Ward: Law

434

America’s Cyber Retreat Is Undermining Indo-Pacific Security

A "Cyber Shield" would enable the United States and its Indo-Pacific allies to attribute quickly, act collectively, and stem Beijing’s cyber coercion.
The post America’s Cyber Retreat Is Undermining Indo-Pacific Security appeared first on Just Security.

429

MPs question UK Palantir contracts after investigation reveals security concerns

Journalists find Swiss government rejected company over fears US intelligence might gain access to sensitive dataUK MPs have raised concerns about the government’s contracts with Palantir after an investigation published in Switzerland highlighted allegations about the suitability and security of it…

332

Pirate group Anna's Archive says it has scraped Spotify in its entirety

Anna's Archive, the open-source search engine for shadow libraries, says it scraped Spotify's entire library of music. The group acquired metadata for around 256 million tracks, with 86 million actual songs, and is just under 300TB in total size.
"A while ago, we discovered a way to scrape Spotify a…

322

OpenAI says AI browsers may always be vulnerable to prompt injection attacks

OpenAI says prompt injections will always be a risk for AI browsers with agentic capabilities, like Atlas. But the firm is beefing up its cybersecurity with an 'LLM-based automated attacker.'

312

NIST was 5 μs off UTC after last week's power cut

Comments

224

World’s largest shadow library made a 300TB copy of Spotify’s most streamed songs

Spotify is reportedly investigating how much music Anna’s Archive scraped.

320

Ciphertext Malleability in Lattice-Based KEMs as a Countermeasure to Side Channel Analysis

arXiv:2409.16107v3 Announce Type: replace
Abstract: Due to developments in quantum computing, classical asymmetric cryptography is at risk of being breached. Consequently, new Post-Quantum Cryptography (PQC) primitives using lattices are studied. Another point of scrutiny is the resilience of these…

222

NPM Package With 56K Downloads Caught Stealing WhatsApp Messages

Comments

221

France’s postal and banking services disrupted by suspected DDoS attack

France's postal service, La Poste, said it was hit by a disruptive cyberattack that knocked its services offline.

222

Pirate group Anna’s Archive says it has scraped 86 million songs from Spotify

Spotify says it has identified and disabled the user accounts involved in the scraping.

322

Ontinue warns attackers are abusing Nezha monitoring tool as stealthy remote access trojan

A new report out today from Swiss artificial intelligence-powered managed extended detection and response company Ontinue AG warns of the growing abuse of Nezha, a legitimate open-source server monitoring tool, as a stealthy post-exploration remote access trojan. Nezha, initially developed for the C…

219

Shai Hulud malware turns developers into unwitting distributors in NPM supply chain attacks

A new report out today from managed detection and response company Expel Inc. details a newly identified variant of the Shai Hulud malware that is demonstrating how software supply chain attacks are evolving beyond isolated package compromises into self-propagating campaigns that turn developers the…

210

OpenAI says AI browsers may always be vulnerable to prompt injection attacks

OpenAI says prompt injections will always be a risk for AI browsers with agentic capabilities, like Atlas. But the firm is beefing up its cybersecurity with an "LLM-based automated attacker."

210

Pirate group Anna's Archive says it has scraped Spotify in its entirety

Anna's Archive, the open-source search engine for shadow libraries, says it scraped Spotify's entire library of music. The group acquired metadata for around 256 million tracks, with 86 million actual songs, and is just under 300TB in total size."A while ago, we discovered a way to scrape Spotify at…

208

ServiceNow acquires Armis for $7.75 billion as it bets big on cybersecurity for AI

The deal expands ServiceNow’s reach into cybersecurity as it aims to create an ‘AI control tower.’

223

Amazon blocks 1,800 job applications from suspected North Korean agents

Amazon's chief security officer said North Koreans tried to apply for remote working IT jobs using stolen or fake identities.

222

Your Android phone's most powerful security feature is off by default - turn it on ASAP

One of Google's most critical features is hidden behind a single toggle - turn it on to protect against theft, scams, spam, and more.

213

Cryptanalysis of Pseudorandom Error-Correcting Codes

arXiv:2512.17310v1 Announce Type: new
Abstract: Pseudorandom error-correcting codes (PRC) is a novel cryptographic primitive proposed at CRYPTO 2024. Due to the dual capability of pseudorandomness and error correction, PRC has been recognized as a promising foundational component for watermarking A…

232

Flock Exposed Its AI-Powered Cameras to the Internet. We Tracked Ourselves

Comments

209

Nearly 3.5M affected in University of Phoenix breach tied to Clop-linked Oracle EBS exploit

The University of Phoenix has confirmed a major data breach affecting nearly 3.5 million current and former students, employees, faculty and suppliers, which followed an exploit by the Clop ransomware group in November. Clop is a prolific cybercrime group known for large-scale data-extortion attacks…