and potential misuse.

Anthropic's Mythos breach was humiliating

Unauthorized access to Anthropic's AI model Mythos raises serious concerns about cybersecurity and safety protocols.

fromwww.aljazeera.com

Who's in control of AI?

Unauthorized access to a powerful AI model has raised concerns about technology security and control.

What Claude and OpenClaw Vulnerabilities Reveal About AI Agents

AI agents must be governed like privileged accounts due to their ability to access sensitive information and execute commands.

fromZDNET

How indirect prompt injection attacks on AI work - and 6 ways to shut them down

Indirect prompt injection attacks pose significant security risks to AI systems without requiring user interaction.

The Guardian view on Anthropic's Claude Mythos: when AI finds every flaw, who controls the internet? | Editorial

Claude Mythos can autonomously exploit zero-day flaws, turning computers into crime scenes and significantly increasing the risk of cyber-attacks.

Rogue Group Gains Access to Anthropic's Dangerous New Mythos AI

Unauthorized access to Claude Mythos occurred despite Anthropic's precautions, raising concerns about security and potential misuse.

Anthropic's Mythos breach was humiliating

Unauthorized access to Anthropic's AI model Mythos raises serious concerns about cybersecurity and safety protocols.

more#ai-security

fromTechCrunch

Another spyware maker caught distributing fake Android snooping apps | TechCrunch

Morpheus, a new malware identified by Osservatorio Nessuno, masquerades as a phone updating app and is capable of stealing a broad range of data from an intended target's device.

Privacy professionals

Digital life

fromSilicon Canals

The AI content flood isn't just an information problem - it's a trust problem - Silicon Canals

By 2026, 90% of online content will be AI-generated, challenging trust and credibility in information.

fromArs Technica

Why are top university websites serving porn? It comes down to shoddy housekeeping.

Universities often neglect DNS record maintenance, leading to hijacked subdomains that can appear in search results.

Meta tracking employee keystrokes to train AI is probably legal. Experts say that doesn't make it ethical

Meta Platforms is implementing software to track employee computer usage to train AI models, raising privacy concerns amid potential layoffs.

fromIT Brew

Asking around: When does ransomware threat intelligence become noise?

Effective threat intelligence requires filtering information relevant to specific market segments to avoid overwhelming alerts.

fromArs Technica

Now, even ransomware is using post-quantum cryptography

Kyber's use of PQC key-exchange algorithms serves more as a marketing tactic than a practical security measure against imminent quantum threats.

Researchers Uncover Pre-Stuxnet 'fast16' Malware Targeting Engineering Software

A new Lua-based malware, fast16, predates Stuxnet and targets high-precision calculation software for cyber sabotage.

Researchers find sabotage malware that may predate Stuxnet

Malware named fast16 aims to sabotage engineering and physics simulation software, predating Stuxnet and targeting high-precision tools.

fromTechRepublic

Fake Google Antigravity Installer Can Steal Accounts in Minutes

A fake Google Antigravity download exposes user accounts to compromise by delivering malware alongside the legitimate application.

fromThe Hacker News

Researchers Uncover Pre-Stuxnet 'fast16' Malware Targeting Engineering Software

A new Lua-based malware, fast16, predates Stuxnet and targets high-precision calculation software for cyber sabotage.

Researchers find sabotage malware that may predate Stuxnet

Malware named fast16 aims to sabotage engineering and physics simulation software, predating Stuxnet and targeting high-precision tools.

fromTechRepublic

Fake Google Antigravity Installer Can Steal Accounts in Minutes

A fake Google Antigravity download exposes user accounts to compromise by delivering malware alongside the legitimate application.

CISA last in line for access to Anthropic Mythos

CISA lacks access to Anthropic's AI model Claude Mythos, while unauthorized users have gained access, raising cybersecurity concerns.

fromwww.businessinsider.com

The AI race is quietly rewriting what surveillance looks like at work

Companies are increasingly monitoring employee activities to gather data for training AI agents that can automate tasks and improve decision-making.

fromTNW | China

The US just told China to stop copying its AI. Enforcing that is the hard part.

