SecurityWeek

NPM 12 Will Change Script Execution Behavior to Prevent Supply Chain Attacks

In response to recent software supply chain attacks, NPM version 12 is blocking the automatic script execution at install.
SecurityWeek

Anthropic Says It Has Taken Its Latest AI Models Offline to Comply With New Export Controls

Anthropic takes Fable 5 and Mythos 5 offline to comply with a directive from the Trump administration to prevent use by ...
SecurityWeek

In Other News: Google Security Layoffs, AudiA6 Takedown, $400 Million Coupang Fine

ICS exposure remains flat as attack surface widens, Microsoft incident response playbook for AI, IBM and AT&T accused of hack cover-ups.
SecurityWeek

Iranian Cyber Group Handala Claims Cal Water Hack

Iran-linked hacking group Handala has leaked 5GB of data allegedly stolen from Cal Water, including PII and administrative ...
SecurityWeek

Industry Reactions to Claude Fable 5: Feedback Friday

Industry professionals comment on various aspects of Fable 5, including dual-use capabilities, safeguards, and tiered access.
SecurityWeek

Anthropic Disputes Fable 5 AI Jailbreak

Anthropic has disputed allegations of a prompt-based jailbreak affecting its recently launched Claude Fable 5 AI model.
SecurityWeek

Ivanti Sentry Exploitation Attempts Hitting Honeypots

CVE-2026-10520, a critical-severity vulnerability in Ivanti Sentry, was flagged as exploited based on activity observed on ...
SecurityWeek

Chrome 149 Update Patches 28 Vulnerabilities

The latest Chrome update patches 28 critical and high-severity vulnerabilities, including a dozen use-after-free bugs.
SecurityWeek

Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters

PeopleSoft vulnerability mitigated by Oracle this week has been exploited by ShinyHunters as a zero-day to steal data from ...
SecurityWeek

Alert Fatigue Is Becoming a Security Threat of Its Own

Continuous streams of low-value alerts are exhausting SOC teams, increasing the risk of missed threats, slower response times ...