Citizen Lab director Ron Deibert gave a keynote speech about the Greek spyware scandal at an event hosted by Eteron think tank in Athens in May.
citizenlab.ca
As companies adopt AI, many insurance firms are explicitly excluding AI risks, while others are forging ahead to create the right framework. What risks can firms reasonably manage?
Attackers are actively exploiting CVE-2026-5027, a high-severity path traversal vulnerability in the AI development platform Langflow, to write arbitrary files on exposed servers.
Pattaya Mail reports: A civil society group has petitioned a parliamentary committee to investigate a massive data breach after a government agency leaked the national ID numbers and healthcare details of approximately 67.1 million people. Thanarat Kuawattanaphan, a software expert leading the group, submitted the petition to Alongkot Maneekat, chairman of the House Committee on...
Source
databreaches.net
Posted by bumsrakete on Jun 10 ## Summary
An unprivileged local user on a default FreeBSD >= 13.0 system (any
PMAP_HAS_DMAP architecture: amd64, arm64, riscv) can write
attacker-influenced bytes into the page-cache page of any file they can
*read*. The write reaches the backing physical page through the kernel
direct map (DMAP) and never traverses the VFS layer, so it bypasses file
permissions, mount options, and `chflags schg`. This yields a reliable
local privilege...
OpenAI has uncovered two covert Chinese influence operations using ChatGPT to manipulate U.S. public opinion on divisive topics like tariffs and data centers.
The Miasma credential-stealing attack framework, which has recently targeted open-source ecosystems through supply-chain attacks, was briefly open-sourced on GitHub.
www.bleepingcomputer.com
Shane Fraser reports: A Saskatoon man who allegedly conspired to install malware, steal login credentials, and mine cryptocurrency from American educational institutions is facing extradition to the United States. The cyberattack accusations were levelled against Ryan James Roach in Saskatoon Court of King’s Bench, where he was ordered to be taken into custody to await extradition following...
Source
