Blog
Techie claims Trump Mobile website was leaking thousands of people’s data
Customers' info potentially handed to anyone who could send an HTTP request
Cisco used AI to write security incident reports, with mixed results
You’ll need a lot of detailed prompts to get solid output - and even then it may have errors and typos
Dems slam Trump for making cybersecurity hold out the tin cup while splurging on ballroom and Jan. 6 ‘slush fund’
'Budgets are moral documents,' Rep. Delia Ramirez said
Threat hunters find Google API keys still usable 23 minutes after deletion
Plenty of time for cyber crims to grab data or hit you with a giant bill
HackerOne takes an axe to its bug bounty rewards
Critical flaw payouts slashed by more than 75%
Attackers spill plaintext passwords of 46k Myspace93 users after 2021 breach
Leakage blamed on treacherous friends exposed unencrypted credentials, email addresses
Cisco serves up yet another perfect 10 bug with Secure Workload admin flaw
Switchzilla says attackers could access sensitive data and make configuration changes across tenant boundaries through vulnerable internal APIs
Microsoft storms RAMPART, adds Clarity to agentic AI safety
Redmond open sources two tools for building and maintaining safer agents
Zombie user account let hackers control the city’s water
Failing to disable a former employee’s account was a huge mistake
Even Claude agrees: hole in its sandbox was real and dangerous
Another day, another AI bug silently fixed with no CVE and no public disclosure