Under-the-hood AI changes and efficiency improvements at the OS layer across Apple’s platforms are certainly the highlights at WWDC 2026. But there have also been significant changes IT admins will need to prepare for, particularly around Declarative Device Management (DDM). The Intel age is over Apple warned us this was coming, but macOS 27 will not support Intel at all.…
Category: privacy
AI, Global Security News, privacy, Venture
How to opt out of Google’s new AI training default
Heads-up, my fellow Android-appreciating animals: Google’s in the midst of rolling out a subtle change to its privacy settings that’s well worth your while to notice. The change includes a new clause that says the company can use images, files, video, and audio from your interactions with Google Lens, Search, and Gemini Live to train…
AI, Endpoint, Global Security News, Government & Policy, Network Security, privacy, Risk Management
Aged-domain acquisition: The tradecraft phishing operators are using to bypass your mail filter’s reputation score
I’ve spent the past two years working on incident response and threat intelligence, and the pattern I’m about to describe is one I keep seeing show up in cases that should have been caught at the email gateway. The kit families change. The lure templates change. The constant is that phishing-as-a-service operators are buying aged…
Apps, Global Security News, privacy
Making the cloud prove it followed your privacy wishes
Making companies that store personal data in cloud key-value databases handle deletion requests by running the operation and confirming the job is complete. The people making those requests and the regulators overseeing them have had limited means to confirm the data is gone or that the record of its removal is genuine. GDPRuler, a middleware…
AI, Global Security News, privacy, Risk Management
Welcome to AI’s creepy era
For the past few days, I’ve been immersed in Google’s latest vision of the future — an AI-infused dashboard that taps into info from all of your Google app activity and then uses that data to cook up a series of daily “stories” designed to “connect you with what matters.” And — believe me, I…
AI, Global Security News, privacy
Apple brings Private Cloud Compute to third-party data centers
Apple is bringing its Private Cloud Compute (PCC) platform to Google Cloud, expanding the infrastructure behind Apple Intelligence to third-party data centers. Introduced in 2024, PCC provides cloud-based processing for AI workloads that exceed the capabilities of on-device models while maintaining Apple’s security and privacy guarantees. The system was originally built on Apple silicon and…
AI, Compliance, Global Security News, privacy
Plugable CEO: Local AI Creates MSP Opportunity
As businesses reassess the cost, privacy, and performance tradeoffs of cloud-based AI, Plugable CEO Lynn Smurthwaite-Murphy sees local AI becoming a more urgent channel opportunity for IT resellers and MSPs. In an interview with Channel Insider, Smurthwaite-Murphy said AI adoption remains “all over the map” as companies experiment with cloud-based models, emerging open-source tools, and…
AI, china, Cybersecurity, Data Breaches, Europe, Exploits, Global Security News, Government & Policy, privacy, Risk Management
UK move to filter photos and messages triggers encryption worries for CISOs
UK Prime Minister Keir Starmer’s speech on Monday insisting that tech companies create device controls to somehow block children from viewing or creating sexually explicit imagery has raised alarms among CISOs, who worry that the same technology could undermine enterprise security. Starmer gave tech firms three months to create and implement such restrictions voluntarily, at…
AI, china, Cybersecurity, Data Breaches, Europe, Exploits, Global Security News, Government & Policy, privacy, Risk Management
UK move to filter photos and messages triggers encryption worries for CISOs
UK Prime Minister Keir Starmer’s speech on Monday insisting that tech companies create device controls to somehow block children from viewing or creating sexually explicit imagery has raised alarms among CISOs, who worry that the same technology could undermine enterprise security. Starmer gave tech firms three months to create and implement such restrictions voluntarily, at…
AI, Europe, Global Security News, privacy
Apple’s AI plans show promise, but proof of success still to come — analysts
WWDC26 felt like a defining platform moment. Apple is no longer simply promising that AI will arrive eventually; it is arguing that Apple Intelligence and Siri AI should become central to the future of its ecosystem. If that works, the company will have turned AI from a perceived weakness into a new reason to stay inside Apple’s…
Global Security News, privacy
Massachusetts lawmakers pass consumer data privacy bill
The Massachusetts House unanimously passed the Consumer Data Privacy Act, a bill that will give residents rights to access and delete their data held by large tech firms.
AI, china, Europe, Global Security News, privacy
WWDC: Did Apple make the AI grade this year?
There were several key components to emerge from Apple’s developer conference Monday as the company sought to reassure users (and investors) that it has met the existential challenge represented by AI. Aside from a serious focus on Siri AI and embedded Apple Intelligence across its varied platforms, officials also hailed a slew of performance/usability tweaks,…
AI, APAC, Exploits, Global Security News, privacy
WWDC: Apple’s AI moment of truth arrives
Everybody is watching to see what comes from Apple at its annual Worldwide Developer Conference (WWDC) today. There’s a great deal at stake, as when it comes to artificial intelligence (AI) today’s event represents an existentially important moment for the company. Apple execs absolutely must convince developers, industry watchers, users — all of us — that it…
AI, china, Cybersecurity, Data Breaches, Exploits, Global Security News, Government & Policy, malware, Network Security, privacy, Risk Management, Russia
Security Affairs newsletter Round 580 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. U.S. CISA adds SolarWinds Serv-U flaw to its Known Exploited Vulnerabilities catalog Report: Anthropic Deploys Engineers…
Cybersecurity, Data Breaches, Global Security News, privacy
How IT Professionals Can Monitor Remote Employees’ PCs Without Violating Privacy Laws
Remote working is here to stay and may very well become the new standard for employees’ work. But this leaves IT professionals in a bit of a quandary- how can they monitor the activities of their remote employees without breaching privacy protection laws? Let’s take a look at how to best go about it. With…
AI, Exploits, Global Security News, Network Security, privacy
Claude Opus Found a Four-Year-Old Hole in Zcash’s Privacy Layer. Nobody Knows If Someone Already Used It.
