Wrongful Arrest Exposes Failures in One of the Oldest Police Face-Recognition Tools in the US
A Florida man was wrongfully arrested after police relied on an inaccurate match from the decades‑old REID facial‑recognition system, despite the suspect living over 300 miles from the crime scene. The arrest, tied to an alleged child‑luring charge, was later dismissed when the mismatch was uncovered. The incident sparked a civil‑rights lawsuit demanding damages and algorithmic transparency. It highlights persistent accuracy problems in one of the nation’s longest‑used police biometric tools.
Websites Can Now Spy on You Through Your Hard Drive
Researchers have unveiled a new side‑channel attack called FROST that lets websites infer SSD activity from JavaScript running in the browser. By measuring subtle timing differences in read/write operations, malicious sites can infer files stored on a user’s hard drive...
The AI Era Is Creating a Bug Hunting Arms Race
The rise of agentic AI models is flooding bug‑bounty programs with unprecedented numbers of vulnerability reports, prompting companies to rethink payout structures. Researchers like Joseph Thacker report three‑fold increases in submissions, while firms such as Google anticipate spending up to...
A Hacker Group Is Poisoning Open Source Code at an Unprecedented Scale
A cyber‑crime group known as TeamPCP has escalated software supply‑chain attacks to a near‑weekly cadence, compromising hundreds of open‑source tools and extorting victims. In the latest breach, GitHub disclosed that roughly 3,800 of its repositories were poisoned through a malicious...
Foxconn Ransomware Attack Shows Nothing Is Safe Forever
A ransomware group claims to have stolen 8 TB of data from Foxconn, including schematics for customers such as Dell, Google, Apple, and Nvidia. Foxconn confirmed that several North American factories experienced a cyberattack but said production is resuming. The incident...
How to Disable Google's Gemini in Chrome
Google has embedded a 4 GB Gemini Nano on‑device AI model into Chrome, enabling local scam detection and developer APIs. Users can now turn off the feature through Settings → System → On‑device AI, which stops further downloads and updates. If the model is manually deleted,...
Hackers Hate AI Slop Even More Than You Do
A new study of nearly 98,000 AI‑related posts on underground cybercrime forums shows low‑level hackers are pushing back against the flood of generative‑AI content. While sophisticated threat actors continue to weaponize AI for code generation and social‑engineering, most rank‑and‑file offenders...
Disneyland Now Uses Face Recognition on Visitors
Disney announced that guests at Disneyland and Disney California Adventure can choose to enter a dedicated lane equipped with face‑recognition technology. The system creates a numeric facial template that is retained for up to 30 days, after which it is...
Why Sharing a Screenshot Can Get You Jailed in the UAE
The United Arab Emirates is enforcing its cyber‑crime law, especially Article 52, to punish the spread of false or destabilising online content during emergencies. Minimum penalties jump from one year in prison and a $27,000 fine to two years and $54,000...
The Race Is on to Keep AI Agents From Running Wild With Your Credit Cards
The FIDO Alliance announced the creation of two working groups, backed by Google and Mastercard, to develop industry standards that secure payments and other transactions performed by AI agents. The initiative will build on Google’s Agent Payments Protocol (AP2) and...
Discord Sleuths Gained Unauthorized Access to Anthropic’s Mythos
A group of Discord users managed to infiltrate Anthropic's highly restricted Mythos Preview AI model by analyzing data from a recent Mercur breach and guessing the model’s online location. Leveraging existing permissions from work with an Anthropic contractor, they also...
Newly Deciphered Sabotage Malware May Have Targeted Iran’s Nuclear Program—And Predates Stuxnet
Researchers at SentinelOne have reverse‑engineered Fast16, a stealthy sabotage malware first compiled in 2005, making it the oldest known state‑sponsored code of its kind. The malware silently spreads across networks and subtly corrupts calculations in high‑precision simulation tools such as...
The Weird, Twisting Tale of How China Spied on Alysa Liu and Her Dad
U.S. authorities uncovered a Chinese espionage operation that targeted Olympic figure‑skater Alysa Liu and her father, Arthur Liu, by employing veteran Matthew Ziburis as an illegal agent. Ziburis, paid more than $100,000, conducted surveillance and intimidation on behalf of a...
Telegram Is Still Hosting a Sanctioned $21 Billion Crypto Scammer Black Market
Telegram continues to host Xinbi Guarantee, a Chinese‑language crypto‑scam black market that has facilitated roughly $21 billion in illicit transactions. Despite a UK government sanction in March 2026 labeling Xinbi a human‑trafficking facilitator, the platform has not removed the marketplace, which...
Meta Is Warned That Facial Recognition Glasses Will Arm Sexual Predators
A coalition of more than 70 civil‑rights and advocacy groups has urged Meta to abandon “Name Tag,” a facial‑recognition feature planned for its Ray‑Ban and Oakley smart glasses. The technology would let wearers instantly identify anyone with a public Instagram...