research

A hardware security AI assistant that checks chips for hidden backdoors

A hardware security AI assistant that checks chips for hidden backdoors 2026-07-13 at 08:00 By Sinisa Markovic Chip designers license blocks of circuitry from outside vendors and drop them into larger products. A single processor can carry components from a range of suppliers, each written by a company the buyer may never deal with directly. […]

A hardware security AI assistant that checks chips for hidden backdoors Read More »

The open source library holding up your stack might have one maintainer

The open source library holding up your stack might have one maintainer 2026-07-10 at 10:00 By Sinisa Markovic Every serious software product runs on code that someone else wrote and released for free. A web service leans on a cryptography library, a data pipeline pulls in a parser, and a mobile app ships a handful

The open source library holding up your stack might have one maintainer Read More »

Most data brokers won’t tell you what happened to your deletion request

Most data brokers won’t tell you what happened to your deletion request 2026-07-10 at 09:30 By Sinisa Markovic Data brokers collect personal details on most adults in the United States and sell them to buyers that include employers, landlords, insurance companies, and government agencies. California gives residents a way to push back. You can ask

Most data brokers won’t tell you what happened to your deletion request Read More »

Your coding agent says no in chat and yes in the code

Your coding agent says no in chat and yes in the code 2026-07-09 at 13:44 By Mirko Zorz Millions of developers share their keyboard with GitHub Copilot. Inside Visual Studio Code, it opens their files, writes and edits code, runs scripts, and reworks its own output across many turns. The safety testing that vets these

Your coding agent says no in chat and yes in the code Read More »

Malicious AI agent skills can slip past the scanners built to stop them

Malicious AI agent skills can slip past the scanners built to stop them 2026-07-09 at 10:24 By Sinisa Markovic Developers who build with AI coding agents grab capabilities off public marketplaces the same way they grab packages from npm or PyPI. The add-ons are called agent skills. Each one is a little bundle of plain-English

Malicious AI agent skills can slip past the scanners built to stop them Read More »

macOS is becoming a proving ground for AI agents

macOS is becoming a proving ground for AI agents 2026-07-08 at 08:00 By Sinisa Markovic Somewhere right now, a Mac Mini is sitting on a shelf doing someone’s chores. Nobody’s watching it. It reads a version number out of Terminal, hops over to Safari, digs up a release year, then quietly files a reminder, the

macOS is becoming a proving ground for AI agents Read More »

Bitcoin Covenants Part 3: SIGHASH_ANYPREVOUT

Bitcoin Covenants Part 3: SIGHASH_ANYPREVOUT 2026-07-07 at 18:00 By Cointelegraph by Kyrian Alex APO lets a Bitcoin signature authorize any compatible UTXO rather than one fixed outpoint. It allows for rebindable pre-signed transactions for Lightning, vaults, and layer-2 protocols without new key management overhead. This article is an excerpt from Cointelegraph.com News View Original Source

Bitcoin Covenants Part 3: SIGHASH_ANYPREVOUT Read More »

How Onchain Capital Can Reach Europe’s Underserved SMEs

How Onchain Capital Can Reach Europe’s Underserved SMEs 2026-07-07 at 18:00 By Cointelegraph by Kyrian Alex Novel models for RWA tokenization could allow SMEs to receive credit using tangible assets as collateral. A new Cointelegraph Research report presents a case study. This article is an excerpt from Cointelegraph.com News View Original Source

How Onchain Capital Can Reach Europe’s Underserved SMEs Read More »

Researchers make the case for a cybersecurity AI scientist

Researchers make the case for a cybersecurity AI scientist 2026-07-07 at 09:30 By Mirko Zorz Autonomous AI agents have started doing real security work. Language-model agents probe software for flaws, run penetration tests, and chain together attack steps that once needed a human operator. Research about security has stayed slower and more manual, built around

Researchers make the case for a cybersecurity AI scientist Read More »

Non-interactive SSH attacks dominate after login

Non-interactive SSH attacks dominate after login 2026-07-03 at 08:30 By Sinisa Markovic Anyone who runs a server with SSH exposed to the internet sees the same pattern in the logs. A steady stream of automated scanners tries to log in, hour after hour, from addresses all over the world. The common picture of what comes

Non-interactive SSH attacks dominate after login Read More »

