Oracle warned customers on Thursday of a critical vulnerability in its PeopleSoft software that hackers have already exploited to breach more than 100 organisations. The flaw, CVE-2026-35273, carries a CVSS score of 9.8 and can be exploited over the internet without any authentication. Oracle has not released a patch. The advisory came a day after […]
Anthropic has agreed to give the European Union’s cybersecurity agency, ENISA, access to Claude Mythos, the AI model that has autonomously discovered more than 10,000 high- and critical-severity zero-day vulnerabilities across every major operating system and web browser. The decision, communicated to the European Commission over the weekend, makes ENISA the first EU institution to join […]
The dangers of artificial intelligence eclipsed nuclear weapons as the central concern at a strategic stability panel during the Shangri-La Dialogue in Singapore, with senior military officials warning that AI-driven systems are collapsing the time available for human decision-making in conflict. The annual defense summit, held from 29 to 31 May, drew defence ministers and military […]
As enterprises race to embed generative AI into daily operations, security teams are confronting a new category of threats that traditional monitoring systems were never designed to handle. From AI-powered workflow automation to code generation and document analysis, enterprise AI platforms are rapidly becoming operational infrastructure. But with that shift comes a growing concern: organizations […]
NATO has signed strategic cybersecurity partnerships with Microsoft, Palo Alto Networks, and ESET, formalising what the alliance describes as non-commercial agreements to strengthen collective resilience in cyberspace. The partnerships were announced on 27 May at the International Conference on Cyber Conflict (CyCon) in Tallinn, Estonia, the annual gathering organised by NATO’s Cooperative Cyber Defence Centre of […]
On March 31, 2026, Anthropic accidentally shipped the entire source code of Claude Code to the public npm registry. Around 512,000 lines of TypeScript across 1,906 files, including 44 hidden feature flags and references to an unreleased model codenamed Mythos, sat openly accessible on a Cloudflare storage bucket until a security researcher found it and posted […]
Wingtech Technology has filed a lawsuit against its own subsidiary, Nexperia, in a Chinese court. The case, lodged at the Dongguan Intermediate People’s Court, seeks at least 8 billion yuan, roughly $1.1 billion, in damages. It is the first major legal challenge to a European government’s forced seizure of a Chinese-owned chipmaker. The dispute centres […]
When Microsoft announced it was acquiring GitHub in a $7.5 billion deal in 2018, developers were nervous.
It is an unsettling irony when the world’s largest code-hosting platform becomes the victim of its own ecosystem. GitHub confirmed on Tuesday that a threat actor exfiltrated approximately 3,800 internal repositories after compromising an employee’s device through a poisoned Visual Studio Code extension, marking one of the most significant breaches the Microsoft-owned company has ever […]
