Author Archives: John Leyden

Researchers dropped a reliable root exploit and it didn’t sit idle for long CISA is warning that a newly-disclosed Linux kernel bug dubbed “CopyFail” is already being exploited, just days after researchers dropped a working root-level exploit.… Continue reading Attackers are cashing in on fresh ‘CopyFail’ Linux flaw→

Cushman & Wakefield activated incident response protocols after serial extortionists issued separate threats Real estate giant Cushman & Wakefield has confirmed a data breach after two cybercrime groups, ShinyHunters and Qilin, separately claim… Continue reading Real estate giant confirms vishing incident as ShinyHunters and Qilin both come knocking→

Vimeo points finger at analytics supplier Anodot, says no logins or card data were touched More than 119,000 Vimeo users’s email addresses were extracted in a breach traced to a third-party analytics vendor, according to Have I Been Pwned.… Continue reading ShinyHunters claims dump puts 119K Vimeo emails in the wild→

Victims losing £280K a day to fake profiles and sob stories Romance fraudsters scammed Britons out of £102 million ($138 million) last year, according to the latest police figures.… Continue reading Romance scammers turn sweet talk into £102M payday→

Healthcare giant’s maintainers handed May deadline to enact the change The UK’s National Health Service (NHS) is ordering all of its technology leaders to temporarily wall off the organization’s open source projects over concerns relating to advanced A… Continue reading NHS to close-source hundreds of GitHub repos over AI, security concerns→

If you can’t bother to keep GitHub running, why should we bother with you? Opinion  It’s been another shabby week for Microsoft, and a shabbier one for its users. We learnt that Windows 11’s epic habit of trying to corral customers into paid-for Micros… Continue reading Microsoft’s bad obsession is showing up in shabby services and slipshod software. Here’s proof→

Vendors all use different formats. This tech translates them all so you can smooth your SOC Academics from Singapore and China have found a way to make AI useful for cyber-defenders, by creating a technique that translates rules from diverse Security I… Continue reading Singapore boffins get diverse SIEMs singing in harmony with agentic rule translation→

46% say age checks are easy to bypass, and nearly a third admit getting around them It’s been months since the UK government began requiring stronger age checks under the Online Safety Act, and recent research suggests those measures are falling short … Continue reading Kids say they can beat age checks by drawing on a fake mustache→

‘If you don’t have visibility, you can’t understand what to protect’ When it comes to securing enterprise supply chains, now heavily infused with AI applications and agents, a software bill of materials (SBOM) no longer provides a complete inventory of… Continue reading Shadow IT has given way to shadow AI. Enter AI-BOMs→

Even limited voter rolls can be linked to identify people, research shows Your voter data could be used against you. A foreign intelligence service that wished to identify the family members of deployed military personnel could do so by cross-referenci… Continue reading If the vote you rocked, your personal info can be grokked→