For you Ai Security Dev Cloud Hardware Startups Releases General

Top stories

🎧 Today's Briefs Listen by category β†’
AiCloudDevGeneralHardwareReleasesSecurityStartups
5 sources 5 reports 39m ago

Google's appeal against $4.7B EU antitrust fine dismissed by top court

The European Court of Justice upheld a €4.1 billion fine against Google for anti-competitive practices related to Android. This ruling confirms the EU's ongoing scrutiny of major tech firms and their market behaviors, impacting future regulatory actions.

general google antitrust eu regulation
3 sources 3 reports 39m ago

FortiBleed Credential Theft Linked to Ransomware Operations

The FortiBleed campaign has been connected to INC and Lynx ransomware groups, revealing a significant breach affecting Fortinet devices. This connection indicates that stolen credentials from a large-scale operation facilitated numerous ransomware deployments, targeting sectors like manufacturing and technology globally.

security fortibleed ransomware fortinet
3 sources 3 reports 39m ago

CISA Adds Microsoft SharePoint RCE Vulnerability CVE-2026-45659 to KEV List

CISA added CVE-2026-45659, a high-severity remote code execution vulnerability in Microsoft SharePoint Server, to its Known Exploited Vulnerabilities catalog due to active exploitation. This flaw allows authenticated attackers to execute code without elevated privileges, impacting network security for federal agencies required to apply patches by July 4, 2026.

security microsoft sharepoint vulnerability cisa
2 sources 4 reports 39m ago

Blue Origin Probes New Glenn Rocket Explosion Amid Looming NASA Deadlines

The New Glenn rocket exploded on the launch pad at LC-36A in Florida, severely affecting Blue Origin's operations and plans. Investigations into the cause continue, with NASA relying on Blue Origin for critical Artemis Program missions. This incident has raised concerns about the timelines of upcoming NASA lunar missions.

hardware blue origin new glenn artemis space
2 sources 2 reports 39m ago

Ongoing Azure CLI password spray attack compromises 78 Microsoft accounts

A password spray attack on Microsoft's Azure CLI has made over 81 million login attempts, compromising 78 accounts across 64 organizations. The attack utilizes a deprecated OAuth flow to bypass security policies, raising concerns over account protection measures.

security azure oauth passwords
2 sources 2 reports 1d ago

FBI and CISA Warn of Russian Phishing Attacks on Signal and WhatsApp Accounts

The FBI and CISA have issued an updated warning about Russian intelligence phishing campaigns targeting Signal and WhatsApp accounts. Attackers are using Signal Backup Recovery Keys to hijack accounts, and the U.S. is offering a $10 million reward for information on the group responsible. The campaign has compromised thousands of accounts of high-profile targets, including government officials and journalists.

security russia phishing signal hacking
1 source 2 reports 39m ago

Amazon launches $1 billion AI-focused forward-deployed engineer organization

Amazon Web Services has established a new $1 billion internal organization for forward-deployed engineers (FDE) to assist companies in deploying AI solutions. This initiative aims to enhance customer self-sufficiency by embedding engineers within client companies for customized support during AI integration.

ai aws engineering deployment
4 sources 4 reports 39m ago

Apple Plans New iPad Pro and Entry-Level MacBook Pro Launches in 2024

Apple is reportedly preparing to release an entry-level MacBook Pro and new iPad Pro models in the first half of 2024. The MacBook Pro will align with upcoming touch screen models, while the iPad Pros will feature faster processors. As Apple transitions leadership and addresses supply chain issues, these updates focus on enhancing product capabilities.

releases apple macbook ipad hardware
9 sources 10 reports 39m ago

Trump Administration Lifts Export Restrictions on Anthropic AI Models Mythos 5 and Fable 5

The US government lifted export restrictions on Anthropic's AI models, Mythos 5 and Fable 5, allowing global access. These restrictions were initially imposed due to security concerns after a jailbreak incident. The decision was influenced by Anthropic's collaboration with the government on safety measures, enhancing the AI models' cybersecurity protocol.

