2025

So much for watermarks: UnMarker tool nukes AI provenance tags

Boffins insist your deepfake tracking tech won't work Computer scientists with the University of Waterloo in Ontario, Canada, say they've developed a way to remove watermarks embedded in AI-generated images.…

Microsoft: SharePoint attacks now officially include ransomware infections

Let the games begin Ransomware has officially entered the Microsoft SharePoint exploitation ring.…

Coyote malware abuses Microsoft’s UI Automation to hunt banking creds

Some coyotes hunt squirrels, this one hunts users' financial apps A new variant of the Coyote banking trojan abuses Microsoft's UI Automation (UIA), making it the first reported malware to use UIA for credential theft.…

The EFF is 35, but the battle to defend internet freedom is far from over

Palantir, data brokers, and judicial overreach are all on the horizon, executive director Cindy Cohn warns Interview  In July 1990, before the World Wide Web even existed, an unusual alliance was formed to fight for the rights of the emerging online community.…

Compromised Amazon Q extension told AI to delete everything – and it shipped

Malicious actor reportedly sought to expose AWS 'security theater' The official Amazon Q extension for Visual Studio Code (VS Code) was compromised to include a prompt to wipe the user's home directory and delete all their AWS resources.…

VMware prevents some perpetual license holders from downloading patches

Despite pledging help for those who don’t sign for subs, Broadcom says validating their entitlements will delay support Exclusive  Some customers of Broadcom’s VMware business currently cannot access security patches, putting them at greater risk of attack.…

Three questions you should always be able to answer about your security environment

All security questions are hard to answer, but these three are non-negotiable Partner content  We've all seen those seemingly straightforward security questions that snowball into multi-day research projects across dozens of consoles, spreadsheets, and manual queries. The reality is that even the most fundamental security questions are notoriously…

$380M lawsuit claims intruder got Clorox’s passwords from Cognizant simply by asking

Hand us the mind bleach, we want to flush our memories of attack Clorox is suing its service desk provider, Cognizant, for $380 million in a California state court, alleging the IT support crew "enabled a cybercriminal to gain a foothold in Clorox's network" by handing over staffers'…

Copilot Vision on Windows 11 sends data to Microsoft servers

Total Recall: Capturing everything you do on your PC screen to become a 'true companion' Microsoft is again throwing AI at Windows 11 to see what sticks, releasing features including the even more eyebrow-raising successor to its controversial Recall, a screen-streaming remotely processed backseat driver dubbed Copilot Vision.…

China warns citizens to beware backdoored devices, on land and under the sea

Suggests buying local tech to avoid infosec worries China’s Ministry of State Security has spent the week warning of backdoored devices on land and at sea.…

Copyright © 2026 Lugapel