SingGuard-NSFA: Open-source guardrails for agentic AI

SingGuard-NSFA is an open-source guardrail framework aimed at operational threats in agent workflows. Four models ship at 0.8B, 2B, 4B, and 9B parameters, all built on Qwen3.5 base backbones. Risk taxonomy The NSFA risk taxonomy organizes threats along… Continue reading SingGuard-NSFA: Open-source guardrails for agentic AI

An AI overthinking attack can tie a robot up for over a minute

Robots that read the world through cameras now lean on large vision-language models to interpret what they see and decide what to do next. These models handle images and text together, so any words that fall inside the camera frame become part of the i… Continue reading An AI overthinking attack can tie a robot up for over a minute

AI used to help plan the break-in, now it’s doing the break-in

Over the past twelve months, researchers documented intrusions in which AI ran exploitation workflows autonomously, generating thousands of commands across dozens of sessions with minimal human direction, according to Check Point’s AI Security Report 2… Continue reading AI used to help plan the break-in, now it’s doing the break-in

Google adds FIDO2 keys and phone passkeys to Windows login via GCPW

Google has started rolling out FIDO2-compliant physical security key support as a second factor for authentication in Google Credential Provider for Windows (GCPW) to all Google Workspace customers. GCPW is a free tool that lets users sign in to Window… Continue reading Google adds FIDO2 keys and phone passkeys to Windows login via GCPW

Microsoft Entra ID authentication overhaul to start in September 2026

Microsoft will begin rolling out passkeys as the default authentication experience for Microsoft Entra ID in the public cloud on September 1, 2026. Organizations with SMS or voice authentication enabled will automatically be enabled for passkeys. The n… Continue reading Microsoft Entra ID authentication overhaul to start in September 2026

Fake smart home residents could stand in for real ones in security research

Smart home security research runs on a scarce ingredient: recordings of how real people use the gadgets in their homes. Getting that data means wiring up someone’s house and watching for months, which is slow, costly, and about as invasive as it … Continue reading Fake smart home residents could stand in for real ones in security research

Chatto: Open-source team messenger with privacy at its core

Teams that want their group chats off commercial platforms have a growing menu of self-hosted options. Chatto joined that group when its developer released the code under an open-source license and posted binaries for anyone to run on their own hardwar… Continue reading Chatto: Open-source team messenger with privacy at its core