“Congress should end the many years of overreach by the U.S. Intelligence Community by requiring warrants for the collection or capture of any communication involving an American,” EFF’s India McKinney told @Militarydotcom. www.military.com/daily-news/...
White House Launches Elite Tech Force to Revolutionize Government Technology
The White House has unveiled a bold initiative to transform the technological landscape of federal agencies by recruiting a specialized corps of engineers and technologists. Dubbed the “US Tech Force,” this program aims…
Palo Alto Report 2025 Warns of Rising Cyber Threats: North Korea, AI, and Cloud Breaches Surge
The latest Palo Alto Global Incident Response Report 2025 paints a stark picture of the evolving cybersecurity landscape. Organizations worldwide are facing an unprecedented wave of attacks, driven by…
Here's a fun thing I just learned: If you're a magazine or catalog or other bulk mailer who is willing to add AI-generated content to your mailing, USPS will reward you with a 5% discount—potentially many thousands of dollars!
"The fact that we don't even debate gun control. We don't even debate AI. We don't even debate the algorithms. These are kind of important things for the future of the country."
Curious what it takes to build an AI‑centric app? #dotNETRocks discusses YakShaver—a tool that speeds issue reporting using LLMs + Model Context Protocol servers to pipe context into bug reports and GitHub issues, with clear guardrails and accountability. Listen in: msft.it/63326tg7oY
There was no discussion on how requiring UK adults to submit identifying information to third-party age-gating companies is a security risk. There was no discussion on whether Ofcom's ability to issue Technology Notices to force companies to insert backdoors into their E2E encryption undermines […]
The Allen Institute of AI launches Bolmo 7B and Bolmo 1B, claiming they are "the first fully open byte-level language models", built on its Olmo 3 models (Emilia David/VentureBeat)
How researchers are teaching AI agents to ask for permission the right way
People are starting to hand more decisions to AI agents, from booking trips to sorting digital files. The idea sounds simple. Tell the agent what you want, then let it work through the steps. The hard part… #hackernews#news
New filing: "Encyclopaedia Britannica v. Perplexity AI (Britannica and Webster sue Perplexity AI)"
Doc #38: Reply Memorandum of Law in Support of Motion
As the rest of the world rushes to harness the power of artificial intelligence, militant groups also are experimenting with the technology, and the risks are expected to grow, national security experts and spy agencies warn.
Understand how to map the business ecosystem and design a system end-to-end before writing any code. Piero Paialunga outlines the practical habits that distinguish senior data scientists in this new article.
The latest update for #ManageEngine includes "Top 2025 Network and #Cybersecurity awards honor Firewall Analyzer" and "Top tips: Cyber hygiene habits you can build this week".
ICYMI, last call for The Digital Life this year. Recaps, reality checks, AI weirdness, security updates, and year end resources, plus a holiday stream invite and a little good news to close it out. Read 👉 vist.ly/4inz4
🎄✨
The latest update for #Vanta includes "New in Vanta | December 2025" and "CVE-2025-55182: The critical React RCE and the hidden risk in your supply chain".
The latest update for #getastra includes "How to Get #ISO27001 Certification: A Complete Guide" and "Top 12 ISO 27001 Certified Pentest Companies in India (2025, Expert Reviewed)".
The latest update for #ProtectoAI includes "Privacy First vs. Privacy Later: The Cost of Delaying in the #AI Era" and "#OWASP Agentic AI Top 10: Why It Matters and How Protecto Reduces Real-World Risk".
Struggling to stay organized and protect your privacy with your small business email?
Fastmail offers powerful search and private alias features to keep you focused and secure every day.
🚀 At just 19, Brendan Foody's Mercor transformed software engineer staffing, achieving $500M in annual revenue! "We’re not just automating, we’re revolutionizing the industry," says Brendan. Who's ready to embrace the future of work? #AI#TechInnovation#FutureOfWorkLINK
SASE Meets Edge AI: Why Security Will Be Decided in the First Millisecond
Enterprise security is shifting to the edge, where the first millisecond of every connection determines trust, performance, and risk. Traditional SASE cannot keep pace with encrypted traffic, global latency… #hackernews#news
One tech expert has warned smartphone owners that they should turn off three settings immediately, as you could be putting yourself in cybersecurity danger
The latest update for #AikidoSecurity includes "#AI#Pentesting in Action: A TL;DV Recap of Our Live Demo" and "#SAST in the IDE is now free: Moving SAST to where development actually happens".