Claude Opus 4.8 helped uncover a four-year-old critical flaw in Zcash that could have enabled undetectable creation of counterfeit coins. On May 29, the security researcher Taylor Hornby found a critical vulnerability in Zcash Orchard privacy pool using Claude Opus 4.8. The Zcash team hired Hornby specifically to look for this kind of issue. He…
AI, Apps, Cloud Security, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Government & Policy, malware, Network Security, privacy, Risk Management
AI Threats, Zero-Days, and Data Breaches Define This Week of June 2026 in Cybersecurity
Major Threats & Vulnerabilities Zero-Day Exploits and Critical Vulnerabilities A newly discovered Comodo zero-day vulnerability can crash Windows systems through a malformed IPv6 packet. Researcher Marcus Hutchins identified the flaw, but Comodo has yet to issue a patch. Users are advised to filter suspicious IPv6 headers and test incident response plans. Google patched an Android…
AI, Global Security News, Government & Policy, privacy, Risk Management
Why Apple may be winning again
As we lean into WWDC, three strategically brilliant Apple moves have been exposed in the last couple of weeks, two of which will have immense consequences in the coming year, while one sets the scene for essential future growth. In each case, Apple’s leadership has found counter-intuitive gambits that actually secure the company’s future. Let’s start…
AI, Cybersecurity, Data Breaches, Global Security News, malware, Network Security, privacy, Risk Management
Leader in Malware Analysis: ANY.RUN Named Top Vendor in G2 Summer 2026 Awards
We are proud to announce that ANY.RUN has earned the title of Momentum Leader and ranked #1 in the Relationship Index in the latest G2 Summer Reports. Reflecting real security teams’ actual experience, these rankings once again prove how critical ANY.RUN’s solutions are for daily SOC operations in modern enterprises. Why ANY.RUN’s Momentum Leader Title Matters for Your Team G2 awards…
AI, Apps, Global Security News, malware, privacy
16 ways to speed up Windows 11
Windows 11 does a lot under the hood to speed up a PC’s performance, but PCs tend to slow down over time as they accumulate apps, files, drivers, and other detritus. Even zippy new Windows 11 devices can be sped up — and protected against future slowdowns — with a few minor system tweaks. It’s simple to…
AI, Endpoint, Exploits, Global Security News, Network Security, privacy, Risk Management
Commvault Provides Resilience Approach for Frontier AI
Commvault, a data protection and cyber resilience organization, has made recommendations to help organizations stay resilient in the age of frontier AI. Frontier models create new security risks while helping address them As frontier models, hosted in the cloud, excel at identifying vulnerabilities at speed and compressing exploitation timelines, they also present exploitable threats to…
AI, Cybersecurity, Exploits, Global Security News, Network Security, privacy
Deepfakes, AI Scams, and the Future of Social Media Safety
The rapid advancement of generative artificial intelligence (AI) has intensified challenges related to deepfakes, impersonation scams, and manipulated content across social media platforms. As synthetic media becomes easier to create and harder to detect, companies are being forced to adopt more sophisticated trust and safety strategies. In an email interview with eSecurityPlanet, Alexandra Ryabova, COO…
AI, Global Security News, privacy, Risk Management
What Safari reveals about Apple’s AI strategy ahead of WWDC
Apple’s latest Safari privacy campaign is more than pre-WWDC marketing. It is an early signal of how the company plans to frame artificial intelligence (AI): as something that only works if users trust the platform behind it. The week before WWDC is often significant, as Apple tends to make announcements it simply can’t fit into the…
AI, Apps, Endpoint, Global Security News, privacy
Customize federated sign-in with new Amazon Cognito Lambda trigger
You can use Amazon Cognito user pools to add sign-up and sign-in functionality to your web and mobile applications. You can authenticate users directly with Amazon Cognito managed accounts using passwords, passwordless flows, or custom authentication flows, or let users federate in through external identity providers (IdP) using SAML, OpenID Connect, or social providers such…
AI, Apps, Cloud Security, Compliance, Endpoint, Global Security News, Network Security, privacy, Risk Management
Why Local AI Agents Are Creating a New Governance Blind Spot
Artificial intelligence (AI) governance efforts have largely focused on cloud-based tools such as ChatGPT, Microsoft Copilot, and other software-as-a-service (SaaS) platforms. According to Josh McCarthy, Chief Product Officer at Arms Cyber, organizations may be overlooking a much larger risk: autonomous AI agents running locally on employee endpoints. As AI capabilities increasingly move from cloud environments…
AI, Apps, Exploits, Global Security News, malware, Network Security, privacy, Risk Management
Hugging Face Transformers RCE flaw enables stealthy compromise via AI model configs
A high severity vulnerability in Hugging Face Transformers enables attackers to compromise systems that use the popular Python library to test and run AI models. The flaw impacts library versions that continue to be actively downloaded and comes at a time when attackers are increasingly targeting the AI supply chain, including through malicious models hosted…
