A Home Depot employee accidentally published a private access token online, exposing internal systems for nearly a year. Security researcher Ben Zimmermann tried to alert the company but was ignored until TechCrunch got involved.
Windscribe’s CEO Yegor Sak just held a revealing Reddit AMA. He detailed plans for new obfuscation tech, took a hard stance against age verification laws, and made a bold promise about the company’s future in Canada if privacy laws change.
The scramble to secure generative AI and AI agents has created an entirely new security category overnight. According to CRN, major players like Cato Networks, CrowdStrike, and Palo Alto Networks are opting to buy, not build, their way in.
Microsoft AI CEO Mustafa Suleyman predicts a near future where AI systems can set their own goals and improve their own code. He argues for a framework of transparency and government engagement to manage these powerful capabilities.
A new report reveals legacy web forms in supplier portals are a major, overlooked attack vector for manufacturers. Attackers are exploiting these old systems to steal sensitive data, with nearly half of organizations confirming a breach from a form submission.
A new joint advisory from CISA, the NSA, and Australia’s ACSC outlines principles for AI in OT, but experts say it misses key threats. The core problem is that AI’s unpredictability directly conflicts with the stability required in industrial environments, creating new vulnerabilities.
According to TechRepublic, cybersecurity is facing a fundamental shift driven by AI. Key predictions for 2026 include AI-powered attacks meeting AI-driven defense, deepfakes forcing a trust revolution, and ERP/OT systems becoming prime targets. The analysis also forecasts a move to predictive securi
Norton VPN has rolled out its final major update for 2025, focusing on network speed and security validation. The updates include 25 Gbps servers in key cities and the first third-party audit of its proprietary Mimic protocol.
In a surprising move, Bluesky has rolled out mandatory age checks for all new users to comply with Australia’s under-16 social media ban, even though it’s not one of the ten platforms officially listed. The company also reversed its block on Mississippi, but the global push for age verification is d
Microsoft has rolled out a new security warning for PowerShell 5.1 as part of the December 2025 Patch Tuesday updates. It targets the Invoke-WebRequest cmdlet to address a high-severity remote code execution vulnerability, CVE-2025-54100. The change primarily impacts enterprise automation scripts, w