Anubis Ransomware Strikes Markham Stouffville Hospital, Sensitive Patient Data Compromised
Healthcare cybersecurity is under siege yet again. In a troubling development, the Anubis ransomware group has reportedly targeted Markham Stouffville Hospital in Canada, encrypting critical personal and…
Implement gated attention in your own models with this practical guide. Sean Moran walks you through the core concepts from Qwen's research and includes a Python code example to get started.
New tool from MIT CSAIL creates realistic virtual kitchens and living rooms where simulated robots can interact with models of real-world objects, scaling up..... Read more
OpenAI's chief communications officer Hannah Wong will leave in January; Wong joined in 2021 and led PR during Sam Altman's brief ouster and return in 2023 (Maxwell Zeff/Wired)
Everyone in AI knows a bubble is forming. The fight now is over blame, exposure, and who can come out strongest on the other side. sources.news/p/no-one-kno...
Google Chrome is Going Agentic – Threat Wire The digital world moves at an astonishing pace, never more so than when vulnerabilities and threats emerge from the most unexpected places. A recent d...
The latest update for #Cloudflare includes "The 2025 Cloudflare Radar Year in Review: The rise of #AI, post-quantum, and record-breaking DDoS attacks".
The latest update for #SafeAeon includes "Ransomware Remediation Tactics That Help You Recover Fast" and "What Is #API Token Hijacking? Steps to Detect and Stop the Attack".
The latest update for #ObservoAI includes "Observo #AI Wins InfoWorld's 2025 Technology of the Year Award for #Observability" and "How AI-Native Security Data Pipelines Protect Privacy and Reduce Risk".
The latest update for #Nakivo includes "Microsoft Office 365 MFA Setup: What Admins Need to Know" and "Real-Time Data Replication: All You Need to Know".
The latest update for #CalComSoftware includes "#Windows Interactive Logon Security Guide — Settings & Best Practices" and "Group Policy Guide for Baseline Hardening".
VolkLocker Relaunch and Critical Gogs Zero-Day: Emerging Threats in Cybersecurity
The cybersecurity landscape is heating up as new threats emerge targeting both individual users and enterprise systems. Recent reports highlight a resurgence of the VolkLocker RaaS, which now targets Windows and…
The latest update for #Outpost24 includes "Understanding React2Shell: Critical Remote Code Execution in React Server Components and Next.js" and "Outpost24 Acquires Infinipoint to Power Its Entry into the Zero Trust Workforce Access Market".
An algorithm that enables a robot with a single model -- known as a vision-language-action (VLA) model -- to learn in three different ways: practice, watching a demonstration, and being tele-operated.
The latest update for #PagerDuty includes "How Forward-Looking Institutions are Benefiting from #AgenticAI" and "Turning Incidents Into Insight: The Continuous AI Operations Loop Explained".
The latest update for #PentestPeople includes "Introducing E-Learning" and "Top 5 Cyber Security Trends for 2026: Navigating the Shift from Prevention to AI #Testing".
The latest update for #KnowBe4 includes "Deepfake Training: A Strategic Advantage Against Emerging Threats" and "Warning: Phishing Attacks Abuse Free Cloudflare Pages".
Very cool to see more states step up and create public health & science communication infrastructure in a time when people are looking for reliable health information! www.gov.ca.gov/2025/12/15/g...
‘Let It Die: Inferno’ Is A Very Interesting Trial Balloon For AI Use In Video Games
On the topic of artificial intelligence, like far too many topics these days, it seems that the vast majority of opinions out there are highly polarized. Either you're all about making fun of AI not living up to…
~Trendmicro~
A 2025 survey of 3,000+ security pros reveals cloud/AI are top risks, while skills gaps and alert fatigue challenge cyber risk management.
-
IOCs: (None identified)
- #CyberRisk#SecOps#ThreatIntel
8 Million Users’ AI Conversations Sold for Profit by “Privacy” Extensions
🔥 Check out this awesome post from Hacker News 📖 📂 Category: 📌 Here’s what you’ll learn: A few weeks ago, I was wrestling with a major life decision. Like I've grown used to doing, I opened Claude and started thinking out…
The latest update for #CertKit includes "How the ACME protocol automates certificate issuance" and "Perfect Forward Secrecy Made Your Private Keys Boring".
