Cybersecurity & Tech Innovation parent category
The Download: AI’s retracted papers problem Summary Recent investigations show that large language models and chatbots can draw on retracted scientific papers when answering questions — sometimes without flagging that the source was withdrawn. In one study, researchers quizzed ChatGPT using information from 21 retracted medical-imaging papers: the model referenced retracted work in five answers […]
Iran-Linked Hackers Target Europe With New Malware Summary Check Point Software warns that an Iran-linked cyber-espionage group tracked as “Nimbus Manticore” (overlapping with UNC1549/Smoke Sandstorm) has broadened operations into Western Europe. The campaign targets defence manufacturing, telecommunications and aviation firms in Denmark, Portugal and Sweden using updated implants — MiniJunk (a persistent, obfuscated backdoor) and […]
15 Years of Zero Trust: Why It Matters More Than Ever Summary John Kindervag — the analyst who coined the term zero trust — reflects on how the model moved from a contrarian idea to a dominant security strategy over the past 15 years. He explains the core principle — never trust, always verify — […]
2025 Proxy Season Review: Compensation-Related Matters Summary The 2025 U.S. annual meeting proxy season (meetings through 30 June 2025) showed continued strong shareholder support for executive pay and equity plan proposals, with average say-on-pay support at c.90% (S&P 500) and 91% (Russell 3000). Failed say-on-pay votes remained rare (5 S&P 500; 27 Russell 3000) and […]
Ike Haxton Breaks Triton Curse to Win First Title at 34th Final Table Summary After 64 cashes and 34 final-table appearances on Triton events, Isaac “Ike” Haxton finally captured his maiden Triton title at the Triton Super High Roller Series Jeju II. Haxton outlasted a record field in the $100,000 Pot-Limit Omaha main event, defeating […]
‘ShadowLeak’ ChatGPT Attack Allows Hackers to Invisibly Steal Emails Summary Researchers at Radware discovered a technique called “ShadowLeak” that lets attackers hide HTML-based instructions inside emails so that when a user asks ChatGPT (or a similar agent) to process or summarise their inbox, the cloud-based AI follows the hidden instructions and exfiltrates data to an […]
M-PESA is upgrading its platform on Sept. 22; here’s what customers can expect after Summary Safaricom will perform a major migration of M-PESA to a new core called Fintech 2.0 on 22 September. The telco plans a three-hour overnight window during which M-PESA services (payments, airtime purchases and related functions) will be offline while customer […]
Critical Azure Entra ID Flaw Highlights Microsoft IAM Issues Summary A critical elevation-of-privilege vulnerability (CVE-2025-55241) in Microsoft’s Azure AD Graph API could have allowed attackers to impersonate users — including global administrators — across tenants. Discovered by Dirk-jan Mollema, the flaw leverages an authentication failure in the legacy Azure AD Graph API together with undocumented, […]
7 Lessons for Securing AI Transformation From Former CIA Digital Guru Summary Jennifer Ewbank, former deputy director for Digital Innovation at the CIA, describes seven practical lessons from leading the agency’s AI-driven transformation. Faced with massive data deluge and high-risk missions, the CIA reorganised its digital leadership, embedded cybersecurity into development, emphasised cross-domain education, and […]
Iranian State APT Blitzes Telcos & Satellite Companies Summary Researchers report that an Iran-linked APT cluster — Subtle Snail (aka UNC1549), associated with Charming Kitten — has recently stolen sensitive data from 11 global telecommunications firms, satellite operators and aerospace suppliers. The group has been active for several years across the Middle East, Europe and […]
