research

Security gap in Perplexity’s Comet browser exposed users to system-level attacks

agentic AI, AI, API security, browser, Don't miss, Hot stuff, News, Perplexity, research, SquareX, vulnerability /

Security gap in Perplexity’s Comet browser exposed users to system-level attacks 2025-11-20 at 17:56 By Zeljka Zorz There is a serious security problem inside Comet, the AI-powered agentic browser made by Perplexity, SquareX researchers say: Comet’s MCP API allows the browser’s built-in (but hidden from the user) extensions to issue commands directly to a user’s […]

Security gap in Perplexity’s Comet browser exposed users to system-level attacks Read More »

Google Play Store’s privacy practices still confuse Android users

Android, cybersecurity, Google Play, News, Privacy, research /

Google Play Store’s privacy practices still confuse Android users 2025-11-20 at 08:05 By Sinisa Markovic Privacy rules like GDPR and CCPA are meant to help app stores be clearer about how apps use your data. But in the Google Play Store, those privacy sections often leave people scratching their heads. A new study looks at

Google Play Store’s privacy practices still confuse Android users Read More »

BlueCodeAgent helps developers secure AI-generated code

Artificial Intelligence, code, code analysis, cybersecurity, LLMs, Microsoft, News, research /

BlueCodeAgent helps developers secure AI-generated code 2025-11-20 at 08:05 By Sinisa Markovic When AI models generate code, they deliver power and risk at the same time for security teams. That tension is at the heart of the new tool called BlueCodeAgent, designed to help developers and security engineers defend against code-generation threats. Why code generation

BlueCodeAgent helps developers secure AI-generated code Read More »

The long conversations that reveal how scammers work

cybercrime, cybersecurity, Don't miss, fraud, Hot stuff, LLMs, messaging, News, research, scams, social engineering, WhatsApp /

The long conversations that reveal how scammers work 2025-11-19 at 09:08 By Sinisa Markovic Online scammers often take weeks to build trust before making a move, which makes their work hard to study. A research team from UC San Diego built a system that does the patient work of talking to scammers at scale, and

The long conversations that reveal how scammers work Read More »

How attackers use patience to push past AI guardrails

Artificial Intelligence, Cisco, CISO, Don't miss, Hot stuff, News, prompt injection, research /

How attackers use patience to push past AI guardrails 2025-11-18 at 08:44 By Anamarija Pogorelec Most CISOs already assume that prompt injection is a known risk. What may come as a surprise is how quickly those risks grow once an attacker is allowed to stay in the conversation. A new study from Cisco AI Defense

How attackers use patience to push past AI guardrails Read More »

The privacy panic around machine learning is overblown

cybersecurity, data collection, Don't miss, EU, machine learning, News, Privacy, regulation, research /

The privacy panic around machine learning is overblown 2025-11-18 at 08:43 By Sinisa Markovic We often hear warnings about how machine learning (ML) models may expose sensitive information tied to their training data. The concern is understandable. If a model was trained on personal records, it may seem reasonable to assume that releasing it could

The privacy panic around machine learning is overblown Read More »

Los Alamos researchers warn AI may upend national security

Artificial Intelligence, critical infrastructure, cybersecurity, Don't miss, Government, News, research, USA /

Los Alamos researchers warn AI may upend national security 2025-11-14 at 09:25 By Sinisa Markovic For decades, the United States has built its defense posture around predictable timelines for technological progress. That assumption no longer holds, according to researchers at Los Alamos National Laboratory. Their paper argues that AI is advancing so quickly that the

Los Alamos researchers warn AI may upend national security Read More »

Protecting mobile privacy in real time with predictive adversarial defense

API security, Don't miss, framework, mobile, News, Privacy, research, smartphones /

Protecting mobile privacy in real time with predictive adversarial defense 2025-11-14 at 09:25 By Sinisa Markovic Mobile sensors are everywhere, quietly recording how users move, tilt, or hold their phones. The same data that powers step counters and activity trackers can also expose personal details such as gender, age, or even identity. A new study

Protecting mobile privacy in real time with predictive adversarial defense Read More »

Autonomous AI could challenge how we define criminal behavior

Artificial Intelligence, automation, cybersecurity, Don't miss, Features, LLMs, News, research /

Autonomous AI could challenge how we define criminal behavior 2025-11-12 at 10:44 By Sinisa Markovic Whether we ever build AI that thinks like a person is still uncertain. What seems more realistic is a future with more independent machines. These systems already work across many industries and digital environments. Alongside human-to-human and human-to-machine contact, communication

Autonomous AI could challenge how we define criminal behavior Read More »

Wi-Fi signals may hold the key to touchless access control

authentication, biometrics, cybersecurity, Don't miss, Features, hardware, Hot stuff, Internet of Things, networking, News, Raspberry Pi, research, wireless /