The latest update for #Sentrium includes "Enumerating Users and Mailboxes in Microsoft Outlook 365 Web" and "How to test #incidentresponse readiness through red team exercises".
The latest update for #Trilio includes "OpenShift Operators Explained: The Basics You Need to Know" and "Backup vs. Replication: Key Differences Explained".
The latest update for #CatoNetworks includes "Cyberattack on the Sun: Threat Actors Manipulate Solar Panel Systems; Agentic AI Increases the Risk" and "Cato CTRL Threat Research: A Deep Dive into a New JSCEAL Infostealer Campaign".
The latest update for #CrowdStrike includes "CrowdStrike Secures Growing #AI Attack Surface with Falcon AI Detection and Response" and "Inside the Latest Innovations Powering Falcon Exposure Management".
Edgebase Tech to focus on AI, cybersecurity An indigenous tech firm, Edgebase Technologies, has said its focus would be on investing in emerging technologies such as Artificial Intelligence (AI)-dr...
As mustache-twirly evil as this is, I'm honestly more gobsmacked that a purported security researcher decided to research all this *after* divulging a huge amount of personal and sensitive information to Claude AI. I mean, anyone w/ any understanding of cybersecurity would maybe *not* do that?!
Compliance-Ready Cybersecurity for Finance and Healthcare: The Seceon Advantage
Navigating the Most Complex Regulatory Landscapes in Cybersecurity Financial services and healthcare organizations operate under the most stringent regulatory frameworks in existence. From HIPAA and P… #hackernews#news
Sabrine Ennaji, Elhadj Benkhelifa, Luigi Vincenzo Mancini
Behavior-Aware and Generalizable Defense Against Black-Box Adversarial Attacks for ML-Based IDS https://arxiv.org/abs/2512.13501
The latest update for #Datadog includes "2025 #cloudsecurity roundup: How attackers abused identities, supply chains, and AI" and "Evolving security at Datadog: How we designed roles to support a growing organization".
Six Million Users Trusted This Extension Without Knowing What It Records A recent investigation by the research team at Koi has uncovered that the popular Chrome extension Urban VPN Proxy, with ...
That's why I hate ads. Today, many tech companies prioritize their own profits over user privacy and depend on advertising for revenue. Is there no way to completely disrupt the ad tech market?
The latest update for #SedaraSecurity includes "Sedara Named to #MSSP Alert's 2025 List of Top 250 MSSPs" and "Why You Shouldn't Ignore OS Updates Even for 'Small' Bugs".
The latest update for #Graylog includes "How to Use MCP to Optimize Your Graylog Security Detections" and "Understanding How a Log Correlation Engine Enables Real-Time Insights".
N-able and Infinigate Strengthen European Partnership, Adding Poland to the Mix Infinigate and N-able Expand European Partnership to Include Poland Warsaw, Poland – On Tuesday, December 16, 2025,...
The latest update for #ArcticWolf includes "Arctic Wolf Observes Malicious SSO Logins on FortiGate Devices Following Disclosure of CVE-2025-59718 and CVE-2025-59719".
The latest update for #Teleport includes "#OWASP Top 10 for Agentic Applications 2026: Key Takeaways & How to Take Action" and "Best Practices for Secretless Engineering Automation".
The latest update for #BigPanda includes "How agentic IT operations lay the foundations for #SRE success at scale" and "When major IT incidents occur, #AI can deliver speed and transparency".
Sources say Monzo CEO TS Anil, who announced his exit and handover to ex-Googler Diana Layfield in October, was pushed out by the board over an IPO timing clash (Financial Times)
Raktim Gautam Goswami, Amir Bar, David Fan, Tsung-Yen Yang, Gaoyue Zhou, Prashanth Krishnamurthy, Michael Rabbat, Farshad Khorrami, Yann LeCun
World Models Can Leverage Human Videos for Dexterous Manipulation https://arxiv.org/abs/2512.13644
Aman Arora, Matteo El-Hariry, Miguel Olivares-Mendez
Reinforcement Learning based 6-DoF Maneuvers for Microgravity Intravehicular Docking: A Simulation Study with Int-Ball2 in ISS-JEM https://arxiv.org/abs/2512.13514
How geopolitics, supply chains, and shadow AI will test resilience
Geopolitical realignment, the weaponisation of critical supply chains, and the rapid diffusion of generative AI are redefining what it means to manage exposure. Welcome to 2026. The coming year …
French Interior Ministry confirms cyberattack on email servers
The French Interior Minister confirmed on Friday that the country's Ministry of the Interior was breached in a cyberattack that compromised e-mail servers. [...] #hackernews#news
FunkSec RaaS Operations: Hacktivism Meets Cybercrime Introduction to Malware Binary Triage (IMBT) Course Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor. Enr...