AI, Cybersecurity, Exploits, Global Security News, malware, privacy, Risk Management
Q1 2026 Cyber Risk Report: Insights from 2.1 Million Malware and Phishing Investigations
Based on 2,101,483 malware and phishing investigations from Q1 2026, ANY.RUN‘s Cyber Risk report provides a real-world view of modern attack trends. It covers trending malware families, TTPs, and other technical observations, while also delivering executive insights CISOs and SOC teams can use to connect attacker behavior to business risk. Combining data-backed malware trends with strategic guidance for security leaders, the report reveals critical gaps in detection, response, and visibility that directly impact business resilience, and outlines solutions organizations can use…
AI, Apps, Compliance, Endpoint, Global Security News, privacy, Risk Management
Google brings local AI agents to laptops with Gemma 4 12B
Google has released new tools that allow developers to run agentic AI workflows locally using Gemma 4 12B, a 12-billion-parameter model from Google DeepMind. In a blog post, the company said the model, combined with the Google AI Edge stack, can be used to build and test applications on everyday machines. The model-runtime combination supports…
AI, Apps, Endpoint, Global Security News, privacy
RTX Spark may split the AI PC market into mainstream laptops and premium workstations
Nvidia’s RTX Spark could give PC makers a new high-end category, built around machines that run more demanding AI workloads locally rather than in the cloud. The chipmaker and Microsoft said RTX Spark Windows PCs will be built for personal AI agents and heavier local AI workloads, from AI development to engineering and content creation.…
AI, Cloud Security, Compliance, Cybersecurity, Global Security News, privacy, Risk Management
Spring 2026 SOC 1, 2, and 3 reports are now available with 188 services in scope
Amazon Web Services (AWS) is pleased to announce that the Spring 2026 System and Organization Controls (SOC) 1, 2, and 3 reports are now available. The reports cover 188 services over the 12-month period from April 1, 2025–March 31, 2026, giving customers a full year of assurance. These reports demonstrate our continuous commitment to adhering…
AI, Apps, Global Security News, privacy
WWDC: What can developers expect?
Apple will open the doors to developers at its Worldwide Developer Conference (WWDC) next week. Beyond a big push on AI and new OSes focused on stability and performance, what should developers expect? Mostly it’s about new APIs, Foundation Models, and App Intents; here’s what I’ve been able to figure out so far. Foundation Models Apple has…
AI, Data Breaches, Global Security News, Government & Policy, Network Security, privacy, Risk Management
1,000 Data Breaches Later, the Disclosure Lag is Worse Than Ever
Today, I loaded the 1,000th data breach into Have I Been Pwned. Reflecting on that milestone number, I pondered how to mark the occasion in writing, and what immediately came to mind was a very simple question: why is it still needed? Especially considering the emergence of privacy regulations such as GDPR and CCPA in…
AI, Apps, Exploits, Global Security News, Government & Policy, Network Security, privacy, Risk Management
The Pentagon Finally Admits That Location Data Is a Battlefield Problem
The Pentagon confirmed adversaries are using commercial location data to track U.S. troops, exposing risks tied to smartphones and ad-tech networks. For years, security researchers, privacy advocates, and intelligence analysts have been warning about the same thing: smartphone location data isn’t just an advertising product. It’s surveillance infrastructure that anyone with enough money can access.…
AI, Global Security News, privacy, Risk Management
145 AI laws passed in 2025 and privacy teams aren’t catching a break
145 AI-related laws were enacted by state legislatures in 2025, and more than 1,000 additional bills were introduced or revised, according to DataGrail’s Privacy and AI Trends Report 2026. Average cost of manual data subject request management (Source: DataGrail) Shadow AI risks Of the 2,400 popular business software providers that advertised AI capabilities, 63.6% did…
AI, Cybersecurity, Data Breaches, Europe, Exploits, Global Security News, Government & Policy, malware, Network Security, Politics, privacy, Risk Management, Russia
Security Affairs newsletter Round 579 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. ShinyHunters Leaks Charter Communications Data, Potentially Impacting 5 Million Customers Signal Phishing Campaign Targets Journalists and…
AI, Endpoint, Global Security News, privacy, Risk Management
Dell Experts Discuss the Future of Deskside AI
During Dell Technologies World 2026, much of the conversation centered on AI use amid the rapid emergence of agentic AI. In a conversation with Marc Hammons, Senior Distinguished Engineer at Dell Technologies, and Charlie Walker, Head of Dell Pro Precision at Dell Technologies, both emphasized how unexpectedly strong the demand and experimentation around AI have…
AI, APAC, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, privacy, Risk Management
AI Threats, Data Breaches, and Supply Chain Risks Define This Week of May 2026 in Cybersecurity
Major Threats & Vulnerabilities Data Breaches and Credential Exposures The hacking group ShinyHunters claims responsibility for stealing over 42 million customer records from Charter Communications. The alleged breach, conducted through social engineering and Microsoft Entra compromise, is under investigation. Organizations are urged to review MFA enforcement and monitor SaaS environments for suspicious activity. Read more…
