Research Archives

DARPA’s AI Cyber Challenge reveals winning models for automated vulnerability discovery and patching

The initiative seeks to patch vulnerabilities in open-source code before they are exploited by would-be attackers. Now comes the hard part — putting the systems to the…

20 hours ago By Matt Kapko

A corporate logo for Microsoft hangs above the door to its office building on 8th Avenue on June 24, 2025, in New York City. (Photo by Gary Hershorn/Getty Images)

Microsoft: An organization without a response plan will be hit harder by a security incident

Security leaders shared advice gleaned from customer engagements, and reinforced the importance of planning and following fundamentals for defense.

1 day ago By Matt Kapko

This photograph taken on October 30, 2023, in Mulhouse, eastern France, shows figurines next to a screen displaying a logo of Siri, a digital assistant of Apple Inc. technology company. (Photo by SEBASTIEN BOZON / AFP) (Photo by SEBASTIEN BOZON/AFP via Getty Images)

Research reveals possible privacy gaps in Apple Intelligence’s data handling

LAS VEGAS — One of the big worries during the generative AI boom is where exactly data is traveling when users enter queries or commands into the…

1 day ago By Greg Otto

Microsoft Romania headquarters in City Gate Towers situated in Free Press Square, in Bucharest, Romania. (Getty Images)

CISA, Microsoft warn organizations of high-severity Microsoft Exchange vulnerability

The public disclosure and advisories came late Wednesday during Black Hat, but Microsoft said the timing was coordinated.

2 days ago By Matt Kapko

SonicWall headquarters — SonicWall’s headquarters in Milpitas, California. (Getty Images)

SonicWall firewalls hit by active mass exploitation of suspected zero-day

About 20 organizations have been impacted and the pace of attacks is rising. Threat researchers and SonicWall are scrambling to determine the root cause.

4 days ago By Matt Kapko

BlackSuit site seizure notice — Seizure notice displayed on BlackSuit’s extortion site. (State Criminal Police Office Lower Saxony, Germany)

Details emerge on BlackSuit ransomware takedown

The Russian cybercrime group attacked more than 180 organizations before members abandoned the brand and dispersed to new ransomware groups earlier this year.

5 days ago By Matt Kapko

The money earned by remote North Korean IT workers is funding the North Korean weapons programs. (Getty Images)

CrowdStrike investigated 320 North Korean IT worker cases in the past year

Threat hunters saw North Korean operatives almost daily, reflecting a 220% year-over-year increase in activity, CrowdStrike said in a new report.

5 days ago By Matt Kapko

Cursor’s AI coding agent morphed ‘into local shell’ with one-line prompt attack

The flaw, disclosed a month after it was patched, provided an attacker with remote code execution privileges by poisoning the data ingested by the model.

Aug 1, 2025 By Derek B. Johnson

Palo Alto Networks headquarters in Silicon Valley; Palo Alto Networks, Inc. is an American multinational cyber security company. (Getty Images)

Social engineering attacks surged this past year, Palo Alto Networks report finds

Unit 42 said social engineering — the method of choice for groups as diverse as Scattered Spider and North Korean tech workers — was the top initial…

Aug 1, 2025 By Matt Kapko

Russia-affiliated Secret Blizzard conducting ongoing espionage against embassies in Moscow

A new Microsoft report finds that the long-running threat group has gained positions on state-aligned ISPs and Russian telecoms, while tricking foreign embassy staff to download custom…

Jul 31, 2025 By Matt Kapko