Tags: Security
YouTube announced that its AI-powered “similarity detection” feature will now be available to all users aged 18 and older. By registering a selfie, users can monitor and detect videos featuring their likeness on the platform, with the option to request removal upon discovery.
Security researchers claim to have developed an exploit for damaging macOS kernel memory with the help of Anthropic's AI model "Mythos." Apple is treating the report seriously and working on countermeasures.
The latest version of the Rust-based VMM "Cloud Hypervisor" has been released, supporting AMD SEV-SNP for confidential VMs in Linux KVM environments, enhancing both security and performance.
A security vulnerability in MCP servers of Apache Doris and Alibaba RDS poses risks like SQL injection and metadata theft. While Apache has issued a patch, Alibaba refuses to address the issue, leaving threats unresolved.
GrapheneOS warns that hardware authentication can enable monopolies by certain companies. It highlights the dilemma between security and competition.
Microsoft has released the latest update for Azure Linux 3.0, which includes numerous security fixes affecting open-source software.
Scams exploiting Booking.com's data breach are on the rise. This article explains how travelers are being targeted and how to stay safe.
Mozilla revealed how it leveraged AI models like Claude Mythos Preview to identify and fix numerous potential security vulnerabilities in Firefox.
A Kaspersky investigation revealed that 60% of MD5-hashed passwords from over 231 million leaked credentials on the dark web can be cracked within an hour. GPU advancements are exposing password vulnerabilities.
A Taiwanese university student hacked the high-speed rail's TETRA radio system using SDR, exploiting a 19-year-old encryption key vulnerability.
A vulnerability enabling unauthorized local privilege escalation has been discovered in NixOS's package management tools "Nix" and "Lix." A security advisory has been published, drawing attention to the potential impact on users and recommended countermeasures.
"Maigret," an OSINT tool trending on GitHub, can search for accounts across hundreds of platforms using just a username. It has the potential to impact security research and privacy management.
A critical vulnerability has been discovered where copying just 732 bytes of configuration code can grant root access. We explain the security risks and lessons learned from this configuration error.
A GoDaddy customer claims their domain, held for 27 years, was fraudulently transferred without security checks. This exposes a critical flaw in the registrar's authentication process, sending shockwaves throughout the industry.
A comic depicting the blunders of new employees misusing generative AI—copyright violations, data leaks, and more—is sparking conversations. The article explores common pitfalls in workplace AI usage and outlines governance measures companies should adopt.
Vercel, a provider of web app development and hosting services, has announced it was hacked, potentially resulting in the exposure of some customer data.
Web hosting giant Vercel has been hacked, with ShinyHunters attempting to sell customer data. Vercel confirmed the security incident, stating the impact is limited.
'android-reverse-engineering-skill' appears on GitHub's trending repositories. It's gaining attention as a resource for systematically learning the skills and tools required for Android app reverse engineering.
Major Python developer conference PyCon US 2026 will be held in Long Beach. This year, new tracks dedicated to AI and security have been added to address the industry's evolution.
Anthropic has unveiled its new AI model, "Claude Mythos." Due to its destructive hacking capabilities, access will be restricted, issuing a major security warning to the tech industry.
OpenAI CEO Sam Altman has issued a detailed response on his blog addressing a home attack and a critical article published in "The New Yorker."
Nvidia’s latest gaming GPU, the RTX 5090, has surpassed AI-specific high-end GPUs in password-cracking performance, according to new findings.
Google has moved up the transition deadline to quantum cryptography to 2029. As the shift in cryptographic technology nears, the industry must act quickly.