Cybersecurity, Global Security News, privacy
Common Privacy Mistakes That Expose Your Real IP Address
What mistakes most often expose a user’s real IP address and why a VPN alone is not always enough for privacy protection. Why Your IP Address Matters for Online Privacy Online privacy is no longer a topic only for cybersecurity specialists. Today, marketers, researchers, automation teams, online businesses, and regular users all face data protection…
AI, Apps, Endpoint, Exploits, Global Security News, malware, Network Security, privacy, Risk Management
How to protect Windows 10 and 11 PCs from ransomware
CryptoLocker. WannaCry. DarkSide. Conti. MedusaLocker. Qilin. The ransomware threat has exploded over the past decade, and it isn’t going away anytime soon; the news brings constant reports of new waves of this pernicious type of malware washing across the world. Ransomware gained in popularity in large part because of the immediate financial payoff for attackers:…
AI, Global Security News, malware, privacy
$11 billion reasons Apple’s App Store tax is worth paying
Apple publishes its App Store fraud prevention report every year,. And when it does, the company presses the point that its curated system brings much value to developers and customers, including highly effective protection against fraud. It says it prevented more than $2.2 billion in potentially fraudulent transactions in 2025 alone. A tax worth paying The company said…
AI, Global Security News, privacy
Stop buying Motorola Android phones
Over the past decade, there’s something I’ve hinted at, mentioned in passing as a part of broader discussions, and told more people than I can count privately via email and other one-on-one conversations. And now, as the writer of the internet’s longest-standing Android column and newsletter — a fancy way of saying someone who is…
AI, Global Security News, Network Security, privacy
Ketch brings multi-agent AI orchestration to enterprise privacy programs
Ketch has unveiled its vision for agentic privacy with the Ketch Agent Network, a multi-agent orchestration layer for enterprise privacy programs. The platform is designed to continuously reason across legal obligations, internal policies, and operational realities within a unified AI-driven system. Privacy teams today are accountable for more than ever: global regulations, AI governance mandates,…
AI, Apps, Compliance, Exploits, Global Security News, Government & Policy, Network Security, privacy, Risk Management
Another IT governance headache: AI-enabled sanction evasion
Over the next three to five years, both governments and the private sector will need to rapidly adapt identification and mitigation protocols as adversaries move from AI-assisted to AI-enabled sanctions evasion and proliferation financing (PF), a new research paper warns. The report, Algorithms of Evasion: The Rise of AI-Enabled Proliferation Financing, from the Royal United…
AI, Apps, Compliance, Exploits, Global Security News, Government & Policy, Network Security, privacy, Risk Management
Another IT governance headache: AI-enabled sanction evasion
Over the next three to five years, both governments and the private sector will need to rapidly adapt identification and mitigation protocols as adversaries move from AI-assisted to AI-enabled sanctions evasion and proliferation financing (PF), a new research paper warns. The report, Algorithms of Evasion: The Rise of AI-Enabled Proliferation Financing, from the Royal United…
AI, Apps, Compliance, Data Breaches, Endpoint, Global Security News, Network Security, privacy, Risk Management
6 Best Identity & Access Management (IAM) Software Solutions in 2026
This guide is for IT leaders, security teams, and identity administrators looking to improve access control and secure distributed workforces in 2026. It covers the best identity and access management (IAM) software solutions and the key features organizations should evaluate when choosing the right platform for cloud, SaaS, and remote access security. Key Takeaways of…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security, privacy, Risk Management
The 6 Best Email Security Software & Solutions in 2026 (Compared and Reviewed)
This guide is for IT leaders, security teams, and business decision-makers looking to strengthen email protection against phishing, malware, and business email compromise attacks. It covers the best email security software solutions in 2026, along with the key features, pricing considerations, and deployment factors to evaluate before choosing a platform. Key Takeaways for Email Security…
AI, Europe, Global Security News, Network Security, privacy
Apple’s iPhone satellite ambition goes beyond rescuing hikers
Apple has spent billions of dollars to develop satellite connectivity for iPhone; I very much doubt it did so solely to rescue stranded hikers. The company will most certainly have had a bigger prize in its sights when it first began working with GlobalStar (now owned by Amazon). The most logical reason to invest in satellite…
Global Security News, privacy, Risk Management
What to consider before asking an AI chatbot for health advice
Using chatbots for medical advice could elicit hallucinations and even expose you to security and privacy risks. Here’s what’s at stake and how to stay safe.