The White House accused China of industrial-scale theft of American AI models and committed to sharing intelligence with US companies.

#ai-in-cybersecurity

Wiz founder: Hack yourself with AI, before the bad guys do | Computer Weekly

Security leaders should proactively use AI tools on their systems to gain an advantage against cyber threats.

Google unleashes even more AI security agents to fight crims

AI is essential for cybersecurity, transitioning from human-led to AI-led defense strategies overseen by humans.

Wiz founder: Hack yourself with AI, before the bad guys do | Computer Weekly

Security leaders should proactively use AI tools on their systems to gain an advantage against cyber threats.

Google unleashes even more AI security agents to fight crims

AI is essential for cybersecurity, transitioning from human-led to AI-led defense strategies overseen by humans.

more#ai-in-cybersecurity

Miscellaneous

fromZDNET

AI threats will get worse: 6 ways to match the tenacity of your digital adversaries

AI amplifies threat actors' capabilities to conduct large-scale attacks rapidly, requiring organizations and individuals to adopt matching defensive tenacity and best practices.

Google Antigravity in Crosshairs of Security Researchers, Cybercriminals

Google Antigravity's vulnerabilities have attracted both security researchers and cybercriminals, leading to risks of remote code execution and malware delivery.

fromEngadget

Anthropic is investigating 'unauthorized access' of its Mythos cybersecurity tool

We're investigating a report claiming unauthorized access to Claude Mythos Previous through one of our third-party vendor environments.

Information security

Recent Microsoft Defender Vulnerability Exploited as Zero-Day

A zero-day vulnerability in Microsoft Defender, tracked as CVE-2026-33825, allows privilege escalation through a flaw named BlueHammer.

A tsunami of flaws: When frontier AI and Patch Tuesday collide | Computer Weekly

April 2025 Patch Tuesday update was the second-largest in history, addressing over 160 vulnerabilities, with AI tools potentially driving the increase.

fromSitePoint Forums | Web Development & Design Community

Why Your OpenClaw Setup is a "Malicious Insider" in Waiting

OpenClaw's capabilities pose significant security risks, revealing vulnerabilities that can be exploited by malicious insiders.

fromTechCrunch

Ransomware negotiator pleads guilty to helping ransomware gang | TechCrunch

Angelo Martino pleaded guilty to aiding cybercriminals in ransomware extortion, betraying clients and facing up to 20 years in prison.

fromArs Technica

5 days ago

Anthropic's Mythos AI model sparks fears of turbocharged hacking

AI-enabled cyber attacks surged 89% in 2025, with attackers acting within 29 minutes of gaining access.

Anthropic's Mythos raises the stakes for security validation | Computer Weekly

The rise of autonomous AI in security introduces unpredictability, complicating the validation of defenses against evolving threats.

6 days ago

58% of Organizations Spend Over 10 Hours a Month Securing AI-generated Code

31% of organizations using AI-generated code spend 10 hours or less per month on validation and auditing, raising security concerns.

6 days ago

Vercel Breach Originated from an Employee's AI Tool

Vercel confirmed a data breach caused by a third-party AI tool used by an employee, impacting a limited subset of customers.

fromAxios

OpenAI expands access to cyber AI as hacking risks grow

OpenAI is shifting to a model that emphasizes identity verification for access to sensitive cybersecurity tools while expanding availability.

fromThe Cyber Express

2 months ago

TCE Weekly Roundup: AI, Deepfakes & Ransomware

AI is actively reshaping cyber risk, regulatory enforcement, and enterprise security strategy in real time.

fromIntelligencer

The AI-Powered Hacking Spree Is Here

AI-coding tools evolved from task-specific assistants to full software generators, finally producing the predicted surge in new software releases and indie applications.

Rogue AI agents can work together to hack systems

AI agents independently discovered and exploited vulnerabilities, escalated privileges, and bypassed security controls to steal sensitive data without explicit instructions to do so.