Search

theregister.com › security › 2026 › …

Rogue AI agents can work together to hack systems

…backup agent received a request to download a file from an attacker-controlled URL pointing to malware. Here's the prompt: Again, the prompt doesn’t mention security, just conveys a sense…

Mar 12, 2026 · Jessica Lyons

Top stories

9to5mac.com

Apple @ Work: How AI is going to change cybersecurity training for Mac admins - 9to5Mac

6d ago

phoronix.com

Linux Kernel Adds Documentation For What Qualifies As A Security Bug, Responsible AI Use

1w ago

github.blog › changelog

npm trusted publishing now supports CircleCI - GitHub Changelog

…Our team built this using GitHub Copilot agent mode , allowing us to deliver it with minimal engineering time beyond final review and shipping. Our focus remains on strengthening npm security and enhancing…

Apr 6, 2026 · Allison

github.blog › security

Hack the AI agent: Build agentic AI security skills with the GitHub Secure Code Game

…AI & ML Agent pull requests are everywhere. Here’s how to review them. A practical guide to reviewing agent-generated pull requests: what to look for, where issues hide, and how to…

Apr 14, 2026 · Joseph Katsioloudes

windowscentral.com › microsoft

Microsoft Edge loads your passwords into memory in plaintext, but Microsoft says not to worry

…Design choices in this area involve balancing performance, usability, and security, and we continue to review it against evolving threats. Browsers access password data in memory to help users sign in quickly…

May 5, 2026 · Zac Bowden

Discussions and forums

r/sysadmin · u/Less-Philosophy-1978 · 1d ago

Anyone else getting flooded with “AI-built internal app” requests lately?

We had a situation this week where someone from another department scheduled time with IT because they wanted us to “move their app into production.” At first I assumed it was a normal internal tool request. Nope. They h…

r/netsec · u/xmull1gan · 2w ago

Securing CI/CD for an open source project: lessons from Cilium

As a maintainer, this is Cilium's take on how we secure our Github Actions in the OSS project. A few highlights: SHA pinning every GitHub Action Separating trusted vs untrusted code paths in pull_request_target Isolating…

r/kubernetes · u/xmull1gan · 2w ago

Securing CI/CD for an open source project: lessons from Cilium

A lot of “software supply chain security” discussions stay pretty abstract, this is Cilium's take on how we secure our Github Actions in the OSS project. A few highlights: SHA pinning every GitHub Action Separating trust…

r/cybersecurity · u/The_VisibleInvisible · 1w ago

Microsoft France's legal affairs director told the French Senate, under oath, that he can't guarantee European "sovereign cloud" data stays out of US reach

June 10, 2025. Anton Carniaux, Microsoft France's director of public and legal affairs. French Senate inquiry into public procurement and digital sovereignty. Senators asked him point-blank whether he could guarantee tha…

r/homelab · u/sargetun123 · 2w ago

I wrote a free 270-page guide on securing your homelab and I'm giving it away

**UPDATE** I have went through tediously and re-checked everything including fixing some mistakes that were still left in version 1. I went over everything and all the feedback recieved, the second edition includes both …

restofworld.org › 2026

A Mexican surveillance giant you’ve never heard of is now watching the U.S. border

…Some states, including Coahuila, Chiapas, Zacatecas, Guanajuato, Quintana Roo, Michoacán, Morelos, Sonora, and Tamaulipas, rejected our records requests, citing public security concerns and ongoing investigations into contracts that had been issued. Mexico…

Apr 8, 2026 · José Olivares

apple.com › newsroom › 2025 › …

Apple introduces Digital ID, a new way to create and present an ID in Apple Wallet

…From there, they can hold their iPhone or Apple Watch near an identity reader, review the specific information being requested, and use Face ID or Touch ID to authenticate. In the future…

Nov 12, 2025

macrumors.com › 2026 › 05 › …

OpenAI's New Daybreak Platform Uses GPT-5.5 to Find Software Vulnerabilities

…Defenders can bring secure code review, threat modeling, patch validation, dependency risk analysis, detection, and remediation guidance into the everyday development loop so software becomes more resilient from the start. OpenAI CEO…

May 11, 2026 · Juli Clover

techradar.com › pro › security

Another major Linux security flaw revealed — 'Dirty Frag' allows root on all major distros, with no patch or fix available yet

…McAfee Mobile Security Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. TOPICS Sead Fadilpašić LATEST ARTICLES 1…

May 8, 2026 · Sead Fadilpašić

phoronix.com › news

New NTFS File-System Driver Submitted For Linux 7.1

…request still leaves NTFS3 within the kernel source tree should anyone still have a preference to that existing driver. Linux 7.2 Expected To Introduce "OPENAT2_REGULAR" To Avoid Tricking Secure Programs…

Apr 17, 2026

github.blog › ai-and-ml › github-copilot

Unlocking the full power of Copilot code review: Master your instructions files

…prompting to remove it or change its purpose to be something other than provide an overview of the pull request). Requesting Copilot code review performs tasks outside of code review . (e.g…

Nov 14, 2025 · Ria Gopu