Fake North Korean IT Workers Are Rampant on LinkedIn – Security Experts Warn Operatives Are Stealing Profiles to Apply for...
Security Alliance (SEAL) reports that North Korean actors are hijacking authentic LinkedIn profiles to pose as remote IT workers and infiltrate companies worldwide. By leveraging stolen personal data, verified workplace emails and AI‑generated imagery, they pass background checks and secure legitimate credentials. Once hired, they route laptops through "laptop farms" to install malware, exfiltrate intellectual property and divert salaries to fund the regime. Experts warn this marks a structural shift, making identity the primary cyber‑attack surface in remote hiring environments.
Kyndryl Wants to Help Enterprises Keep AI Agents in Line – and Avoid Costly Compliance Blunders
Kyndryl introduced a policy‑as‑code feature that converts corporate rules, regulations, and operational controls into machine‑readable policies for AI agents. The capability, embedded in its Agentic AI Framework, ensures agents act only within pre‑approved boundaries, providing deterministic execution, guardrails, and human‑supervised...
Google Says Hacker Groups Are Using Gemini to Augment Attacks – and Companies Are Even ‘Stealing’ Its Models
Google Threat Intelligence Group, together with DeepMind, released an AI Threat Tracker revealing that state‑backed APT groups are weaponizing Google’s Gemini models to research targets, craft multilingual phishing, and generate code for attacks. Notable actors include China‑based Temp.HEX, UNC6148 targeting...
