Microsoft

Case study: Securing AI application supply chains

This case study examines how vulnerabilities in AI frameworks and orchestration layers can introduce supply chain risk. Using ...
The Hacker News

Fake Python Spellchecker Packages on PyPI Delivered Hidden Remote Access Trojan

Two fake spellchecker packages on PyPI hid a Python RAT in dictionary files, activating malware on import in version 1.2.0.

Viral Moltbot AI assistant raises concerns over data security

Security researchers are warning of insecure deployments in enterprise environments of the Moltbot (formerly Clawdbot) AI ...

Hugging Face abused to spread thousands of Android malware variants

A new Android malware campaign is using the Hugging Face platform as a repository for thousands of variations of an APK ...

Apple, Google host dozens of AI ‘nudify’ apps like Grok, report finds

A tech watchdog organization found 55 nudify apps on Google Play and 47 in the Apple App Store.
Decrypt

EU Investigates X Over Alleged Failures to Curb Illegal Grok AI Content

The probe will examine whether the platform adequately assessed risks tied to Grok’s rollout and complied with its ...

Europe opens major probe into Elon Musk’s X after outcry over sexualized images

The European Union has launched a wide-reaching investigation into Elon Musk’s Grok chatbot on X following global outrage ...
Cfr.org

Unpacking a Trump Twist of the National Security Strategy

On December 4, the Donald Trump administration released a new National Security Strategy (NSS) that criticized U.S. allies in Europe and pledged to assert U.S. influence in the Western Hemisphere. The ...
Mashable

DeepSeek collects keystroke data and more, storing it in Chinese servers

U.S. tech companies are known to stockpile as much user data as they can, but DeepSeek's privacy policy makes Meta, Google, and OpenAI look tame. "The personal information we collect from you may be ...