Knowledge Distillation Explained: How Smaller AI Models Learn to Think Like Giants
Introduction: Why Knowledge Distillation Suddenly Matters Again The artificial intelligence industry is experiencing a quiet but profound shift. As large language models grow more powerful, they also become more…
This is great for those who want to create compromising porn of their ex. On the other hand, pretty soon, because of this, few people will have an ex, as the OpenAi porn bot will become the de-facto life partner for every young adult. ino.to/gJB8yAG
Integrate Apify into your project using GitHub Copilot and MCP A step-by-step guide on how to use GitHub’s Copilot custom agent to integrate Apify Actors into your project’s codebase. Developer...
Google links more Chinese hacking groups to React2Shell attacks
Over the weekend, Google's threat intelligence team linked five more Chinese hacking groups to attacks exploiting the maximum-severity "React2Shell" remote code execution vulnerability. [...] #hackernews#news
St\'ephanie M. van den Berg, Ulrich Halekoh, S\"oren M\"oller, Andreas Kryger Jensen, Jacob von Bornemann Hjelmborg
Towards a pretrained deep learning estimator of the Linfoot informational correlation https://arxiv.org/abs/2512.12358
SoundCloud data breach exposes millions of emails SoundCloud confirmed a security breach on its audio streaming platform where threat actors stole a database containing users’ email addresses and...
Siemens upgrades Chur’s low-voltage grid with data-driven monitoring Smart fuses, grid sensors and IoT software will be added to 200 substations to boost reliability, cybersecurity and grid capac...
New GhostPairing Attack Let Attackers Gain Full Access in WhatsApp with Phone Number A newly discovered account takeover campaign targeting WhatsApp users demonstrates how attackers can compromise ...
Enhancing Robotic Vision through Deep Learning Techniques: From Detection to Construction
Paper ID: 199 – ISARC 2025 by Yusuf Aykin
IAARC youtu.be/bE-icdTNEl4?...
How the hacking world has changed: "All tech is political … whether you like it or not," says Black Hat's Jeff Moss, at this year's 25th annual conference in London.
Padmeswari Nandiya, Ahmad Mohsin, Ahmed Ibrahim, Iqbal H. Sarker, Helge Janicke
BRIDG-ICS: AI-Grounded Knowledge Graphs for Intelligent Threat Analytics in Industry~5.0 Cyber-Physical Systems https://arxiv.org/abs/2512.12112
Patrick Kostelac, Xuerui Wang, Anahita Jamshidnejad
MPC-Guided Safe Reinforcement Learning and Lipschitz-Based Filtering for Structured Nonlinear Systems https://arxiv.org/abs/2512.12855
The EU expands sanctions against Russia over hybrid and cyber threats and targets pro-Kremlin analysts. The EU introduced sanctions against pro-Kremlin propagandists, Swiss Jacques Baud, French Xavier Moreau, and US-born Marc Dougan, who both live in Russia. insightnews.media/eu-expands-s...
OP-ED: Britain finally modernizes 1990s anti-hacking laws, but legal immunity is just the opener. The real endgame requires democratizing security: deputizing a white hat militia to hammer infrastructure. Fewer gatekeepers, more licensed learners stressing systems before ransomware gangs break it.
Artificial Incompetence Fatigue is a thing.
It is the answer to a question no one asked; and it steals data and reduces privacy.
I hope the bubble bursts soon so we can be rid of this crap.