ai anthropic cybersecurity mythos government
5 sources 6 reports 39m ago

Sony to Halt Production of Physical PlayStation Game Discs by 2028

Sony announced it will cease production of physical PlayStation game discs by January 2028, transitioning to an all-digital gaming model. This decision reflects a growing consumer preference for digital purchases, as over 80% of PS4 and PS5 game sales are digital. However, the move raises concerns over game preservation and consumer rights.

general playstation digital gaming sony
1 source 1 report 39m ago

NVIDIA and Partners Invest in U.S. Manufacturing and AI Infrastructure

NVIDIA and its partners are investing in American manufacturing and supply chains to enhance U.S. technological infrastructure. The initiative aims to produce advanced semiconductors and AI systems domestically, fostering economic growth and job creation across multiple states.

hardware nvidia manufacturing semiconductors ai
4 sources 4 reports 39m ago

Google DeepMind Launches Cost-Effective and Fast Image Model: Nano Banana 2 Lite

Google DeepMind has launched the Nano Banana 2 Lite, a cost-effective and speedy image-generation model under the Gemini 3.1 family. It generates images in about 4 seconds, with a production cost of $0.034 per 1,000 images, ideal for high-volume and rapid prototyping workflows. The Nano Banana 2 Lite offers nearly the same output quality as its non-Lite counterparts, though it struggles with small text and infographics.

ai google image-generation deepmind imaging
1 source 1 report 39m ago

Google DeepMind announces $10M funding for multi-agent AI safety research

Google DeepMind has announced a new funding initiative of up to $10 million for research on multi-agent AI safety. This funding aims to understand and manage the risks associated with interactions among AI agents as they become more widespread, which is critical for ensuring safety and predictability in AI systems.

ai research safety
1 source 1 report 39m ago

Google Gemini 3.5 Live Translate Offers Real-Time Voice Translation

Google has launched Gemini 3.5 Live Translate, enhancing speech-to-speech translation for over 70 languages. The model allows for continuous translation without pauses, significantly improving real-time multilingual communication.

ai google translation language
1 source 1 report 39m ago

Microsoft announces Azure Cobalt 200 VMs with 50% performance improvement for AI

Microsoft's Azure Cobalt 200 Arm-based VMs provide a 50% performance boost over the Cobalt 100, tailored for agentic AI workloads. This launch signals a shift in cloud architecture due to increased customer demand for compute in AI applications.

cloud azure ai vm
1 source 2 reports 12h ago

Exploitation of Langflow RCE Vulnerability Targets AI Endpoints for Monero Mining and AI-Driven Ransomware Attacks

The Langflow remote code execution vulnerability (CVE-2026-33017) is actively exploited to deploy Monero miners and automate ransomware attacks using AI. The attacks highlight vulnerabilities in exposed AI applications and the evolving threat landscape, as AI agents can execute complex attacks independently.

security langflow rce monero malware
1 source 1 report 12h ago

New Android malware silently infects billions of devices via Google

A new Trojan horse malware disguised as 'Android Developer Verifier' has infected around 4 billion Android devices running version 8 or higher. It operates in the background with root privileges, preventing users from removing it and blocking access to software from unregistered developers.

security android malware google
1 source 1 report 19h ago

Serious Flaw in Argo CD Repo-Server Allows Remote Code Execution

An unpatched flaw in Argo CD's repo-server allows unauthenticated attackers to execute code, potentially taking over Kubernetes clusters. Synacktiv, which discovered the issue, reports that the vulnerability remains unaddressed nearly 18 months after it was reported.

security argo kubernetes vulnerability
1 source 1 report 19h ago

Google Announces AI Updates Including Gemma 4 12B and Android 17

In June 2026, Google unveiled significant AI advancements including the Gemma 4 12B model and Android 17. These developments aim to create a more integrated AI environment that enhances productivity across various fields by allowing AI assistance to function seamlessly on personal devices.

