Results for "security risks"
196 results found
Creative Sound Blaster Katana V2X Bluetooth flaw lets attackers hijack from 50 feet
A security researcher found Creative's Sound Blaster Katana V2X can be hijacked over Bluetooth from up to 50 feet away. The company reportedly refuses to label the vulnerability a cybersecurity risk.
Pentagon Knew of Phone Tracking Risk for Years but Failed to Act
US military knew cheap fixes could stop phone tracking exposing troops but failed to act; now adversaries use that data.
AI Code Vulnerabilities Outpace Current Security Tools
AI-generated code creates a surge in vulnerabilities. Current security tools produce too many alerts with poor context. Teams need smarter triage to bridge detection and remediation.
FIFA World Cup Broadcast Systems Exposed by Critical Security Flaw
A security researcher found a flaw in FIFA's internal systems that could have allowed hijacking of World Cup TV streams. The bug exposed OAuth misconfigurations across multiple platforms.
AI-Powered Threats Force Return to Identity Security Basics
As AI accelerates cyber threats, fundamental identity security practices like MFA and access controls become the frontline defense. Security experts argue mastering basics is the most effective countermeasure.
Government Cyber Defense Shifts to Continuous Threat Tracking
Federal agencies are moving away from periodic security scans toward continuous exposure management to counter rising cyberattacks. The approach aims to close vulnerabilities faster but raises new challenges for legacy systems.
AMOS Malware Emerges as Major Threat to macOS Users
A stealthy infostealer called AMOS is spreading on macOS through deceptive ads and social engineering. Security experts warn it marks a shift in mainstream malware targeting Apple devices.
Tiny Bank Transfer Exposes Critical Flaw in Banking AI Agents
A €0.01 transfer can trick banking AI agents into compromising security. Researchers show how a microtransaction becomes an attack vector.
Tampering Threats Emerge for Encrypted AI Reasoning Systems
Privacy-preserving AI models that process encrypted data may be vulnerable to undetectable manipulation, researchers warn. The finding challenges assumptions about security in confidential computing.
Developer Hijacks Chipotle AI Bot for Free Coding Assistance
A developer turned Chipotle's customer support chatbot into a coding assistant, exposing security flaws in corporate AI chatbots.
Exam Cheating Goes High-Tech as Smart Glasses and Hidden Earpieces Become Tools for Fraud
UK government warns that cheating using smart devices like glasses and earpieces is rising. Students risk losing all A-level grades. The threat extends beyond British schools.
AI-Driven Attacks Outpace Enterprise Patching Capabilities
Cyber attackers are exploiting vulnerabilities faster than organizations can patch them, with AI accelerating the window for defense. This shift demands a fundamental rethinking of security strategies.
Microsoft 365 Users Targeted by Sophisticated Password Reset Attacks
Hackers linked to Storm-2949 are exploiting password reset systems to break into Microsoft 365 accounts. The campaign uses multi-layered techniques to bypass security.
Inside the SolarWinds Breach: Hackers Had Full Access to Treasury Systems
New details reveal Russian-linked hackers infiltrated Treasury email systems far deeper than previously known. The supply chain attack compromised thousands of government and private networks, exposing critical security gaps.
New SSD Lets Users Wipe Data Remotely via Built-in 4G
Teamgroup’s latest SSD includes a 4G modem for wireless remote destruction. The feature lets owners erase data from anywhere, expanding security options for portable storage.
OpenAI Launches Initiative to Automate Bug Fixing for Open Source Projects
OpenAI's Daybreak program introduces Patch the Planet, an initiative using AI to help open source projects identify and patch vulnerabilities faster, addressing a critical gap in software supply chain security.
GitHub Breach Exposes Thousands of Internal Repositories After Employee Installs Malicious VS Code Extension
A GitHub employee installed a malicious VS Code extension leading to exposure of thousands of internal repositories.
Public Android Test Keys Expose 2021 Honda Civic Infotainment to USB Jailbreak
Software architect jailbreaks 2021 Honda Civic infotainment via USB using public Android test keys, enabling unauthorized apps and EvilValet attacks.
Quantum computing threatens to break current encryption sooner than expected
Quantum computers could crack today's encryption within a decade. Enterprises are not prepared.
After Mythos: The New Cyber Resilience Playbook
The Mythos Cybersecurity incident forces a shift from panic to proactive resilience. Organizations now prioritize calm preparedness over reactive defense.