Gen AI is only as reliable as the data behind it, with many orgs under-protected for recovery, especially if using Apache Iceberg! At AWS re:Invent, I found out how to properly protect AI data pipelines - here’s what I discovered! dev.to/aws-builders... #CyberResilience#awsReinvent
Jie Ma, Junqing Zhang, Guanxiong Shen, Alan Marshall, Chip-Hong Chang
Adversarial Attacks Against Deep Learning-Based Radio Frequency Fingerprint Identification https://arxiv.org/abs/2512.12002
ARTEMIS AI Agent Outperforms 90% of Human Penetration Testers in Vulnerability Detection Researchers at Stanford University have unveiled ARTEMIS, a sophisticated artificial intelligence agent that...
Bezpečnostní výzkumník Ari Marzouk popsal přes 30 zranitelností v prostředích jako GitHub Copilot, Cursor, Windsurf, Kiro.dev, Zed.dev, Roo Code, Junie, Cline, Gemini CLI, Claude Code, a dalších, ke kterým bylo vydáno 24 CVE.
Here’s why I ditched ChatGPT and moved to local AI My local AI setup handles writing, coding, and private documents without sending data online. I was one of the first people to jump on the ChatG...
How deep learning powers today’s AI applications. Perfect for beginners and professionals alike looking to strengthen their AI knowledge.
Read the full blog here: www.synclovis.com/articles/dee...
The Seattle Times' long-term strategy for securing Frontend workflows against Supply Chain Attacks (like Shai-Hulud) and critical npm vulnerabilities is a must-read. They use @pnpm.io to block lifecycle scripts, a critical defense measure. Highly recommend pnpm.io/blog/2025/12...
Global smartphone shipments in 2026 are set to shrink 2.1% due to rising memory costs, led by Chinese OEMs; DRAM price surges are set to raise costs by 10%-15% (Counterpoint Research)
O&O BlueCon is an IT Toolkit to reliably analyze, repair, and recover non-bootable Windows PCs and servers quickly & easily. The new version 23 is out now with powerful new features and Plus Editions that include award-winning backup software: www.oo-software.com/en/oo-blueco... #Windows#security
Windows Admin Center Vulnerability Allows Attackers to Escalate Privileges Security researchers have uncovered a critical vulnerability in Microsoft’s Windows Admin Center (WAC) that enables stan...
A 'whole of society' effort would, of course, have to include a significant effort from the state to improve material conditions for the majority of the population...
New rules from Microsoft are Expanding the Public Bug Bounty program to cover any vulnerabilities affecting their online services. This will include 3rd party domains for code that also affect Microsoft projects.
Google to Kill Popular Dark Web Report Tool This marks another abrupt end to a Google service that users had come to rely on. The post Google to Kill Popular Dark Web Report Tool appeared first on ...
Post-Quantum Cryptography (PQC): Application Security Migration Guide The coming shift to Post-Quantum Cryptography (PQC) is not a distant, abstract threat—it is the single largest, most complex ...
What Cloudflare’s 2025 internet review says about attacks, outages, and traffic shifts
The internet stayed busy, brittle, and under constant pressure in 2025. Cloudflare’s annual Radar Year in Review offers a wide view of how traffic moved, where attacks clustered, and what faile… #hackernews#news
Chun Kit Wong, Paraskevas Pegios, Nina Weng, Emilie Pi Fogtmann Sejer, Martin Gr{\o}nneb{\ae}k Tolsgaard, Anders Nymark Christensen, Aasa Feragen
Weight Space Correlation Analysis: Quantifying Feature Utilization in Deep Learning Models https://arxiv.org/abs/2512.13144
Read the winner of the 2024 Oxford Undergraduate Law Journal Annual Essay Competition📝☑️
It argues that while GenAI poses new challenges, existing frameworks of negligence and product liability law are sufficiently robust to adapt and provide remedies 👁️🗨️⚖️
Shanghua Liu, Majharulislam Babor, Christoph Verduyn, Breght Vandenberghe, Bruno Betoni Parodi, Cornelia Weltzien, Marina M. -C. H\"ohne
LeafTrackNet: A Deep Learning Framework for Robust Leaf Tracking in Top-Down Plant Phenotyping https://arxiv.org/abs/2512.13130
ASEC warns of expanding Gentlemen ransomware campaigns hitting manufacturing and healthcare Researchers from ASEC detailed Gentlemen, a newly identified ransomware group, which first emerged around...
