Reported departure of Jonas Adler and Alexander Pritzel follows those of star researchers John Jumper, Noam Shazeer This article has been indexed from Silicon UK Read the original article: Key Researchers Leave Google For Anthropic, OpenAI
Qualcomm Signs Up Meta For Upcoming Data Centre CPUs
Facebook parent Meta to use upcoming Qualcomm processors to power servers, as chipmaker seeks data centre market share This article has been indexed from Silicon UK Read the original article: Qualcomm Signs Up Meta For Upcoming Data Centre CPUs
Nathan Austad Pleads Guilty in DraftKings Hacking Scheme, Gets 18 Months
Third DraftKings hacker gets 18 months in prison for a 2022 credential-stuffing attack that compromised 1,600 accounts and stole $600,000. Nathan Austad, the third person sentenced over the 2022 DraftKings credential-stuffing attack, received 18 months in prison. The group used…
Hackers Use Cisco AnyConnect and Google Update Lures to Drop SharkLoader Malware
A newly discovered malware family is making its way onto systems worldwide by hiding inside fake software installers that look completely legitimate. Researchers have identified a campaign where attackers disguise their malicious tools as trusted programs like Cisco AnyConnect and…
NIST Opens Updated IoT Security Guidance to Public Review
The guidance aims to establish product cybersecurity requirements for IoT devices integrated into federal agencies’ networks. The post NIST Opens Updated IoT Security Guidance to Public Review appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the…
DPRK-Linked macOS Implant Uses LaunchAgent Persistence and Python Stealer Module
The binary tracked as macOS.Gaslight as a Rust-based macOS implant and infostealer whose most novel features are analyst-directed prompt injection and a hardened Telegram-based command-and-control (C2) channel. We assess with high confidence that macOS.Gaslight aligns with DPRK-linked macOS activity clustered…
Google Chrome Update Patches 18 Security Flaws, Including Critical WebGL and Autofill Vulnerabilities
Google has released Chrome version 149.0.7827.196/197 for Windows and macOS, and version 149.0.7827.196 for Linux. This update addresses 18 security vulnerabilities, including several critical memory safety flaws in the WebGL and Autofill components. The announcement was made on June 23,…
Chrome 149 Update Resolves 18 Severe Vulnerabilities
More than half of the bugs are use-after-free defects, which can potentially lead to remote code execution. The post Chrome 149 Update Resolves 18 Severe Vulnerabilities appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original…
Copilot AI attacks cybercrime tools, hackers exploit Cisco zero-day, China’s 360 vs Mythos
Copilot AI knocks down cybercrime tools Hackers exploit Cisco zero-day China’s 360 says it matches Anthropic’s Mythos Get the show notes here: https://cisoseries.com/cybersecurity-news-copilot-ai-attacks-cybercrime-tools-hackers-exploit-cisco-zero-day-chinas-360-vs-mythos/ Huge thanks to our episode sponsor, Guardsquare AI is speeding up development, but at what cost?…
YouTube Settles With Teenager Over Addictiveness Claims
Google’s YouTube reaches settlement ahead of second landmark case, after Los Angeles jury finds platforms liable for mental health harms This article has been indexed from Silicon UK Read the original article: YouTube Settles With Teenager Over Addictiveness Claims
Meta Pauses Staff-Tracking Tool After Internal Leak
Meta temporarily halts programme to track employees’ keystrokes, mouse clicks after trove of data left exposed This article has been indexed from Silicon UK Read the original article: Meta Pauses Staff-Tracking Tool After Internal Leak
Hackers Use Malicious Chrome Extension to Break Out of Browser Sandbox
A sophisticated malware campaign that combined a phishing lure, an obfuscated Windows JavaScript dropper, a malicious Google Chrome extension and a Native Messaging Host to effectively break the browser sandbox and execute arbitrary PowerShell commands on infected Windows machines. The…
Microsoft WinRE Vulnerability Allows Hackers to Bypass UEFI/BIOS Password Enforcement
A newly disclosed vulnerability in the Microsoft Windows Recovery Environment (WinRE) could allow attackers to bypass UEFI and BIOS password protections, exposing systems to unauthorized access even when firmware-level security controls are active. This issue, tracked under CERT/CC VU#226679 and…
UK school’s network left wide open for invasion, student found
And the admin password was right in the Active Directory description field This article has been indexed from www.theregister.com – Articles Read the original article: UK school’s network left wide open for invasion, student found
The uptime questions every engineering leader should ask this week
In this interview with Help Net Security, Mattias Geniar, CTO at Oh Dear, explains why most outages start quietly, as creeping latency or a slow rise in errors. He argues teams alert on the wrong things: absolute numbers instead of…
IT Security News Hourly Summary 2026-06-25 09h : 8 posts
8 posts were published in the last hour 6:34 : Alibaba Accused of Illicitly Accessing Claude AI Models Using 25,000 Fraudulent Accounts 6:34 : Cisco SD-WAN Zero-Day Exploited Months Before Patching 6:33 : LLM security advice looks solid until you…
Alibaba Accused of Illicitly Accessing Claude AI Models Using 25,000 Fraudulent Accounts
Anthropic has accused the Chinese technology conglomerate Alibaba of orchestrating a large-scale, coordinated operation to extract capabilities from its Claude AI models illegally. The company describes this incident as the largest adversarial distillation attack recorded to date. The allegations, outlined…
Cisco SD-WAN Zero-Day Exploited Months Before Patching
CVE-2026-20245, the 7th Cisco SD-WAN vulnerability exploited in 2026, was used for months prior to its disclosure and patching. The post Cisco SD-WAN Zero-Day Exploited Months Before Patching appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read…
LLM security advice looks solid until you check the hard cases
Plenty of people now type their security worries straight into a chatbot. A hacked account, a suspicious email, a stalker who might be tracking a phone, all of it lands in the same window someone would use to ask about…
Met Police To Deploy Drones Across London
Metropolitan Police commissioner lays out plans to use drones across all London boroughs to respond to incidents, amid broader tech drive This article has been indexed from Silicon UK Read the original article: Met Police To Deploy Drones Across London
OpenClaw Supply Chain Risk Lets Attackers Abuse AI Agent Authority for Unauthorized Actions
OpenClaw’s agentic marketplace, ClawHub, was designed to accelerate AI-driven workflows by letting third-party “skills” extend an AI agent’s capabilities. Those skills are markdown-driven packages with broad local access, and that design choice made ClawHub a critical and sensitive link in…
Cisco Catalyst SD-WAN Manager Zero-Day Exploited to Gain Root Access via Malicious CSV Upload
Cisco Catalyst SD-WAN Manager instances are currently being targeted in a zero-day exploitation campaign that allows attackers to escalate their privileges to root through a malicious CSV upload mechanism. Mandiant reported this information on June 24, 2026. The vulnerability, identified…
Scoring AI hackers when there is no answer key
AI models are solving more and more of the offensive-cyber tests built to measure them. Once a model solves most of a benchmark, that benchmark runs out of room and says little about the best systems anymore. Many of those…
Cisco Catalyst SD-WAN Zero-Day CVE-2026-20245 Exploited to Gain Root Access
An unknown threat actor exploited a recently disclosed high-severity security flaw impacting Cisco Catalyst SD-WAN as a zero-day at least two months before it was publicly disclosed, according to new findings from Google-owned Mandiant. The vulnerability, tracked as CVE-2026-20245 (CVSS…