Catching ransomware on the wire before it locks the file server

Catching ransomware on the wire before it locks the file server 2026-07-02 at 08:00 By Sinisa Markovic Corporate networks keep sensitive files off individual workstations and store them on shared servers that staff reach through mapped network drives. That arrangement hands ransomware operators a target worth chasing. A single compromised laptop can begin encrypting files

Catching ransomware on the wire before it locks the file server Read More »

This supercomputer encrypts your data even while it’s running it

This supercomputer encrypts your data even while it’s running it 2026-07-01 at 08:30 By Sinisa Markovic Most people who handle sensitive data already encrypt it in two places. They lock it down when it sits on a hard drive, and they lock it down when it moves across a network. There has always been a

This supercomputer encrypts your data even while it’s running it Read More »

Sycophantic chatbots and the harms that build over many chats

Sycophantic chatbots and the harms that build over many chats 2026-06-29 at 08:00 By Sinisa Markovic People use AI chatbots for company, advice, and emotional support, and these systems answer in ways meant to hold their attention. Researchers describe the resulting risks as affective safety, a class of harm that exists because humans are emotional

Sycophantic chatbots and the harms that build over many chats Read More »

A privacy-first take on local malware analysis

A privacy-first take on local malware analysis 2026-06-26 at 09:00 By Sinisa Markovic Submitting a suspicious file to VirusTotal or MalwareBazaar places a copy of that file on a platform other people can search. Analysts across the industry rely on these services to get a quick verdict on whether a binary is dangerous. The convenience

A privacy-first take on local malware analysis Read More »

LLM security advice looks solid until you check the hard cases

LLM security advice looks solid until you check the hard cases 2026-06-25 at 09:00 By Anamarija Pogorelec Plenty of people now type their security worries straight into a chatbot. A hacked account, a suspicious email, a stalker who might be tracking a phone, all of it lands in the same window someone would use to

LLM security advice looks solid until you check the hard cases Read More »

Using Reddit to manipulate AI search results is surprisingly easy

Using Reddit to manipulate AI search results is surprisingly easy 2026-06-23 at 16:27 By Sinisa Markovic A Reddit comment that takes only a few seconds to write can end up influencing the answers generated by AI research tools. A Cornell Tech study found that a short snippet of user-generated text, sometimes as little as 13

Using Reddit to manipulate AI search results is surprisingly easy Read More »

A $1,400 experiment in AI security auditing outperformed OpenAI’s Codex Security

A $1,400 experiment in AI security auditing outperformed OpenAI’s Codex Security 2026-06-23 at 08:30 By Mirko Zorz A research team has built a system that teaches AI agents to hunt for software bugs by writing the audit method down as plain text. The system, called EVOHUNT, keeps the underlying AI model fixed and improves only

A $1,400 experiment in AI security auditing outperformed OpenAI’s Codex Security Read More »

23 ClawHub plugins squatting official scopes expose AI registry security gaps

23 ClawHub plugins squatting official scopes expose AI registry security gaps 2026-06-22 at 11:00 By Help Net Security Plugin registries for AI agents use npm-style scopes like @openclaw/ and @clawhub/ to signal who published a package. But on ClawHub, a registry whose plugins run with Claude, OpenClaw, and other agents, those official scopes weren’t reserved

23 ClawHub plugins squatting official scopes expose AI registry security gaps Read More »

Encrypted DNS still tells an eavesdropper where to look

Encrypted DNS still tells an eavesdropper where to look 2026-06-22 at 08:00 By Mirko Zorz Encrypted DNS runs across much of the Internet. DNS over TLS, HTTPS, and QUIC keep the contents of a query away from anyone watching a network link. The encryption covers the message inside each packet. The packet still carries plaintext

Encrypted DNS still tells an eavesdropper where to look Read More »

Your browser tab could become encrypted storage for someone else’s files

Your browser tab could become encrypted storage for someone else’s files 2026-06-19 at 08:30 By Mirko Zorz Decentralized storage networks already hand pieces of people’s data to strangers’ machines. The lasting question across these networks is whether the machine holding the data can read it. A research paper by Gregory Magarshak, a professor at IENYC,

Your browser tab could become encrypted storage for someone else’s files Read More »

Scroll to Top