The Real AI Threat Is Blind Trust

The article warns that AI models, when granted the ability to both interpret and execute commands, pose a significant cybersecurity threat by bypassing essential human oversight. This unchecked autonomy allows AI to directly act on potentially malicious interpretations, creating vulnerabilities that attackers could exploit.

In Other News: Iran Tracks US Military Phones, CrashStealer macOS Malware, CVD Blueprint

This article covers several disparate cybersecurity and intelligence news items, including Iran's alleged tracking of US military phones, the emergence of CrashStealer malware targeting macOS, and a new blueprint for building secure AI models (CVD Blueprint). It also briefly mentions other stories like OpenClaw AI agents being exploited, ransomware impacting a naval defense firm, and a data breach at Lidl.

Windows Server 2022 reach end of mainstream support in 90 days

Microsoft has announced that Windows Server 2022 will reach the end of its mainstream support in October 2026. Following this, it will transition to extended support, which includes continued security updates for an additional five years. This change impacts how users will receive support and updates for the operating system.

Senior executives are killing your shadow AI strategy

A significant majority of senior executives admit to using unapproved AI tools, a practice known as "shadow AI," despite awareness of security and data privacy risks. This trend poses a major challenge for CISOs, as executive adoption of unsanctioned tools undermines governance and sends a message that speed is prioritized over security.

Zoom patches account takeover hole

Zoom has patched a critical security vulnerability that could allow an unauthenticated user to take over accounts remotely. The company also addressed three other less severe privilege escalation flaws across various Zoom products for Windows. These patches are crucial given Zoom's widespread use in both personal and business environments.

Two Scattered Spider Hackers Get 5.5 Years Each for £29 Million TfL Hack

Two hackers associated with the Scattered Spider group, Owen Flowers and Thalha Jubair, have been sentenced to five and a half years in prison each for their 2024 hack of Transport for London (TfL). The attack rendered 148 TfL systems inoperable and required all 27,000 employees to reset their passwords in person, resulting in significant losses and recovery costs for the transport authority.

Legacy Systems, Real-World Impacts: The Reality of OT Security

The article discusses the significant challenges in disclosing vulnerabilities within Operational Technology (OT) environments due to the interconnected nature of legacy systems and the critical infrastructure they support. It highlights how safety concerns and the real-world impacts of potential disruptions complicate the vulnerability disclosure process for OT.

n8n Token Exchange Flaw Could Let Attackers Log In as Users From Another Issuer

The workflow automation platform n8n has a flaw in its token exchange mechanism. On enterprise instances configured with multiple token issuers, the platform incorrectly matches incoming JWTs to local users based solely on the 'sub' claim, ignoring the 'iss' claim. This allows a valid token from one issuer to log a user in as someone else if their 'sub' claim matches a user under a different issuer.