Tag: ai

Cyber Fraud Cost Americans $17 Billion in 2025, AI Scams Make List: FBI

Apr 7, 2026 11:54 PM

Tags: ai, breach, business, crime, crimes, cyber, email, fraud, scam

Cyber-driven fraud from investment schemes to business email compromise (BEC) to confidence and romance scams accounted for almost 85% of the losses Americans suffered through fraud crimes last year, totaling an eye-watering $17.7 billion in money stolen, according to the FBI. It also made up 45% of all the fraud-related complaints to the.. First seen…
Anthropic Unveils Restricted AI Cyber Model in Unprecedented Industry Alliance

Apr 7, 2026 10:54 PM

Tags: ai, apple, cyber, cybersecurity, google, infrastructure, microsoft

Anthropic introduced a new cybersecurity initiative that reflects both the promise and the deep unease surrounding AI, enlisting a rare alliance of industry heavyweights including Amazon, Microsoft, Apple, Google, and NVIDIA. The program, known as Project Glasswing, brings these firms together with cybersecurity and infrastructure partners to test a powerful AI model designed to identify..…
Grafana Patches AI Bug That Could Have Leaked User Data

Apr 7, 2026 10:54 PM

Tags: ai, data, data-breach, malicious

By hiding malicious instructions on an attacker-controlled Web page, AI could ingest orders as benign and return sensitive data to the attacker’s server. First seen on darkreading.com Jump to article: www.darkreading.com/application-security/grafana-patches-ai-bug-leaked-user-data
prompted 2026 When Passports Execute: Exploiting AI Driven KYC Pipelines

Apr 7, 2026 9:54 PM

Tags: ai, exploit, threat

Author, Creator & Presenter: Sean Park, Principal Threat Researcher, TrendAI Our thanks to [un]prompted for publishing their Creators, Authors and Presenter’s outstanding [un]prompted 2026 AI Security Practitioner content on the Organizations’) YouTube Channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/unprompted-2026-when-passports-execute-exploiting-ai-driven-kyc-pipelines/
Cybersecurity in the Age of Instant Software

Apr 7, 2026 9:54 PM

Tags: ai, cybersecurity, software, update, vulnerability

AI is rapidly changing how software is written, deployed, and used. Trends point to a future where AIs can write custom software quickly and easily: “instant software.” Taken to an extreme, it might become easier for a user to have an AI write an application on demand”, a spreadsheet, for example”, and delete it when…
5 ways to strengthen identity security and improve attack resilience

Apr 7, 2026 9:54 PM

Tags: access, ai, api, attack, authentication, automation, cloud, control, corporate, credentials, data, detection, endpoint, identity, infrastructure, least-privilege, login, mfa, microsoft, monitoring, msp, network, password, phishing, ransomware, resilience, risk, service, soc, tactics, threat, unauthorized, update, vulnerability, zero-trust

Admin accountsMSP technician accountsCloud infrastructure accountsExternal-facing applicationsRemote access toolsAny MFA deployment is better than none, but phishing-resistant methods offer the strongest protection. Once privileged accounts are enforced, expand MFA to all users over the next 30 days. Doing so reduces the likelihood that compromised credentials lead directly to unauthorized access. 2. Implement privileged access management…
5 ways to strengthen identity security and improve attack resilience

Apr 7, 2026 9:54 PM

Tags: access, ai, api, attack, authentication, automation, cloud, control, corporate, credentials, data, detection, endpoint, identity, infrastructure, least-privilege, login, mfa, microsoft, monitoring, msp, network, password, phishing, ransomware, resilience, risk, service, soc, tactics, threat, unauthorized, update, vulnerability, zero-trust

Admin accountsMSP technician accountsCloud infrastructure accountsExternal-facing applicationsRemote access toolsAny MFA deployment is better than none, but phishing-resistant methods offer the strongest protection. Once privileged accounts are enforced, expand MFA to all users over the next 30 days. Doing so reduces the likelihood that compromised credentials lead directly to unauthorized access. 2. Implement privileged access management…
Anthropic Teams Up With Its Rivals to Keep AI From Hacking Everything

Apr 7, 2026 9:54 PM

Tags: ai, apple, cybersecurity, google, hacking

The AI lab’s Project Glasswing will bring together Apple, Google, and more than 45 other organizations. They’ll use the new Claude Mythos Preview model to test advancing AI cybersecurity capabilities. First seen on wired.com Jump to article: www.wired.com/story/anthropic-mythos-preview-project-glasswing/
Anthropic debuts preview of powerful new AI model Mythos in new cybersecurity initiative

