Aggregator

Функция, созданная для удобства, открыла дорогу к чужим репозиториям.

Хакера он не заменил. Зато помогает фишингу, эксплойтам и вредоносному коду.

Группировка Handala превратилась из команды активистов в разведывательную сеть Ирана.

Кто взломал крупнейший чит-сервис для GTA V и зачем это было сделано.

Android is introducing fake call detection to help protect users from impersonation scams. The feature can detect and flag suspected spoofed calls when both parties use Phone by Google on Android 12 or later. It will roll out globally this month, starting with Pixel devices. Story of two calls from “Mom” (Source: Google) “Fake call detection helps protect you, your family and friends by identifying when a caller isn’t who they claim to be, giving … More →

The post Google adds a silent check to catch scammers posing as your contacts appeared first on Help Net Security.

Что делать тем, кто забронировал отель в Европе?

Workplace AI assistants have mostly waited for a prompt before doing anything. A user asks, the tool answers, and the exchange ends there. Microsoft is putting a different kind of agent inside its Office applications, one designed to keep operating in the background once a person stops paying attention. The company introduced Microsoft Scout, calling it the first entry in a category it labels Autopilots. What an Autopilot does Autopilots are always-on agents that run … More →

The post Microsoft Scout agent opens a new category of always-on Autopilots appeared first on Help Net Security.

Anthropic is expanding Project Glasswing, its cybersecurity initiative built around the Claude Mythos Preview model, by adding about 150 organizations following several weeks of work with its initial group of partners, security firms, open-source maintainers, and government agencies. Organizations joining the program must meet security requirements before gaining access, Anthropic noted. The expansion brings the program to organizations in more than 15 countries and includes sectors such as healthcare, energy, communications, technology, and other infrastructure … More →

The post Anthropic expands Project Glasswing to 150 organizations in more than 15 countries appeared first on Help Net Security.

Инженер Netflix открыл код Headroom для всех.

Чем дольше тянется установка исправлений, тем шире окно для атаки.

Critical Start has released SOC AI, a production-proven multi-agent framework powering its AI-led Managed Detection and Response (MDR). SOC AI coordinates ten specialized agents across the full alert investigation and response lifecycle, covering detection, triage, response, threat hunting, and continuous improvement. Each agent operates with a discrete function, a defined scope, and a complete audit trail on every action taken. After implementation of SOC AI, Investigation Agent enhanced thousands of investigations, compressing analyst time-to-investigate to … More →

The post Critical Start expands MDR capabilities with multi-agent AI system appeared first on Help Net Security.

То, что выглядело хаотичным набором символов, внезапно обрело голос.

MazeBolt has announced the launch of RADAR VectorAI, a new MazeBolt module that creates AI-generated DDoS attacks. As AI outpaces human response, enterprises need to have access to validated DDoS vulnerability data about both known and AI-generated attack vectors. Mythos has raised awareness of the cybersecurity risks created by AI. But while Mythos makes it faster and easier for attackers to identify exploitable gaps in software, it does not address DDoS vulnerabilities. VectorAI functions as … More →

The post MazeBolt brings AI-generated attack simulation to DDoS security testing appeared first on Help Net Security.

A security researcher has released exploit code for a Visual Studio Code (VS Code) zero-day vulnerability that allows attackers to steal GitHub authentication tokens by tricking users into clicking a link. [...]

Как работает уязвимость в Citrix, позволяющая читать содержимое чужой памяти без единого пароля.

Netskope has announced Netskope One AI Command Center, bringing together AI discovery, risk intelligence, and autonomous response capabilities in a single platform. As the latest expansion of the Netskope One AI Security suite, it helps security teams understand what AI is running in their environments, determine which risks require action, and accelerate response efforts. Among enterprises tracked by Netskope Threat Labs, the average enterprise organization saw the number of AI applications in use grow fivefold … More →

The post Netskope adds AI asset discovery and AISecOps agent to AI security portfolio appeared first on Help Net Security.

Чем теплее диалог, тем дороже может обойтись откровенность.