Two security vulnerabilities disclosed in the Chainlit framework have drawn attention to the growing risks posed by traditional web flaws in AI application environments. The issues, discovered by Zafran Research and tracked as CVE-2026-22218 and CVE-2026-22219, show how weaknesses in… Read More "Chainlit Security Flaws Highlight Infrastructure Risks in AI Apps"
The proliferation of AI data, evolving regulatory requirements and risk of large language model (LLM) collapse will help to drive take up of zero trust approaches to data governance in the next two years, Gartner has claimed. The analyst firm warned… Read More "Risk of AI Model Collapse to Drive Zero Trust Data Governance"
A new national fraud reporting service has launched in the UK, promising to transform how businesses and individuals notify law enforcement about offenses, and how police respond. Report Fraud replaces the much-maligned Action Fraud service. Run, like its predecessor, by… Read More "Report Fraud Promises to Streamline Fight Against Economic Crime"
A new community-driven, European-headquartered alternative to the US-led Common Vulnerabilities and Exposures (CVE) program has been welcome by security experts. The open source Global Cybersecurity Vulnerability Enumeration (GCVE) initiative brings together vulnerability information from over 25 public sources. These include GCVE Numbering… Read More "Experts Welcome Global Cybersecurity Vulnerability Enumeration Launch"
These new flaws underscore the reason why browser engines remain among the most attractive targets for attackers, noted Jack Bicer, director of vulnerability research at Action1. “With active exploitation already confirmed, organizations that delay updates risk exposing users to drive-by… Read More "Google warns of two actively exploited Chrome zero days"
The EU Commission has launched a new cybersecurity package that includes its formal proposal for an amendment of the current Cybersecurity Act (CSA). The CSA is a regulation adopted by the EU Parliament and Council in March 2019 to strengthen… Read More "EU Unveils Proposed Update to Cybersecurity Act"
Ravie LakshmananMar 13, 2026Encryption / Data Protection Meta has announced plans to discontinue support for end-to-end encryption (E2EE) for chats on Instagram after May 8, 2026. “If you have chats that are impacted by this change, you will see instructions… Read More "Meta to Shut Down Instagram End-to-End Encrypted Chat Support Starting May 2026"
VoidLink, the recently discovered Linux malware which targets Linux-based cloud servers, was likely almost entirely generated by AI, researchers have said. First detailed by cybersecurity analysts at Check Point last week, the new malware is made up of over 30… Read More "VoidLink Linux Malware Was Built Using an AI Agent, Researchers Reveal"
A suspected China-based cyber espionage operation has targeted Southeast Asian military organizations as part of a state-sponsored campaign that dates back to at least 2020. Palo Alto Networks Unit 42 is tracking the threat activity under the moniker CL-STA-1087, where… Read More "Chinese Hackers Target Southeast Asian Militaries with AppleChris and MemFun Malware"
A large-scale loan phishing operation in Peru has been uncovered, showing how cybercriminals are abusing fake loan applications to steal valid card numbers and PIN codes from unsuspecting users. Active since 2024, the campaign impersonates well-known financial institutions and relies… Read More "Peruvian Loan Scam Harvests Cards and PINs via Fake Applications"