AI, Europe, Global Security News, Government & Policy, privacy, Risk Management
Dutch Government just said no to an American firm buying the keys to their digital State
The Dutch government blocked Kyndryl’s €100M bid for Solvinity, citing national security concerns over critical digital infrastructure. Dutch Government told Kyndryl it can’t buy Solvinity. That sentence doesn’t sound dramatic, but what it means is this: a European government just blocked an American IT company from acquiring the firm that runs DigiD, the platform Dutch…
Global Security News, privacy
Franklin Access adds three-layer security system to Wi-Fi routers
Franklin Access has launched a three-layer security system integrated into its Wi-Fi routers, delivering enterprise-grade protection for consumers and small businesses. The system runs automatically in the background, blocking millions of malicious websites in real time to protect families, children, seniors, and businesses from online threats. Franklin’s Wi-Fi routers include advanced security protocols and privacy…
AI, Apps, Cloud Security, Compliance, Cybersecurity, Data Breaches, Data Security, Global Security News, Network Security, privacy, Risk Management
DSPM buyer’s guide: Top 10 data security posture management tools
Data security posture management (DSPM) explained Data security posture management (DSPM) tools help security teams examine their entire data environment to find shadow data, reducing the risk of data loss. Tracking down sensitive data across both cloud and on-premises systems can be vexing. Each environment presents its own challenges. Given the dynamic and ephemeral nature…
AI, APAC, Apps, Compliance, Global Security News, Network Security, privacy, Risk Management
Top 6 UCaaS Providers for Businesses in 2026
Unified Communications as a Service (UCaaS) is essential for modern businesses looking to stay connected in today’s fast-moving work environment. By combining video conferencing, VoIP, messaging, and collaboration tools into a single cloud-based platform, UCaaS helps teams communicate and collaborate in real time from anywhere. As remote and hybrid work continue to evolve in 2026,…
AI, china, Compliance, Global Security News, privacy, Risk Management, Russia
The Hidden Ransomware Economy Running on Exposed Databases
A 5-year study on the Ransomware Economy found that 30,515 exposed databases were hit by ransom attacks, causing massive damage despite victims never paying. Database extortion doesn’t look like the ransomware stories that usually grab headlines. There’s no slick branding, no leak-site countdown, no gang posting memes on Telegram. In most cases, there’s just a…
AI, Cybersecurity, Endpoint, Global Security News, Government & Policy, malware, Network Security, privacy, Risk Management
Major Cyber Attacks in May 2026: Fake Invitations, Agent Tesla, BlobPhish, and More
May 2026 showed how fast routine business activity can turn into real security exposure. ANY.RUN observed phishing campaigns, fileless malware delivery, credential theft, OTP interception, and remote access abuse targeting organizations across industries. From fake invitations and banking portals to compromised B2B websites and Word Online lures, the month’s attacks had one thing in common: they were built…
AI, Data Breaches, Global Security News, privacy, Risk Management
340 Million OnlyFans Profiles Allegedly Rebuilt from Leaks
A hacker is selling a 340M-strong OnlyFans-linked dataset built by correlating old breaches and public data, not by hacking OnlyFans directly. A threat actor is adverertising a purported database containing data of 340 million OnlyFans users, but the available evidence points to something less dramatic than a direct breach. According to HackRead, which reported the…
AI, Global Security News, privacy, Risk Management
Turns out the C-suite loves shadow AI
Senior decision-makers are the heaviest users of unapproved AI tools, and they continue using them despite being aware of the security and privacy risks linked to shadow AI, according to TrustedTech’s Shadow AI in the Workplace report. The study found that 65% of decision-makers use shadow AI, compared with 31% of employees below decision-maker level.…
AI, Exploits, Global Security News, privacy
Google leaks details for Chromium bug that can turn browsers into bots
Chromium — the open-source browser that underpins Google Chrome, Microsoft Edge, and Opera, among others — contains an unpatched vulnerability that attackers can exploit to execute JavaScript code persistently across browser restarts. As a result, the flaw can be used to hijack users’ browsers for distributed denial-of-service attacks, run crypto miners, and more. The vulnerability…
AI, Compliance, Cybersecurity, Global Security News, Network Security, privacy, Risk Management
Data Sanitization Challenges Are Increasing in the AI Era
Data sanitization has long played an important role in protecting sensitive information, but growing data volumes and stricter compliance requirements are making secure end-of-life data management more critical than ever. The 2026 State of Data Sanitization Report by Blancco highlights growing concerns among organizations regarding data privacy, regulatory pressure, and end-of-life device management. The report…
AI, Europe, Global Security News, Government & Policy, privacy, Russia
Police take down VPN service (this time with a good reason)
European authorities have cracked down on a VPN that has been used for various criminal activities. The operation, led by investigators in France and the Netherlands with help from Europol and Eurojust, has dismantled First VPN, a service that has been heavily promoted within Russia as a way of evading law enforcement. Criminals used it…
AI, Europe, Global Security News, Government & Policy, privacy, Russia
Police take down VPN service (this time with a good reason)
European authorities have cracked down on a VPN that has been used for various criminal activities. The operation, led by investigators in France and the Netherlands with help from Europol and Eurojust, has dismantled First VPN, a service that has been heavily promoted within Russia as a way of evading law enforcement. Criminals used it…
AI, APAC, china, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security, privacy, Risk Management, Russia
AI-Driven Threats, Critical Vulnerabilities, and Supply Chain Breaches Define the Week in May 2026
Major Threats & Vulnerabilities AI-Powered Cyberattacks and Exploits The 2026 Verizon DBIR revealed that vulnerability exploitation has surpassed credential abuse as the leading breach vector, accounting for 31% of incidents. The report highlights how generative AI is accelerating attack automation and expanding third-party risk exposure, particularly among SMBs facing ransomware threats. Microsoft Defender vulnerabilities are…
AI, Compliance, Global Security News, Network Security, privacy, Risk Management
AWS KY3P report now available for third-party supplier due diligence
We’re excited to announce that Amazon Web Services (AWS) has completed the S&P Global Know Your Third Party (KY3P) assessment of its security posture. This assessment demonstrates our continued commitment to meet the heightened expectations of cloud service providers. Customers can now use the AWS KY3P assessment to reduce their supplier due diligence burden. KY3P,…
AI, Europe, Global Security News, Network Security, privacy, Russia
Global law enforcement operation takes First VPN offline
Police seized First VPN in a global crackdown, exposed its cybercrime users, and shut down infrastructure tied to ransomware and data theft. A major international law enforcement operation has taken First VPN offline, a service that had become a quiet staple for ransomware crews, data thieves, and other cybercriminals trying to hide in plain sight. “The coordinated…
AI, APAC, Global Security News, privacy
Do Apple’s accessibility efforts point at its AI plans?
