Antivirus and Security news

Do Apple’s accessibility efforts point at its AI plans?

You can usually measure a society by the way it treats its most vulnerable populations, and technology often can help people live better, more autonomous lives. Apple firmly believes that, and this year’s raft of accessibility announcements introduced to mark Global Accessibility Awareness Day shine a light on that belief. The company has won a string of awards […] more…

Microsoft refreshes Surface line with biz-friendly features – and a high price tag

Microsoft this week refreshed its Surface for Business range of devices, adding features designed to appeal to enterprises. But high prices for the devices might be hard for IT buyers to swallow. Microsoft announced a new Surface Pro for Business on Tuesday, alongside two variants of its Surface Laptop for Business devices – a premium […] more…

Supply Chain Security Crisis: Too Many Vulnerabilities, Too Little Visibility

New vulnerabilities are being discovered too fast, the time-to-exploitation is too short, and our visibility into them is largely lacking. The post Supply Chain Security Crisis: Too Many Vulnerabilities, Too Little Visibility appeared first on SecurityWeek. more…

The world of AI tokens — and why they matter

Google has only one way to measure the phenomenal AI growth it’s seen: in tokens. The company processes 3.2 quadrillion tokens per month, Google CEO Sundar Pichai said during this week’s I/O keynote, adding, “never imagined I’d say quadrillion…, but here we are.” Basically, tokens are a unit of measure used by large language models […] more…

Microsoft is working on a patch for ‘YellowKey’ attack on Bitlocker, offers temporary fix

Microsoft says it is considering a patch for a zero-day vulnerability, dubbed YellowKey, that allows attackers with access to a Windows device to bypass Bitlocker encryption protection and read and write files. The flaw was disclosed last week, and there is already a public proof of concept available. The company issued an advisory Tuesday saying […] more…

Google focuses on autonomous AI agents in Gemini 3.5 Flash

Google this week launched Gemini 3.5 Flash, a new AI model that’s expected to be significantly better at programming than its predecessors. The new model is also said to be four times as fast as its competitors, Claude Opus 4.7 and GPT-5.5, and more than twice as fast as Gemini 3.1 Pro. Google stressed the […] more…

Beth Tschida takes over at Jamf as AI transforms Apple in the enterprise

Jamf has a new CEO: former CTO Beth Tschida. She succeeds previous CEO John Strosahl, who himself replaced Dean Hager on his retirement. Tschida has served as interim CEO since March. Jamf-using IT pros should be pleased. Tschida is an engineer who joined the company in 2018 as senior vice president, engineering and became CTO four years […] more…

Quantum Bridge Raises $8 Million for Quantum-Safe Key Distribution Solution

The new Series A funding round brings the total raised by Quantum Bridge to $16 million. The post Quantum Bridge Raises $8 Million for Quantum-Safe Key Distribution Solution appeared first on SecurityWeek. more…

Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass

The exploitation is mitigated by preventing the FsTx Auto Recovery Utility from starting when the WinRE image launches. The post Microsoft Rolls Out Mitigations for ‘YellowKey’ BitLocker Bypass appeared first on SecurityWeek. more…

AI-Powered App Attacks Are Faster, More Frequent and Harder to Stop

Digital.ai’s latest threat report warns that agentic AI has erased the distinction between emerging and primary targets, enabling attackers to strike mobile apps within hours of release across every industry. The post AI-Powered App Attacks Are Faster, More Frequent and Harder to Stop appeared first on SecurityWeek. more…

1Password Teams With OpenAI to Stop AI Coding Agents From Leaking Credentials

1Password says AI coding agents should never hold persistent secrets, introducing a just-in-time credential model for OpenAI Codex designed to keep credentials out of prompts, code repositories, and model context. The post 1Password Teams With OpenAI to Stop AI Coding Agents From Leaking Credentials appeared first on SecurityWeek. more…

Anthropic Silently Patches Claude Code Sandbox Bypass

The researcher who found it says the vulnerability could have been chained with a prompt injection to exfiltrate data. The post Anthropic Silently Patches Claude Code Sandbox Bypass appeared first on SecurityWeek. more…

Google talks ‘singularity’ while scaling up agentic AI for enterprises

Google is recasting its enterprise AI roadmap around autonomous systems and artificial general intelligence (AGI), with DeepMind CEO Demis Hassabis telling I/O attendees the industry now sits at the “foothills of the singularity.” “When we look back at this time, I think we all realise that we were standing in the foothills of the singularity,” […] more…

Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack

A compromised maintainer account was used to publish malicious package versions across the @antv namespace. The post Over 320 NPM Packages Hit by Fresh Mini Shai-Hulud Supply Chain Attack appeared first on SecurityWeek. more…

Caught Off Guard: Securing AI After It Hits Production

As enterprises rush AI projects into production, security teams are increasingly being forced into reactive mode. The post Caught Off Guard: Securing AI After It Hits Production appeared first on SecurityWeek. more…

Copilot Chat: Your hub for document creation and analysis

Many years ago, Microsoft created a handy hub for its Office suite: type office.com into your browser, and you’d see a web page where you could launch the various Office apps — Word, Excel, PowerPoint, and so on — or access recently used documents in those apps. This hub’s appearance changed a bit over time […] more…

« Older posts