ai google android machine learning
1 source 1 report 19h ago

Cursor AI Code Editor Flaws Could Allow Command Execution via Prompt Injection

Two critical vulnerabilities in Cursor, tracked as CVE-2026-50548 and CVE-2026-50549, could enable command execution outside the editor's safety sandbox, affecting many Fortune 500 companies. The flaws, identified by Cato AI Labs and rated 9.8/10 in severity, can be exploited through prompt injection without user interaction, necessitating an immediate software update to the patched version 3.0.

security vulnerabilities cursor ai
1 source 2 reports 19h ago

Critical Vulnerability in Progress Kemp LoadMaster Enables Root Command Execution

A critical vulnerability (CVE-2026-8037) in Progress Kemp LoadMaster permits unauthenticated root command execution via API requests. Patches are released to mitigate the CVSS 9.8 flaw. Reports indicate active exploitation attempts, causing security concerns among users.

security vulnerability loadmaster cve progress
1 source 1 report 19h ago

AI-Generated Ransomware Discovered Exploiting Chromium API on Windows and Android

A new ransomware artifact created by the AI model DeepSeek combines theoretical attacks with real browser functionality, enabling browser-based ransomware on Windows and Android. This marks the first identified practical attack chain of its kind, indicating a significant shift in the cybersecurity threat landscape.

security ransomware cybersecurity ai malware
1 source 1 report 1d ago

Realta Fusion generates electricity from fusion reaction, marking industry milestone

Realta Fusion conducted an experiment demonstrating electricity generation directly from its fusion device, WHAM, which successfully powered a lightbulb. This marks the first time a private company has publicly achieved this, potentially advancing the profitability of fusion power through higher energy efficiency.

general fusion energy startups innovation
1 source 1 report 1d ago

GuardFall Exploits Decades-Old Shell Injection Risks in AI Coding Agents

New research from Adversa AI reveals that the GuardFall vulnerability allows bypassing safety checks in AI coding agents. This poses risks of executing malicious shell commands with full account access across multiple popular open-source agents.

dev ai security
1 source 1 report 1d ago

AirDrop and Quick Share Vulnerabilities Found, Affecting Millions of Devices

Researchers discovered six security flaws in Apple's AirDrop and Samsung's Quick Share, enabling attackers nearby to crash file-sharing services. Apple has already patched one of the identified vulnerabilities, but others remain under investigation, impacting potentially five billion devices globally.

security airdrop file-sharing vulnerabilities
1 source 1 report 1d ago

Critical Flaw CVE-2026-46817 in Oracle E-Business Suite Exploited

A critical vulnerability in Oracle E-Business Suite, CVE-2026-46817, is now being actively exploited. Impacting versions 12.2.3 to 12.2.15, the flaw allows unauthenticated attackers to take control of Oracle Payments, necessitating immediate patching for affected instances.

security oracle vulnerability exploit
1 source 1 report 1d ago

South Korea invests $1T in memory chips and humanoid robots by 2028

South Korea plans to invest $1 trillion in memory chip production and humanoid robot deployment by 2028. This initiative aims to address global memory chip shortages and advance AI infrastructure amid rising demand.

startups semiconductors ai robots south korea
1 source 1 report 1d ago

Supreme Court Rules Government Requires Warrant for Geofence Warrants

The Supreme Court ruled that government access to a user’s location history requires a warrant. This ruling underscores the Fourth Amendment's protections for digital privacy, limiting law enforcement's ability to utilize geofence warrants without substantial proof of necessity.

general supreme court geofence warrants privacy location tracking
1 source 1 report 1d ago

Mustang Panda Exploits Zoho WorkDrive in Campaign Against Indian Government

The Mustang Panda group has launched campaigns targeting the Indian government, utilizing Zoho WorkDrive to transmit commands and steal data. This approach leverages legitimate service traffic to mask malicious activities and is part of broader espionage efforts aimed at India's hydropower initiatives and defense relations with Taiwan.

security mustang panda zoho malware espionage
1 source 2 reports 1d ago

DirtyClone Vulnerability in Linux Kernel Allows Local Root Access Exploits

The DirtyClone vulnerability (CVE-2026-43503) affects the Linux kernel, allowing local users to gain root privileges using cloned network packets. This flaw poses significant security risks in environments like multi-tenant clouds and Kubernetes clusters. The patch was released, and users are advised to update their systems immediately.