Yan Zhang, Baoxin Li, Han Sun, Yuhang Gao, Mingtai Zhang, Pei Wang
FID-Net: A Feature-Enhanced Deep Learning Network for Forest Infestation Detection https://arxiv.org/abs/2512.13104
Infor Built for Industry AI Agents: Turning ERP Data into Intelligent ActionInfor AI Agents for Distribution | NSA Computer Exchange - NSA 3.0 nsacom.com/infor-ai-age...
Tomoya Tanaka, Tomonori Ikeda, Ryo Yonemoto
Comprehensive Evaluation of Rule-Based, Machine Learning, and Deep Learning in Human Estimation Using Radio Wave Sensing: Accuracy, Spatial Generalization, and Output Granularity Trade-offs https://arxiv.org/abs/2512.13031
The head of Amazon Web Services has big plans to offer AI tools to businesses, but says that replacing coders with AI is “a non-starter for anyone who’s trying to build a long-term company.” www.wired.com/story/the-bi...
Hongzhe Bi, Hengkai Tan, Shenghao Xie, Zeyuan Wang, Shuhe Huang, Haitian Liu, Ruowen Zhao, Yao Feng, Chendong Xiang, Yinze Rong, Hongyan Zhao, Hanyu Liu, Zhizhong Su, Lei Ma, Hang Su, Jun Zhu
Motus: A Unified Latent Action World Model https://arxiv.org/abs/2512.13030
India leads globally in GenAI learning with 3 enrollments per minute: report GenAI continued to dominate India’s learning patterns in 2025, with the country recording three GenAI enrollments ever...
The deadline to claim part of AT&T's $177 million settlement is December 18. Here's how to get your payout - before it's too late. www.zdnet.com/article/att-...
📍 GPS tracking without a SIM card?
Electroscopic Archive’s Wi-Fi GPS Tracker uses our XIAO ESP32-S3 + Neo-6M to send location data over Wi-Fi, with geofencing, route history, and SMS alerts via the GeoLinker cloud—no GSM needed.
ServiceNow's security business has long been a sleeping giant inside the workflow orchestration behemoth's portfolio. And in recent months, the giant appears to have awoken. www.govinfosecurity.com/blogs/servic...
Elizabeth Warren and two Democratic senators write to Google, Microsoft, Amazon, Meta, and more to investigate AI data centers' role in rising electricity costs (New York Times)
"The campaign demonstrates sustained focus on Western critical infrastructure, particularly the energy sector, with operations spanning 2021 through the present day," CJ Moses, CISO of Amazon Integrated Security, said in a Monday threat report. www.theregister.com/2025/12/15/a...
Cloudflare Report: 🚩Global internet traffic increased by 19 percent in 2025. Post-quantum encryption already reaches 52 percent, while DDoS attacks break new records. www.heise.de/en/news/Clou...#Cloudflare#DDoS
Security researchers found Urban VPN Proxy and seven sister extensions used by over 8 million users injected scripts into major AI chat services and, since v5.5.0 (July 2025), intercepted and exfiltrated conversation data to analytics.urban-vpn.com and stats.urban-vpn.com.
700Credit data breach impacts 5.8 million vehicle dealership customers
700Credit, a U.S.-based financial services and fintech company, will start notifying more than 5.8 million people that their personal information has been exposed in a data breach incident. [...] #hackernews#news
Originally from MS Threat Intel: Defending against the CVE-2025-55182 (React2Shell) vulnerability in React Server Components ( :-{ı▓ #CTI#cybersecurity#cyberresearch
"Microsoft is killing off an obsolete and vulnerable encryption cipher that Windows has supported by default for 26 years following more than a decade of devastating hacks that exploited it" arstechnica.com/security/202...
U.S. school districts are deploying AI surveillance—facial recognition, gun-detection, bathroom audio and drones—with Beverly Hills spending $4.8M, ZeroEyes claiming 1,000+ guns detected since 2023, and critics citing false alarms, privacy concerns and limited efficacy evidence.
Amazon Threat Intelligence reports on a Russian state-sponsored campaign targeting Western critical infrastructure, particularly the energy sector, from 2021 to 2025.
One thing to add to this good piece, for the games example in particular: it is hard to justify the existing practice of labelling games "made with" AI and not count people using AI to write code in that definition www.ft.com/content/bab5...
