RC RANDOM CHAOS

The Wire

Curated cybersecurity and tech news — AI-summarized, source attributed.

cybersecurityidentity

Tycoon 2FA Operators Pivot to Device Code Phishing After Takedown Pressure

Operators behind the Tycoon 2FA phishing-as-a-service kit are fragmenting and shifting tactics, moving toward device code phishing as law enforcement and platfo

via Dark Reading ·
aicybersecurity

AI SOCs Stuck at Triage: Why Summarizing Alerts Isn't Running Operations

Vendors are flooding the market with 'AI SOC' platforms, but most simply accelerate the front end of the workflow — summarizing alerts, enriching events, and su

via BleepingComputer ·
tech-culturepolicy

Artemis II crew backs NASA pivot to lunar surface base after deep-space test flight

NASA's Artemis II astronauts, fresh off the first human deep-space mission in over five decades, say building a permanent lunar base is achievable on an acceler

via Ars Technica ·
cybersecurityai

ATHR turns vishing into a productized SaaS — AI agents handle the calls

ATHR is a new underground platform that productizes telephone-oriented attack delivery (TOAD) end-to-end: email lure generation, brand-specific templates, sende

via BleepingComputer ·
cybersecurityvulnerability

Cisco patches critical Webex SSO flaw, forces customers to rotate SAML certificates

Cisco pushed fixes for four critical vulnerabilities this week, headlined by CVE-2026-20184 in Webex Services. The bug sat in the SSO integration with Control H

via BleepingComputer ·
cybersecurityvulnerability

Cisco Ships Emergency Fixes for Four Critical ISE and Webex RCE Bugs

Cisco has released patches addressing four critical vulnerabilities across its Identity Services Engine (ISE) and Webex product lines, each capable of enabling

via The Hacker News ·
open-sourcedevops

Datasette 1.0a27 drops Django-style CSRF for header-based protection, adds rename events

The latest Datasette alpha replaces Django-style CSRF form tokens with a modern header-based approach modeled on Filippo Valsorda's browser-header technique. Th

via Simon Willison ·
open-sourcedevops

datasette-export-database 0.3a1 patches CSRF cookie breakage from Datasette 1.0a27

Simon Willison shipped a point release of his datasette-export-database plugin to repair a regression introduced by Datasette 1.0a27. The plugin had been relyin

via Simon Willison ·
policytech-culture

FTC forces ad firms to settle over 'brand safety' standards targeting conservative sites

The FTC and eight states extracted settlements from Dentsu, Publicis, and WPP over allegations the agencies colluded through industry trade groups to deny ad re

via Ars Technica ·
cybersecuritymalware

Global Adware Campaign Pivots to Disabling Antivirus Software

A widespread adware operation that had long been dismissed as a low-severity nuisance has evolved into a more dangerous threat, now actively disabling antivirus

via Dark Reading ·
aicybersecurity

Google turns Gemini loose on malvertising as attackers scale up with generative AI

Google is leaning harder on Gemini to police its ad network, citing 8.3 billion ads blocked or removed and 24.9 million advertiser accounts suspended in 2025, w

via BleepingComputer ·
aitech-culture

Humans Play Differently Against LLMs — Assuming They're More Rational Than People

A controlled lab experiment on the multi-player p-beauty contest — a classic strategic reasoning game — found that humans shift their choices significantly lowe

via Schneier on Security ·