You can usually measure a society by the way it treats its most vulnerable populations, and technology often can help people live better, more autonomous lives. Apple firmly believes that, and this year’s raft of accessibility announcements introduced to mark Global Accessibility Awareness Day shine a light on that belief. The company has won a string of awards…
AI, Global Security News, privacy
Microsoft refreshes Surface line with biz-friendly features – and a high price tag
Microsoft this week refreshed its Surface for Business range of devices, adding features designed to appeal to enterprises. But high prices for the devices might be hard for IT buyers to swallow. Microsoft announced a new Surface Pro for Business on Tuesday, alongside two variants of its Surface Laptop for Business devices – a premium…
AI, Apps, Compliance, Cybersecurity, Exploits, Global Security News, malware, Network Security, privacy, Risk Management
AI becoming an SOC imperative for curtailing emerging cyber threats
The cybersecurity profession is on the verge of a sea change, and security pros must begin to master AI tools to combat emerging threats by building more autonomous, real-time protections. Expert panelists at a recent DTX conference session in Manchester, titled “Bot vs Bot: Surviving the Era of Autonomous Cyber Warfare,” highlighted how bringing AI…
AI, Global Security News, privacy
Discord adds end-to-end encryption to voice and video calls by default
Discord now enables end-to-end encryption by default for all voice and video calls, making conversations inaccessible even to the platform itself. No announcement fanfare, no opt-in required, no settings to dig through. Discord flipped a switch on Monday and end-to-end encryption is now the default for every voice and video call on the platform. If…
AI, Apps, Global Security News, privacy
Product showcase: Bitdefender Mobile Security for iOS protects privacy where scams begin
Bitdefender Mobile Security for iOS is a security and privacy application for iPhone and iPad that helps protect against phishing attempts, online scams, unsafe websites, and account exposure. I have used Bitdefender Mobile Security for iOS for the last two years. It was easy to install, easy to use, and I have not noticed any…
AI, Global Security News, privacy
Beth Tschida takes over at Jamf as AI transforms Apple in the enterprise
Jamf has a new CEO: former CTO Beth Tschida. She succeeds previous CEO John Strosahl, who himself replaced Dean Hager on his retirement. Tschida has served as interim CEO since March. Jamf-using IT pros should be pleased. Tschida is an engineer who joined the company in 2018 as senior vice president, engineering and became CTO four years…
AI, Endpoint, Global Security News, privacy, Risk Management
Jamf Elevates Former CTO Beth Tschida to CEO Role
Jamf has appointed Beth Tschida as chief executive officer, naming its former chief technology officer to lead the Apple device management and security company as it begins its next chapter under private ownership. Tschida’s appointment is effective immediately. She had served as interim CEO since March 2026 and previously spent eight years as Jamf’s CTO,…
AI, Apps, Compliance, Global Security News, privacy, Risk Management
TrustedTech: Executives Drive Shadow AI Risk in Enterprises
TrustedTech has released new research indicating that senior leaders are among the biggest sources of shadow AI risk within organizations, with executives using unapproved AI tools at significantly higher rates than lower-level employees. The Irvine, California-based Microsoft cloud solutions and IT modernization provider said its global and U.S. data points to a growing gap between…
AI, Global Security News, privacy
10 Top OSINT Tools Every Investigator Should Know in 2026
Modern OSINT platforms rely more on AI and automation, while older social tracking methods keep losing access due to privacy and API restrictions.
