Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

39 headlines in this view

Refine the feed

Search across headline titles and summaries.

Showing 20 most recent headlines of 39 Filtered view

Export-Control Order Forces Shutdown of Fable 5, Mythos 5Days after launch, Anthropic pulled Fable 5 and Mythos 5 worldwide after a U.S. export-control order barred access by foreign nationals. The company says officials provided no written evidence of the alleged security risk and said the precedent could disrupt frontier AI deployments.

Governance Professionals Struggle to Measure ROI and Control AI SystemsAI is becoming embedded across the enterprise, yet many organizations still can't quantify its value or answer key questions about oversight and control. ISACA's latest AI Pulse Poll reveals persistent uncertainty about AI ROI, governance and operational readiness, said GRCIE CEO Jenai Marinkovic.

Also: Identity as the New Control Plane, Healthcare's AI Governance ChallengeIn this week's panel, four ISMG editors discussed Anthropic's ambitious release of the Mythos and Fable 5 models, how cybersecurity teams are strengthening identity in complex cloud environments and the healthcare industry's efforts to govern artificial intelligence responsibly.

Novo Nordisk Breach Involved 'Copying' of Patient, Healthcare Provider InfoA hack on Danish pharmaceutical manufacturer Novo Nordisk has compromised some patients' clinical trial information, the maker of popular weight loss and diabetes treatment drugs including Wegovy and Ozempic said. The company is working to bring affected IT systems back online.

More OT Companies Ushered Into Project GlasswingAnthropic has finally lifted the velvet rope and allowed a small handful of operational technology companies to join Project Glasswing, its invitation-only club whose members get access to Mythos, the most cyber-capable of the frontier lab's large language models.

Policy as Code Turns Static Compliance Documents Into Enforceable, Auditable PolicyFor decades, policies, standards and procedures have anchored security and compliance governance. But static documents can no longer keep pace with dynamic regulations and frontier technology. Policy as Code transforms them into machine-readable, enforceable, continuously verifiable rules that drive real business decisions.

Complaint Says Service Generated More Than 1.5 Million Malicious URLsGoogle has sued a Chinese phishing-as-a-service provider accused of teaching customers to use Gemini to generate and customize scam websites, a campaign linked to more than 1.59 million phishing URLs, over 100,000 victims, and widespread credential and financial theft.

Bank Info Security 1 month, 1 week ago

German Court: Google Liable for AI Summaries

Court Says Google Is Responsible for Content Generated by Its MachinesA German court dealt a blow to Google AI-infused search by deciding that the Big Tech firm is liable for defamatory statements in the AI summaries that increasingly dominate its results. The feature purports to only summarize publicly-available content, but it often hallucinates.

Lightspeed Funds Will Support Defenses Against Continuous, Machine-Led ExploitationA Security, founded by former Sygnia executive Yossi Torati, emerged from stealth with $37 million to build defenses against weaponized AI that can automate discovery, exploit attack paths and manipulate agentic systems faster than human security teams can respond.

Bank Info Security 1 month, 1 week ago

Vietnam's APT32 Targets Investors, Infrastructure Firm

Eset Says Threat Actor Redirected Efforts From Foreign OperationsEset linked OceanLotus, also known as APT32, to a supply-chain attack on Vietnam's FireAnt financial platform and a prolonged intrusion into a transport infrastructure company, suggesting the state-aligned threat actor is increasingly focused on gathering intelligence from domestic targets.

Bank Info Security 1 month, 1 week ago

Breach Roundup: CISA Says Agencies Should 'Patch Smarter'

Also, France Probes Tchap Breach, M&S Cancels Bonuses, June Patch TuesdayThis week, CISA tightened patching rules, hackers provoked AI scanners. An accused Russian intel hacker appeared in court. Microsoft warned of AI-themed attacks. M&S canceled bonuses. France probed a Tchap breach. NHS trusts disclosed stolen data and a Telegram campaign targeted Russian troops.

Program Focuses on AI Governance, Safety, Privacy, Bias and TransparencyAccreditation organization Joint Commission is rolling out a voluntary program for certifying the "responsible" deployment and use of artificial intelligence technologies by U.S. healthcare provider organizations, including governance, safeguards, monitoring processes and education.

Bank Info Security 1 month, 1 week ago

Cryptohack Roundup: Sentencing in $97M Laundering Case

Also: Zcash Patches Flaw, $32M Humanity Protocol HackThis week, a key player in a $97M laundering scheme got prison time, Humanity Protocol suffered $32M in losses, Zcash patched a flaw, the EU targeted crypto platforms tied to Russia, authorities froze $3.8M in illicit funds and researchers exposed a Trezor chip weakness.

Bank Info Security 1 month, 1 week ago

AI Is Reshaping Cybersecurity Training Priorities

ISC2 Survey Says AI Skills Top Training Agendas, But Teams Need to Act QuicklyAI now tops cybersecurity training priorities for 47% of security leaders, as critical cyber skills gaps are growing, according to an ISC2 survey. Most organizations train in-house, and 53% cite time - not budget - as the biggest barrier to effective training.

Evaluations of Claude Mythos 5 Elevates Offensive Cyber, But Isn't Fully AutonomousAnthropic says its new Claude Mythos 5 model that debuted Tuesday can consistently discover vulnerabilities, build exploit chains and assist attacks on weak enterprise networks, but remains below the threshold for fully autonomous large-scale cyber operations.

Bank Info Security 1 month, 1 week ago

Health Cyberthreat Sharing Is Advancing But Gaps Persist

Jeffrey Vinson, Ex-Harris Health Cyber Leader, on Sector's Top ChallengesHealthcare organizations have improved cyberthreat sharing, yet security gaps persist. Jeffrey Vinson, former cyber leader of Harris Health System, explains why ransomware, weak investment and limited rural resources continue to expose patient data and safety to growing cyber risks.

Healthcare organizations face mounting pressure to govern AI without slowing innovation. Krista Arndt of St. Luke's University Health Network explains how agile governance, technical controls and collaboration can reduce data loss risks, protect patient care and strengthen AI security programs.

Loading more headlines...