Apr 7, 2026 8:52 PM

Tags: ai, cybersecurity

The new model will be used by a small number of high-profile companies to engage in defensive cybersecurity work. First seen on techcrunch.com Jump to article: techcrunch.com/2026/04/07/anthropic-mythos-ai-model-preview-security/
US cybercrime losses pass $20B for first time as AI boosts online fraud

Apr 7, 2026 8:52 PM

Tags: ai, cybercrime, fraud, scam

Bots are now firmly in the toolbox, helping crooks scale old scams First seen on theregister.com Jump to article: www.theregister.com/2026/04/07/cybercrime_losses_reach_alltime_high/
US cybercrime losses pass $20B for first time as AI boosts online fraud

Apr 7, 2026 8:52 PM

Tags: ai, cybercrime, fraud, scam

Bots are now firmly in the toolbox, helping crooks scale old scams First seen on theregister.com Jump to article: www.theregister.com/2026/04/07/cybercrime_losses_reach_alltime_high/
US cybercrime losses pass $20B for first time as AI boosts online fraud

Apr 7, 2026 8:52 PM

Tags: ai, cybercrime, fraud, scam

Bots are now firmly in the toolbox, helping crooks scale old scams First seen on theregister.com Jump to article: www.theregister.com/2026/04/07/cybercrime_losses_reach_alltime_high/
US cybercrime losses pass $20B for first time as AI boosts online fraud

Apr 7, 2026 8:52 PM

Tags: ai, cybercrime, fraud, scam

Bots are now firmly in the toolbox, helping crooks scale old scams First seen on theregister.com Jump to article: www.theregister.com/2026/04/07/cybercrime_losses_reach_alltime_high/
NomShub Vulnerability Chain Exposes Hidden Risks in AI Coding Tools

Apr 7, 2026 8:52 PM

Tags: ai, exploit, risk, tool, vulnerability

NomShub shows how attackers can exploit AI coding tools to turn routine actions into full system compromise. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/nomshub-vulnerability-chain-exposes-hidden-risks-in-ai-coding-tools/
Tech giants launch AI-powered ‘Project Glasswing’ to identify critical software vulnerabilities

Apr 7, 2026 8:52 PM

Tags: ai, software, vulnerability

The program comes as the tech industry races to secure software before similar AI-powered offensive capabilities become too much for defenders to handle. First seen on cyberscoop.com Jump to article: cyberscoop.com/project-glasswing-anthropic-ai-open-source-software-vulnerabilities/
AI, DevSecOps, and the Future of Application Security: The Gartner® Report

Apr 7, 2026 6:51 PM

Tags: ai, application-security, software, supply-chain

<div cla Even as organizations recognize the importance of application security, most still struggle to operationalize it at scale. That gap becomes harder to ignore as development accelerates, AI becomes embedded in workflows, and software supply chains grow more complex. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/ai-devsecops-and-the-future-of-application-security-the-gartner-report/
GrafanaGhost Vulnerability Allows Data Theft via AI Injection

Apr 7, 2026 6:51 PM

Tags: ai, data, injection, theft, vulnerability

GrafanaGhost is a critical vulnerability in Grafana’s AI components that uses indirect prompt injection and protocol-relative URL bypasses to exfiltrate data. First seen on hackread.com Jump to article: hackread.com/grafanaghost-vulnerability-data-theft-via-ai-injection/
prompted 2026 Developing Deploying AI Fingerprints For Advanced Threat Detection

Apr 7, 2026 5:51 PM

Tags: ai, detection, microsoft, software, threat

Author, Creator & Presenter: Natalie Isak, Software Engineer, Microsoft & Waris Gill, Applied Scientist, Microsoft Our thanks to [un]prompted for publishing their Creators, Authors and Presenter’s outstanding [un]prompted 2026 AI Security Practitioner content on the Organizations’) YouTube Channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/unprompted-2026-developing-deploying-ai-fingerprints-for-advanced-threat-detection/
React2Shell vulnerability helps hackers steal credentials, AI platform keys and other sensitive data

Apr 7, 2026 5:51 PM

Tags: ai, attack, breach, cisco, credentials, data, hacker, vulnerability

The stolen information could help the hackers plan follow-up attacks and breach more organizations, Cisco researchers said. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/credential-harvesting-campaign-react2shell-cisco/816726/
RSAC 2026: How AI Is Reshaping Cybersecurity Faster Than Ever