AI, Data Breaches, Endpoint, Exploits, Global Security News, Government & Policy, malware, privacy, Risk Management
TeamPCP Supply Chain Campaign: Activity Through 2026-05-17, (Mon, May 18th)
Since the last update, the TeamPCP supply chain campaign produced its loudest stretch since the March Trivy disclosure: an officially confirmed Checkmarx Jenkins plugin compromise and a new self-spreading Mini Shai-Hulud worm across npm and PyPI. Bottom line up front Two TeamPCP events broke within 48 hours of each other and doubled attention on the campaign.…
AI, Cloud Security, Compliance, Data Security, Global Security News, Network Security, privacy, Risk Management
Secure, Fast, Reliable: The Best Cloud Storage Providers for Businesses in 2026
This guide is for IT leaders, business owners, and operations teams looking to improve data security, collaboration, and file management in 2026. It covers the best cloud storage providers for businesses and the key features to consider when selecting a secure, scalable, and reliable storage solution. Key Points of Our 2026 Cloud Storage Provider Evaluation…
AI, APAC, Apps, Compliance, Endpoint, Global Security News, Network Security, privacy, Risk Management
The 6 Best Enterprise Password Managers You’ll Actually Trust in 2026
This guide is for IT leaders, security teams, and business decision-makers looking to improve credential security and reduce password-related risks in 2026. It covers the best enterprise password managers, their standout features, and the key factors to evaluate when choosing the right solution for your organization. Key Points About Enterprise Password Managers in 2026 Enterprise…
AI, Compliance, Cybersecurity, Global Security News, malware, privacy, Risk Management
ANY.RUN Turns 10: Special Offers for Stronger Security Operations
Ten years in cybersecurity is a long journey. Threats have changed, attacks have become harder to spot, and security teams now need answers faster than ever. ANY.RUN has grown with those teams. What started as an interactive sandbox is now a trusted company with threat analysis and intelligence solution used by 15,000+ organizations, 600,000 security professionals, and teams at Fortune…
AI, Cloud Security, Global Security News, Network Security, privacy, Risk Management
AI coding is fueling a secrets-sprawl crisis few CISOs are containing
When Matt Schlicht built Moltbook, the social network where AI agents talk to one another, he didn’t write the code himself. He “just had a vision,” and vibe-coded it. The social network launched on Jan. 28, 2026, and within days, security researchers started to see serious security flaws. Experts at cloud security company Wiz and,…
AI, Compliance, Exploits, Global Security News, privacy, Risk Management
Here’s how the FTC plans to enforce the Take It Down Act
The Federal Trade Commission is set to begin enforcing a key provision of the Take Down Act on May 19, requiring websites and online services to remove nonconsensual deepfake media within 48 hours after a victim’s notice—or risk fines and FTC investigation. The law, passed by Congress last year, allowed law enforcement to immediately prosecute…
AI, Apps, Compliance, Data Breaches, Data Security, Endpoint, Global Security News, malware, Network Security, privacy, Risk Management
The AWS AI Security Framework: Securing AI with the right controls, at the right layers, at the right phases
TL;DR for busy executives The AWS AI Security Framework helps security leaders move fast and stay secure with AI. Security compounds from day 1 as workloads evolve from prototype to production to scale. Assess first. Request a no-cost SHIP engagement to baseline your posture and build a prioritized roadmap. Phase 1 – Foundational (zero to…
AI, Cybersecurity, Data Breaches, Endpoint, Global Security News, Network Security, privacy, Risk Management, Russia
The economics of ransomware 3.0
The moment every boardroom dreads There is a moment in almost every ransomware negotiation — usually around 36 hours, when legal, IT and the CFO are all in the same room — when someone says it out loud: “Let’s just see what the insurance covers.” That instinct, understandable as it is, has become one of…
AI, Europe, Global Security News, privacy, Risk Management
The trouble with emotion-reading AI
“If you can’t measure it, you can’t fix it.” That’s a common saying in business, and it tends to be true. But what if the thing you want to fix is your employees’ attitudes? The AI revolution makes it possible to measure emotions and mental states. So why not use it widely and fix what’s…
AI, Apps, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Government & Policy, malware, Network Security, privacy, Risk Management
The Massive Canvas Cyberattack That Allegedly Ended in a Secret Deal With Hackers
The cyberattacks targeting Instructure’s Canvas learning management system unfolded as at least two distinct but likely connected operational phases that exposed the fragility of browser-based SaaS trust models inside modern educational infrastructure. What began in late April as a suspected cloud-platform compromise involving large-scale data exfiltration evolved by early May into a far more aggressive…
AI, Apps, Compliance, Endpoint, Global Security News, Network Security, privacy, Risk Management
Automating post-quantum cryptography readiness using AWS Config
Migrating your TLS endpoints to Post-quantum cryptography (PQC) starts with understanding your current TLS endpoint inventory and posture. This post introduces the PQC Readiness Scanner — an automated tool that inventories your Application Load Balancer (ALB), Network Load Balancer (NLB), and Amazon API Gateway endpoints and continuously monitors their TLS configurations for PQC readiness. The…
AI, Global Security News, privacy
Apple’s App Store model for AI
Apple has a design for AI life. It hopes to build on the outstanding hardware performance its systems already provide to create a fantastic environment in which AI developers can thrive. If this plan sounds familiar it’s because it’s all about the App Store, and while it’s easy to expect Apple’s revenue share to change, the…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security, privacy, Risk Management
LATAM Under Siege: Agent Tesla’s 18-Month Credential Theft Campaign Against Chilean Enterprises
Credential theft malware rarely announces itself with ransomware-level noise. Instead, it operates like a silent siphon hidden inside everyday business workflows: invoices, payroll files, purchase orders, procurement requests. Agent Tesla campaigns are especially dangerous because they target the operational arteries of organizations, harvesting credentials that enable deeper compromise, business email compromise (BEC), financial fraud, cloud account takeover, and long-term…
AI, Compliance, Global Security News, Network Security, privacy, Risk Management
Nearly every enterprise is investing in AI, but only 5% say their data is ready
