CYBERSECURITY
DPRK Hackers Stole $2B in Crypto in 2025 Despite Fewer Attacks
North Korean state-sponsored hackers stole $2 billion in 2025, a 51% increase year-over-year, targeting Web3 projects and exchanges.
Harvey AI Unveils Agentic SOC Redefining Cybersecurity Standards
Harvey AI introduces an Agentic SOC leveraging autonomous AI agents for proactive threat defense, setting a new benchmark in cybersecurity operations.
OpenAI Details Response to TanStack Supply Chain Attack
OpenAI responds to TanStack npm supply chain attack, outlines macOS app update deadline, and details new security measures.
North Korea Linked to $2B in Crypto Hacks in 2025: CertiK
CertiK reports North Korea stole $2.06B in crypto in 2025, accounting for 60% of global hack losses, funding nuclear programs.
Linux Vulnerability 'Copy Fail' Exposes Crypto Systems to Risk
A new Linux bug, 'Copy Fail,' enables root access with 10 lines of Python, posing potential risks for crypto infrastructure.
Robinhood Phishing Scam Exploits Gmail Trick to Target Users
Hackers exploited Gmail's dot alias feature and flaws in Robinhood's account setup to send verified phishing emails, tricking users into exposing credentials.
HKMA Warns of Phishing Scams Targeting Alipay HK Users
The HKMA has issued a warning about phishing messages and calls impersonating Alipay HK. Users are urged to stay vigilant and report suspicious activity.
US Admiral Calls Bitcoin Key to Cybersecurity and Power Projection
Admiral Samuel Paparo sees Bitcoin as a strategic tool for U.S. cybersecurity and national power, emphasizing its proof-of-work advantages.
NVIDIA Red Team Exposes AI Coding Agent Vulnerability in OpenAI Codex
NVIDIA researchers demonstrate how malicious dependencies can hijack AI coding assistants through AGENTS.md injection, hiding backdoors in pull requests.
Anthropic Launches Claude Opus 4.7 With Enhanced Coding and Cyber Safeguards
Anthropic releases Claude Opus 4.7 with 13% coding benchmark gains, new cybersecurity restrictions, and improved vision capabilities at unchanged API pricing.
Obsidian Notes App Exploited in Crypto Wallet Heist Scheme
Elastic Security Labs uncovers PHANTOMPULSE malware targeting crypto users through Obsidian's community plugins. Attackers use LinkedIn and Telegram for initial contact.
OpenAI Rotates macOS Certificates After Axios Supply Chain Attack
OpenAI responds to North Korea-linked Axios npm compromise by rotating code signing certificates. macOS users must update ChatGPT, Codex apps by May 8.
Anthropic Warns AI-Powered Cyberattacks Will Surge Within 24 Months
Anthropic releases security guidelines as Project Glasswing reveals frontier AI models can now find and exploit vulnerabilities faster than human defenders.
GitHub Actions 2026 Security Roadmap Targets Supply Chain Attacks
GitHub unveils major security overhaul for Actions with dependency locking, egress firewalls, and policy controls to combat rising CI/CD supply chain attacks.
OpenAI Launches Safety Bug Bounty Program Targeting AI Agent Vulnerabilities
OpenAI expands its security efforts with a new Safety Bug Bounty program focused on agentic risks, prompt injection attacks, and data exfiltration in AI products.