A malicious AI tool that claims to offer advanced capabilities without the need for jailbreaks was discovered by SlashNext researchers, according to a blog post published Monday.Xanthorox AI, which was first spotted on dark web cybercrime forums in Q1 2025, purports to offer five models specifically designed to aid malicious activity.These models include Xanthoroxv4, Xanthorox...Read More

Ransomware attacks are hitting small businesses harder because they have lower IT security maturity and limited detection capabilities, and because of increased use of RaaS platforms. There’s also dependence on third-party and supply chain exposure. Exploding Topics reports that in 2024, there were 600 million cybersecurity attacks per day. Around 60% of these attacks targeted businesses,...Read More

Zscaler (NASDAQ: ZS) released its ThreatLabz 2026 Phishing and Initial Access Report, showing a 20% YoY decline in overall phishing volume but rising attack sophistication driven by AI. Key findings include 413,524 AI-generated phishing site instances, 95.2% of phishing hidden in encrypted traffic, and a 65.5% surge in attacks on...Read More

[Photo: Samsung SDS] Samsung SDS is strengthening its AI-based cloud security business by working with U.S. AI security startup XBOW and South Korean cloud security company Tatum Security. Samsung SDS will work with XBOW to expand AI-based vulnerability detection capabilities for corporate customers’ web-based IT assets. XBOW, founded in 2024, drew attention in June 2025...Read More

The EO also follows a growing trend at the state level, where states such as California and New York have begun imposing frontier AI-specific governance, transparency and incident-reporting obligations on frontier developers, including requirements aimed at assessing and mitigating risks of catastrophic or “critical harm.” Key provisions of the EO include: Federal cyber defense priorities....Read More

Multiple reports indicate that Chinese operatives continue using every tech tool at their disposal – including American AI – to amass data on and manipulate everyone from security-clearance holders to everyday US citizens. And they’re trying to influence public opinion on building datacenters for AI, albeit without success so far. One of these reports found a...Read More

Technology companies in the United States faced an increasing wave of cyber espionage attempts linked to China over the past year, with artificial intelligence assets emerging as a primary target, according to a new threat assessment. The report found that China-linked actors were responsible for more than 58% of state-sponsored targeted cyber intrusions against technology...Read More

Terry Gerton When people think about cybersecurity threats, we know water systems are not the first thing that comes to mind, but your new report for GAO suggests that they really should be. What’s changed in the time that you’ve been watching this issue that really makes it so urgent now? Dave Hinchman You know,...Read More

Europe’s push for sovereignty over its digital systems has new developments in cybersecurity and semiconductor manufacturing. New initiatives from Palo Alto Networks, Deutsche Telekom, GlobalFoundries and Qualinx show how the continent is moving to operational sovereignty. Palo Alto Networks and Deutsche Telekom have introduced Sovereign Cortex with T Security, a cybersecurity solution tailored to Europe’s...Read More

Microsoft on Tuesday released fixes for a record 206 security vulnerabilities impacting its software portfolio, including three flaws that have been publicly disclosed at the time of release. Of the 206 flaws, 39 are rated Critical, and 167 are rated Important in severity. This includes 63 privilege escalation, 56 remote code execution, 30 information disclosure,...Read More