Nearly halfway into 2026, enterprises are beginning to see tangible returns on their AI investments. Yet many are discovering that scaling requires something far less glamorous than flashy frontier models and state-of-the-art benchmarking: Clean, interoperable, governed data. According to a new AI Momentum Survey from Dun & Bradstreet, 97% of organizations report active AI initiatives,…
AI, Apps, Compliance, Global Security News, privacy
PCI PIN and P2PE compliance packages for AWS Payment Cryptography are now available
Amazon Web Services (AWS) is pleased to announce the successful completion of Payment Card Industry Personal Identification Number (PCI PIN) and PCI Point-to-Point Encryption (PCI P2PE) assessments for the AWS Payment Cryptography service. This assessment expands the AWS Payment Cryptography compliance portfolio, with AWS now validated as a component provider for Key Management (KMCP) and…
AI, Apps, Cybersecurity, Exploits, Global Security News, malware, Network Security, privacy
LW ROUNDTABLE: Microsoft Edge normalizes credential exposure — security pros push back
By design. Two words that have done an awful lot of heavy lifting in the cybersecurity industry over the years. They tend to surface whenever a vendor wants to wave off a serious finding without fixing it. Related: The unending password problem Microsoft just deployed them again. This time in response to a Norwegian researcher…
AI, Global Security News, privacy, Risk Management
8 critical questions about the Googlebook, Android, and ChromeOS
Well, hell’s bells: It’s finally happening. After years of misguided rumors and off-base expectations — over a decade’s worth, even! — Google is actually now on the brink of combining Android and ChromeOS into a single superpowered platform for laptops and mobile devices alike. The company officially announced the advent of an entirely new type…
AI, Cybersecurity, Global Security News, Network Security, privacy, Risk Management
CISA’s AI SBOM guidance pushes software supply-chain oversight into new territory
The US Cybersecurity and Infrastructure Security Agency (CISA) and its G7 cyber agency partners have released a list of minimum elements for an AI software bill of materials, a move that could help CISOs assess the security and provenance of AI systems entering enterprise environments. The guidance extends traditional SBOM concepts into AI by calling…
AI, APAC, Cloud Security, Compliance, Cybersecurity, Endpoint, Global Security News, privacy, Risk Management
2026 CSO Award winners showcase business-enabling cyber innovation
The annual CSO Awards annually recognize security projects that demonstrate outstanding security leadership and business value. For this year’s program, CSO honors 64 security organizations whose hard work and innovative approaches have had a significant impact on how their enterprises navigate risks in an increasingly challenging cyber environment. These projects showcase the variety of strategies…
AI, Global Security News, privacy
Android Adds Intrusion Logging for Sophisticated Spyware Forensics
Google on Tuesday unveiled a new opt-in Android feature called Intrusion Logging for storing forensic logs to better analyze sophisticated spyware attacks. Intrusion Logging, available as part of Advanced Protection Mode, enables “persistent and privacy-preserving forensics logging to allow for investigation of devices in the event of a suspected compromise,” the company said. The feature,…
AI, Cybersecurity, Global Security News, Network Security, privacy
[GUEST DIARY] Tearing apart website fraud to see how it works., (Wed, May 13th)
[This is a Guest Diary by Joshua Nikolson, an ISC Intern and part of the SANS.edu Bachelor’s degree in Applied Cybersecurity (BACS) program.] Introduction One day at work, a friend messaged me, “How do you check a website to see if it’s legit?” This friend recently received a phishing text message from a “bank”,…
AI, Global Security News, privacy, Risk Management
Google and Amnesty International teamed up to make it harder for spyware vendors to hide
Google launched a feature for Android phones Tuesday for dedicated forensic logs about intrusions from sophisticated attacks like those by spyware vendors, in what design partners at Amnesty International hailed as an important first. The tech giant has been ramping up the new feature, Intrusion Logging, since last year, and has now begun rolling it…
Global Security News, privacy
Android 17 to expand banking scam call and privacy protections
Android 17, expected to roll out next month, will introduce several security and privacy features focused on device theft, threat detection, and banking scam calls. […]
AI, Apps, Endpoint, Global Security News, Network Security, privacy, Risk Management
Over 1 Million Baby Monitors and Security Cameras Exposed Through Meari Flaws
More than one million internet-connected baby monitors and security cameras were reportedly exposed through multiple vulnerabilities tied to Meari Technology. The flaws potentially allowed attackers to access sensitive images, device data, and real-time household activity from around the world. “What makes this story especially frustrating is that it highlights one of the hardest problems in…
Global Security News, privacy
General Motors to pay $12.75 million over driver data sales
General Motors has agreed to a $12.75 million settlement with California over allegations that it unlawfully sold drivers’ location and behavioral data to brokers, marking the largest penalty in the history of the state’s Consumer Privacy Act. Prosecutors say GM made approximately $20 million nationwide from the sales. “General Motors sold the data of California…
AI, Apps, Compliance, Cybersecurity, Data Security, Exploits, Global Security News, privacy, Risk Management
CISOs step into the AI spotlight
Serving in the military requires a precise, tactical mindset, and that’s exactly what Barry Hensley espoused during his 24 years in the US Army, where he rose to the rank of colonel. The military “is where you earn your stripes, showing your soldiers your willingness to jump into a foxhole and pick up a weapon,”…
Global Security News, privacy
GM agrees to $12.75M California settlement over sale of drivers’ data
California Attorney General Rob Bonta announced a proposed $12.75 million settlement agreement with General Motors (GM) over allegations that the company violated the California Consumer Privacy Act (CCPA). […]
AI, Exploits, Global Security News, Network Security, privacy
Apple Patches Everything, (Mon, May 11th)
Apple today released its typical feature update across it’s operating systems (iOS, iPadOS, macOS, tvOS, watchOS, vision OS). With this update, Apple patched 84 different vulnerabilities. Updates are available for the “26” series of operating systems, as well as for the previous “18” version of iOS/iPadOS, and two versions back for macOS (version 14 and…