Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

33 headlines in this view

Refine the feed

Search across headline titles and summaries.

Showing 20 most recent headlines of 33 Filtered view

Apple Sues OpenAI Over Al Alleged Trade Secret TheftApple accused OpenAI of building its secretive new device with stolen trade secrets in a lawsuit demanding monetary damages and the return of stolen intellectual property. OpenAI's nascent hardware is "rotten to its core by its illegal reliance on misappropriated trade secrets," Apple alleged.

SaaS Observability Vendor Adds Real-Time Network Flow Telemetry to DNS IntelligenceInfoblox plans to acquire San Francisco-based network observability specialist Kentik to combine DNS, DHCP, asset intelligence and real-time network flow telemetry into a unified platform designed to help enterprises manage increasingly complex hybrid cloud and AI-driven environments.

Also: Oracle Suit Points to AI Revenue Forecasting Risk; the AI Sovereignty PushIn this week's panel, four editors discussed the growing role of artificial intelligence in U.S. federal government cybersecurity, Oracle's investor lawsuit over its projected cloud sales to frontier AI lab OpenAI and what AI sovereignty means for enterprises.

Business Associates Tied to 50% of Breach Victims as AI-Aided Attacks LoomVendor incidents and hacks, especially data thefts and ransomware attacks, continue to plague the healthcare sector, accounting for the majority of major data breaches reported so far this year. The advent of AI tools in the hands of bad actors, will only heighten the threats, experts predict.

Peter Justen of AmeriTrust on How Data Integrity Affects Benefits AdministrationArtificial intelligence is transforming healthcare and government benefits administration, but organizations must strengthen data quality and operational processes before expecting meaningful results, said Peter Justen, founder and CEO at AmeriTrust Solutions.

NightmareEclipse Says Mitigation Can Exhaust Disk Space, Crash AppsMicrosoft's patch for CVE-2026-50656, known as RoguePlanet, has sparked fresh criticism after researcher NightmareEclipse alleged the mitigation can exhaust disk space, crash applications and leak memory, extending a months-long dispute over Microsoft's handling of multiple zero-day disclosures.

Despite Political Upheaval, Stronger Critical Infrastructure Rules See Wide BackingCyber policy experts said they're optimistic that Britain's Cyber Security and Resilience Bill will survive yet another change of prime minister, seeing continuing, strong parliamentary backing for expanding the scope and incident response rules for better securing critical national infrastructure.

Bank Info Security 1 week ago

AI Coding Tools Can Fake Approval Prompts

Old Unix Symlink Trick Lets Malicious Code Bypass User ChecksWiz researchers found that six popular AI coding assistants can be tricked into modifying sensitive files, including SSH keys, while their approval prompts display a harmless filename. The GhostApproval technique exploits a decades-old Unix symlink behavior to mislead users.

Acquisition Adds MSP-Friendly PAM, MFA and SSO to Existing Identity Security ToolsBarracuda acquired Evo Security to add privileged access management, multifactor authentication and single sign-on to its security platform, creating an MSP-focused identity resilience offering designed to simplify protection for small and midsize businesses while automating identity management.

Experts Detail Migration Scope, Timelines and Governance Gaps in Going Quantum-SafeMigrating to post-quantum cryptography isn't a weekend patch. It's one of the largest transformations an enterprise will undertake, and it will require a multi-year program spanning infrastructure, vendors, governance and policy, according to a panel of experts.

Bank Info Security 1 week, 1 day ago

How AI Raises Stakes for Rural Hospital Security Teams

Duncan Regional CIO Roger Neal on Bolstering Cyber Defenses as AI Threats GrowRural healthcare providers face growing security pressures as AI tools speed up attacks and strain limited resources. Duncan Regional Hospital CIO Roger Neal discusses how stronger network segmentation, governance and third-party partnerships help protect patient data and medical systems.

Bank Info Security 1 week, 1 day ago

Breach Roundup: Hush, Don't Talk About the Data Breach

Also, 23andMe Breach Settlement, GitHub AI Flaw, Ubiquiti Patches Critical BugsThis week, hidden breaches, researchers exposed a GitHub AI agent flaw, an Ubiquiti critical flaw, a ColdFusion flaw, a growing Chinese ORB, U.K. government FortiBleed exposure, 23andMe victims get $46.75 million, 3.8 million affected by Medtronic breach and Cerner's 2025 victim count went up.

Bank Info Security 1 week, 1 day ago

European Patience With Cybersecurity Laggards Snaps

European Commission Sues 4 Countries for Not Implementing NIS2The European Commission is cracking down on Spain, France and other countries for failing to implement or abide by cybersecurity legislation. NIS2 forces the EU's member states to publish national cybersecurity strategies and boost the protection of critical infrastructure across sectors.

Researchers Urge Organizations to Rotate Credentials and Review Audit LogsThreat actor 888 claims it stole Accenture source code and cloud credentials, prompting researchers to warn that any exposed Azure tokens, encryption keys or DevOps secrets could enable follow-on intrusions and downstream supply-chain attacks even as Accenture says operations remain unaffected.

Also: Binance Eyes More Asia Licenses, India Pushes Fresh Crypto CurbsThis week, the U.S. Securities and Exchange Commission eyes July for a crypto rule proposal, Binance anticipates more Asian business, Malaysia seized 75,000 crypto mining rigs, India's central bank shooed away banks from crypto, and Interpol helped sweep crypto launderers.

Bank Info Security 1 week, 2 days ago

Hidden Backdoor Found in Tenda Router Firmware

Unauthenticated Flaw Allows Full Router, Network TakeoverA hidden backdoor, disclosed by CERT/CC and found in multiple firmware versions made by Chinese manufacturer Tenda, bypasses authentication and could grant attackers administrative access. Researchers are reporting exploitation and an Nmap script is making vulnerable devices easier to identify.

Bank Info Security 1 week, 2 days ago

Governance in the Age of AI: Navigating the Mirror Maze

Security Leaders Need to Act Now to Set Guardrails, Seize OpportunitiesIn Barrie's Peter Pan, Wendy sewed Peter's mischievous shadow back on his feet. Wendy saw what was incomplete and chose to act. We, as security practitioners in the age of emerging AI, also must choose whether to act - and how to act - to both govern AI and seize new opportunities.

Loading more headlines...