The AI Fix #67: Will Smith’s AI crowd scandal, and gullible agents fall for scams
In episode 67 of The AI Fix, Graham talks to an AI with a fax machine, Bill Gates says there’s...
Blog
Permiso Uncovers Unicode Technique to Compromise Microsoft Exchange Rules
Permiso researchers uncovered a Unicode obfuscation technique, “Inboxfuscation,” that exploits Microsoft Exchange inbox rules to evade detection and exfiltrate email...
Wyden Asks FTC to Investigate Microsoft’s ‘Gross Cybersecurity Negligence’
For the second time in two years, Senator Ron Wyden is asking federal regulators to investigate Microsoft's cybersecurity practices, saying...
How Exposure Management and Cyber Risk Quantification Power CTEM
If you’ve been anywhere near cybersecurity leadership circles lately, you’ve probably heard the acronym CTEM tossed around a lot. Continuous...
Cracking the Boardroom Code: Helping CISOs Speak the Language of Business
Sep 11, 2025The Hacker NewsContinuous Threat Exposure Management CISOs know their field. They understand the threat landscape. They understand how...
SonicWall SSL VPN Flaw and Misconfigurations Actively Exploited by Akira Ransomware Hackers
Threat actors affiliated with the Akira ransomware group have continued to target SonicWall devices for initial access. Cybersecurity firm Rapid7...
Fake Madgicx Plus and SocialMetrics Extensions Are Hijacking Meta Business Accounts
Sep 11, 2025Ravie LakshmananMalvertising / Browser Security Cybersecurity researchers have disclosed two new campaigns that are serving fake browser extensions...
Senator Cruz introduces an AI ‘sandbox’ bill to ease regulatory burdens
California, for instance, has moved to restrict AI-generated or manipulated content in political advertising, particularly during elections. Colorado has passed...
Box CTO Ben Kus talks up the marriage of cloud storage, genAI agents
“Some customers use customized agents. You train them like an employee: ‘Here are your rules.’ Instead of typing long prompts,...
Jaguar Land Rover discloses a data breach after recent cyberattack
Jaguar Land Rover discloses a data breach after recent cyberattack Pierluigi Paganini September 11, 2025 Jaguar Land Rover confirms a...
Three-Prong Ghost Hacker Scam Targets Seniors, Others
The FBI warns of the “Phantom Hacker” scam that has stolen over $1B by tricking victims—often seniors—into moving funds to...
AsyncRAT Exploits ConnectWise ScreenConnect to Steal Credentials and Crypto
Sep 11, 2025Ravie LakshmananMalware / Credential Theft Cybersecurity researchers have disclosed details of a new campaign that leverages ConnectWise ScreenConnect,...
Critical flaw SessionReaper in Commerce and Magento platforms lets attackers hijack customer accounts
Critical flaw SessionReaper in Commerce and Magento platforms lets attackers hijack customer accounts Pierluigi Paganini September 10, 2025 Adobe fixed...
How npm Security Collapsed Thanks To a 2FA Exploit
Billions (No, that’s not a typo, Billions with a capital B) of files were potentially compromised. If you thought Node...
When is the Right Time to Hire a CISO?
Knowing when to hire a CISO is a challenging proposition – one which most organizations will eventually need to...