Featured
Critical Gap: Only 1% of Open Source Vulnerabilities Document Affected Functions
Analysis reveals that function-level details are available for less than 1% of documented open-source software vulnerabilities, hampering security efforts. The Go ecosystem stands out with 31% coverage, while major vulnerability databases show concerning gaps in this critical information.
Decoding AI's Mind: Understanding Language Models Through Entropy Analysis
Groundbreaking research reveals how measuring entropy in large language model outputs provides insights into AI decision-making confidence. Scientists found distinct patterns in how AI systems like ChatGPT select words, showing varying levels of certainty across different contexts and languages.
Inside Canva's Global Service Outage: A Chain Reaction of Technical Challenges
A routine deployment at Canva spiraled into a major service disruption when CDN routing issues combined with API gateway limitations to create a perfect storm. The incident revealed crucial insights about system resilience and the importance of human intervention in crisis management.
Chinese Hacker Group Launches Major Cyber Espionage Campaign Against Japanese Government and Industry
A Chinese state-linked hacker group called Mirror Face has conducted over 200 cyberattacks against Japanese government agencies and corporations between 2019-2024. The sophisticated phishing campaign targeted sensitive information related to national security, aerospace, and semiconductor industries.
AI-Powered Border Control: The Hidden Cost of Predictive Travel Surveillance
As AI surveillance systems increasingly determine who can cross borders, human rights advocates raise alarms about the lack of transparency and accountability. Companies like Travizory are developing opaque algorithmic systems that profile travelers, while those affected struggle to understand how they're being evaluated.
Hackers Expose Telefónica's Internal Data in 2.3GB Security Breach
Spanish telecom giant Telefónica confirms unauthorized access to its internal Jira system, resulting in 2.3GB of sensitive data being leaked on cybercrime forums. Four hackers linked to Hellcat Ransomware claimed responsibility for the breach, which potentially compromised customer information.
ICAO Data Breach Exposes Personal Information of Nearly 12,000 Aviation Job Applicants
The International Civil Aviation Organization confirms major data breach affecting recruitment records spanning 2016-2024, with sensitive personal details of almost 12,000 individuals exposed. The incident, claimed by hacker group Natohub, marks ICAO's second significant cybersecurity compromise in recent years.
New WordPress Credit Card Skimmer Hides in Database to Steal Payment Data
Cybersecurity researchers have discovered a sophisticated credit card skimming campaign targeting WordPress e-commerce sites by injecting malicious code into database tables. The stealthy malware evades detection while capturing payment information through fake forms and encrypted exfiltration methods.
U.S. Intelligence Agencies Split Over Havana Syndrome Foreign Involvement Theory
Recent intelligence has prompted some U.S. agencies to revise their stance on Havana syndrome, suggesting increased likelihood of foreign actors using energy weapons against diplomats. This shift challenges the 2023 CIA assessment that dismissed foreign involvement, while the White House appears increasingly convinced of external interference.