security linux vulnerability kernel malware
1 source 1 report 1d ago

Microsoft Removes 119 Malicious Edge Extensions Involved in Malware Operation

Microsoft has removed 119 Edge extensions from its Add-ons store that concealed malware within images and fonts, compromising user credentials and facilitating ad fraud. The extensions, installed by up to 2.6 million users, utilized steganography to hide malicious code, operating undetected for years.

security malware edge extensions
1 source 1 report 1d ago

Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw

A public proof-of-concept has been released for CVE-2026-55200, a critical flaw in libssh2 that may allow memory corruption and code execution for connected clients. This vulnerability affects all versions up to 1.11.1, posing significant risks as libssh2 is widely used in various applications and systems.

security libssh2 cve-2026-55200 ssh flaw
1 source 1 report 1d ago

Hijacked npm and Go Packages Deploy Python Infostealer via VS Code Tasks

Cybersecurity researchers have identified hijacked npm and Go packages that deploy a Python-based infostealer on compromised systems. This method utilizes a concealed VS Code task to execute malware upon opening a project folder, facilitating data theft and persistent access.

security cybersecurity malware npm vscode
1 source 1 report 4d ago

China's LineShine crowned world's fastest supercomputer, surpassing El Capitan

China's supercomputer LineShine has become the fastest globally, reclaiming the title for the first time since 2018. This development is significant in light of ongoing US trade restrictions on high-powered computing components, highlighting China's ability to innovate despite challenges.

general china supercomputing technology trade
1 source 2 reports 4d ago

Tesla Settles FSD Crash Lawsuit Amid Ongoing Federal Investigation

Tesla has settled a lawsuit concerning a fatal crash involving its Full Self-Driving (FSD) system while federal investigations into the system's safety continue. The National Highway Traffic Safety Administration is examining if FSD can adequately handle low visibility conditions, after several incidents, potentially affecting future Tesla recalls or regulations.

security autonomous fsd investigation lawsuit
1 source 1 report 4d ago

Anonymous GitHub user releases unpublished zero-days for major software

An anonymous GitHub account has begun releasing previously undisclosed zero-day vulnerabilities in popular software, including Floci and FFmpeg. The account claims to utilize an AI-driven fuzzing workflow and intends to share serious vulnerabilities, impacting software security practices.

security ai github vulnerabilities
1 source 1 report 4d ago

Russian hackers identified as responsible for $2.5B Jaguar Land Rover breach

A cyberattack on Jaguar Land Rover (JLR) last year has been traced to Russian hackers. The breach caused production delays and significant economic losses, prompting a Β£1.5 billion government bailout.

security cybersecurity hack jaguarlandrover russianhackers
1 source 1 report 4d ago

Linux pedit COW Exploit Allows Root Access via Cached Binary Poisoning

A critical flaw in the Linux kernel's traffic-control subsystem allows unprivileged users to gain root access on vulnerable systems. The exploit targets the memory cache of setuid binaries, enabling attackers to inject and execute malicious code while bypassing file integrity checks.

security exploits kernel linux
1 source 2 reports 4d ago

CISA Warns of Exploited Flaws in Lantronix EDS5000 and PTC Windchill

The CISA has issued alerts concerning the exploitation of critical vulnerabilities in Lantronix EDS5000 and PTC Windchill systems. The Lantronix flaw allows code execution with escalated privileges, while the Windchill vulnerability enables remote code execution. Both alerts urge immediate patching to mitigate risks posed by these active threats.

security cisa cybersecurity exploit ptc
1 source 1 report 4d ago

Miasma Malware Compromises npm Packages and GitHub Actions

Researchers identified a supply chain attack involving Miasma malware targeting multiple npm packages and GitHub Actions. The attack compromises developer credentials to propagate malware across various software ecosystems, posing significant security risks.

security github malware npm supply-chain
More stories β†’