After the CopyFail vulnerability gave root access from any user on almost all distributions last week, this week we’ve got DirtyFrag. This chains the vulnerability in CopyFail (xfrm-ESP) and ...

The new agent will enter public beta in the Firefly web app within weeks; anyone can join the waitlist now, and usage will draw from existing generative credit pools. Firefly's new controls add studio ...

Claude Opus 4.7 is Anthropic's newest flagship model, boasting a jump to 64.3% on SWE-bench Pro (a brutal test of fixing real-world software bugs), better vision for high-res images up to 3.75 ...

A prompt injection flaw in Google’s Antigravity IDE turns a file search tool into a remote code execution vector, bypassing Secure Mode protections. Security researchers have revealed a prompt ...

Trumpet blares, fading sounds of heartbeats and a ringing alarm clock. These aren’t sound effects for a movie — rather, for music projects created by fifth graders in Evanston/Skokie School District ...

Google is bringing Rust code to Pixel phones starting with the Pixel 10 as a security measure to prevent malicious attacks on the modem used inside Pixel 10 devices. This injection of Rust code is ...

How indirect prompt injection attacks on AI work - and 6 ways to shut them down ...

A new variant of the TrickMo Android banking malware, delivered in campaigns targeting users across Europe, introduces new commands and uses The Open Network (TON) for stealthy command-and-control ...

A security researcher, working with colleagues at Johns Hopkins University, opened a GitHub pull request, typed a malicious instruction into the PR title, and watched Anthropic’s Claude Code Security ...

Getting ready for your first Zepbound (tirzepatide) dose? Injecting the medication is easier than it looks. Before you begin, take your pen or vial out of the refrigerator, wash your hands, and check ...

Weekly cybersecurity recap covering zero-days, malware, phishing, supply chain attacks, cloud threats, AI security risks, and ...