Blog
-
Will Autonomous AI Agents Require Digital IDs? Estonia Says It’s Already Time
Estonia appears to be the first and only ready to move on what may end up being a very important element: digital IDs for the autonomous AI agents that are becoming more and more common.
-
Agentjacking Attack Exposes Critical Trust Flaw in AI Coding Agents
The attack centers on forging error reports embedded with malicious instructions trusted implicitly by AI coding agents when sent by the Sentry MCP server. The trouble is, anyone can send an error report to a target with the Sentry DSN credential widely found out in the open.
-
New Copilot Vulnerability Bridges Old and New Data Theft Techniques
The scope of data theft is pretty severe once the Copilot vulnerability chain is successfully exploited, allowing the attacker to quickly rifle through a target’s Microsoft business environment for sensitive files.
-
Maine’s Data Breach Reporting Portal Under Review After Discord and VRChat Fakes Slip Through
Recent fake data breach reports for Discord and VRChat filed with the state of Maine have demonstrated that data breach reporting portals can instead become a source of fast-spreading disinformation if not managed properly.
-
Coupang Ecommerce Data Breach Fine Demonstrates the Increasing Level of Seriousness in South Korean Regulation
A record-setting fine of 624 billion won just handed down for ecommerce giant Coupang’s 2025 data breach demonstrates that South Korea’s privacy regulators continue to move in an even more strict direction.
-
Mythos AI Being Used in NSA Cyber Operations?
An anonymous source has come forward to claim that Anthropic now has engineers embedded with the NSA providing training and ongoing support to its cyber operations. The new Mythos AI, along with all other Anthropic products, are supposed to be under a ban for use by federal agencies and their contractors.
-
Trump Executive Order Seeks Pre-Release Access and Assessment of AI Models
AI models will be evaluated to determine if they are threat capable enough to be considered “covered.” If they are, the government would request up to 30 days with them for private testing and evaluation before they are released to the public.
-
Potential Game-Changer in EU as Mythos AI Access Opens Up
Preview access to the potent (and concerning) new Mythos AI is being expanded to at least 150 organizations, to include the first access for members of the EU.
-
Microsoft Stands Firm on Public Disclosure Policy as Risk of Zero-Day Vulnerabilities Multiplies
The researcher asserts that they approached Microsoft privately with the zero-day vulnerabilities ahead of their public disclosure, but the company was not interested in listening to them. Microsoft, in turn, has said that the researcher’s actions are “unacceptable” and even “criminal” in providing attackers with a road map to immediate use of the vulnerabilities.
-
ECB: Looming AI Security Risk Requires Increased Cyber Spending by Euro Banks
A stark warning has been issued by the European Central Bank (ECB) to the region’s financial outlets; start spending more on cybersecurity and readiness, or be taken advantage of by the new LLMs coming soon.