Apr 7, 2026 5:51 PM

Tags: ai, cybersecurity

Dark Reading’s Kelly Jackson Higgins shares insights on the past, present, and future of cybersecurity after attending RSAC 2026 Conference. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/rsac-2026-how-ai-is-reshaping-cybersecurity-faster-than-ever
Human vs AI: Debates Shape RSAC 2026 Cybersecurity Trends

Apr 7, 2026 5:51 PM

Tags: ai, ciso, cybersecurity

As AI dominated RSAC 2026, CISOs and industry leaders debated its role in security, from agentic applications to the challenges of scaling human involvement in decision-making. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/human-vs-ai-debates-shape-rsac-2026-cybersecurity-trends
GrafanaGhost Exploit Bypasses AI Guardrails for Silent Data Exfiltration

Apr 7, 2026 5:51 PM

Tags: ai, data, exploit, flaw, injection

GrafanaGhost chains AI prompt injection and URL flaws to exfiltrate sensitive Grafana data First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/grafanaghost-silent-data/
5 Takeaways from “The Future of Search Discovery: Understanding Agentic Commerce” Webinar

Apr 7, 2026 4:53 PM

Tags: ai

AI agents are reshaping how consumers discover and buy products. Here are 5 takeaways from our recent agentic commerce webinar. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/5-takeaways-from-the-future-of-search-discovery-understanding-agentic-commerce-webinar/
‘GrafanaGhost’ bypasses Grafana’s AI defenses without leaving a trace

Apr 7, 2026 4:53 PM

Tags: ai, corporate, defense, injection

Noma Security researchers used indirect prompt injection to turn Grafana’s own AI into an unwitting courier for sensitive corporate data. First seen on cyberscoop.com Jump to article: cyberscoop.com/grafanaghost-grafana-prompt-injection-vulnerability-data-exfiltration/
Zero”‘click Grafana AI attack can enable enterprise data exfiltration

Apr 7, 2026 3:52 PM

Tags: ai, attack, ciso, control, data, injection, network, risk, update

Real risk or overhyped edge case?: Not everyone is convinced the finding represents a newfound threat. Bradley Smith, SVP and deputy CISO at BeyondTrust, described the underlying technique as “well documented,” noting that indirect prompt injection leading to data exfiltration is a known risk across AI-enabled platforms.”This seems like mostly hype to me,” Smith said,…
AMD’s AI director slams Claude Code for becoming dumber and lazier since last update

Apr 7, 2026 3:52 PM

Tags: ai, github, update

‘Claude cannot be trusted to perform complex engineering tasks’ according to GitHub ticket First seen on theregister.com Jump to article: www.theregister.com/2026/04/06/anthropic_claude_code_dumber_lazier_amd_ai_director/
CUPS Vulnerabilities Could Allow Remote Attackers to Achieve Root-Level Code Execution

Apr 7, 2026 3:52 PM

Tags: access, ai, cyber, flaw, linux, remote-code-execution, vulnerability

A team of AI-driven vulnerability hunting agents directed by security researcher Asim Viladi Oglu Manizada has discovered two critical security flaws in CUPS, the standard printing system for Linux and Unix-like operating systems. When chained together, these vulnerabilities allow an unauthenticated remote attacker to gain unprivileged remote code execution and eventually escalate their access to…
Focusing on the People in Cybersecurity at RSAC 2026 Conference

Apr 7, 2026 3:52 PM

Tags: ai, conference, cybersecurity

AI dominated the RSAC 2026 Conference and showed it’s still humans in cybersecurity who matter most. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/focusing-people-cybersecurity-rsac2026
[Webinar] How to Close Identity Gaps in 2026 Before AI Exploits Enterprise Risk

Apr 7, 2026 2:50 PM

Tags: ai, ciso, exploit, identity, risk, threat

In the rapid evolution of the 2026 threat landscape, a frustrating paradox has emerged for CISOs and security leaders: Identity programs are maturing, yet the risk is actually increasing.According to new research from the Ponemon Institute, hundreds of applications within the typical enterprise remain disconnected from centralized identity systems. These “dark First seen on thehackernews.com…
Over $17bn Lost to Cyber Fraud in the Last Year, Warns FBI

Apr 7, 2026 2:50 PM

Tags: ai, crypto, cyber, fraud, scam, threat

Cryptocurrency scams alone cost victims over $7 billion, while AI-enabled fraud threats are on the rise, says FBI First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/17bn-lost-to-cyber-fraud-warns-fbi/