Wi-Fi signals may hold the key to touchless access control 2025-11-10 at 09:00 By Mirko Zorz Imagine walking into a secure building where the door unlocks the moment your hand hovers near it. No keycards, no PINs, no fingerprints. Instead, the system identifies you by the way your palm distorts the surrounding Wi-Fi signal. That

Wi-Fi signals may hold the key to touchless access control Read More »

What keeps phishing training from fading over time

CISO, cybersecurity, Don't miss, Features, Hot stuff, News, phishing, research, security awareness, strategy, tips, training /

What keeps phishing training from fading over time 2025-11-07 at 13:28 By Mirko Zorz When employees stop falling for phishing emails, it is rarely luck. A new study shows that steady, mandatory phishing training can cut risky behavior over time. After one year of continuous simulations and follow-up lessons, employees were half as likely to

What keeps phishing training from fading over time Read More »

Enterprises are losing track of the devices inside their networks

cybersecurity, embedded systems, Forescout, hardware, Internet of Things, News, research, vulnerability management /

Enterprises are losing track of the devices inside their networks 2025-11-06 at 08:37 By Sinisa Markovic Security teams are often surprised when they discover the range and number of devices connected to their networks. The total goes far beyond what appears in agent-based telemetry or old manual asset inventories. Enterprise networks face broader exposure from

Enterprises are losing track of the devices inside their networks Read More »

PortGPT: How researchers taught an AI to backport security patches automatically

Artificial Intelligence, automation, Canonical, CISO, cybersecurity, DevSecOps, Don't miss, Features, Git, Hot stuff, Linux, LLMs, News, open source, patching, research, strategy, tips /

PortGPT: How researchers taught an AI to backport security patches automatically 2025-11-05 at 09:07 By Mirko Zorz Keeping older software versions secure often means backporting patches from newer releases. It is a routine but tedious job, especially for large open-source projects such as the Linux kernel. A new research effort has built a tool that

PortGPT: How researchers taught an AI to backport security patches automatically Read More »

Connected homes: Is bystander privacy anyone’s responsibility?

CCTV, cybersecurity, Don't miss, Features, hardware, Hot stuff, Internet of Things, News, Privacy, research, smart home, surveillance /

Connected homes: Is bystander privacy anyone’s responsibility? 2025-11-05 at 09:07 By Sinisa Markovic Smart doorbells, connected cameras, and home monitoring systems have become common sights on doorsteps and living rooms. They promise safety and convenience, but they also raise a problem. These devices record more than their owners. They capture neighbors, visitors, and anyone passing

Connected homes: Is bystander privacy anyone’s responsibility? Read More »

A new way to think about zero trust for workloads

CISO, cybersecurity, Don't miss, enterprise, Features, framework, Hot stuff, News, OpenID, research, SentinelOne, strategy, Zero Networks, zero trust /

A new way to think about zero trust for workloads 2025-11-03 at 09:10 By Mirko Zorz Static credentials have been a weak point in cloud security for years. A new paper by researchers from SentinelOne takes direct aim at that issue with a practical model for authenticating workloads without long-lived secrets. Instead of relying on

A new way to think about zero trust for workloads Read More »

AI agents can leak company data through simple web searches

agentic AI, Artificial Intelligence, cybersecurity, Data leak, Don't miss, enterprise, Features, Hot stuff, Lasso Security, News, prompt injection, research, threats /

AI agents can leak company data through simple web searches 2025-10-29 at 10:24 By Mirko Zorz When a company deploys an AI agent that can search the web and access internal documents, most teams assume the agent is simply working as intended. New research shows how that same setup can be used to quietly pull

AI agents can leak company data through simple web searches Read More »

Scammers target international students by threatening their visa status

cybercrime, cybersecurity, Don't miss, News, Purdue University, research, scams, threats, USA /

Scammers target international students by threatening their visa status 2025-10-29 at 08:29 By Sinisa Markovic In 2025, the U.S. government revoked thousands of visas from international students, often without warning or explanation. According to a newly released study, this opened a door for scammers. Posing as government officials, police, or university staff, they took advantage

Scammers target international students by threatening their visa status Read More »

Can your earbuds recognize you? Researchers are working on it

Arduino, authentication, biometrics, cybersecurity, Don't miss, Features, hardware, Hot stuff, News, research, wearable tech, wireless /

Can your earbuds recognize you? Researchers are working on it 2025-10-27 at 09:05 By Mirko Zorz Biometric authentication has moved from fingerprints to voices to facial scans, but a team of researchers believes the next step could be inside the ear. New research explores how the ear canal’s unique acoustic properties can be used to

Can your earbuds recognize you? Researchers are working on it Read More »

Faster LLM tool routing comes with new security considerations

Atsign, cybersecurity, Don't miss, Features, Hot stuff, LLMs, monitoring, networking, News, research /

Faster LLM tool routing comes with new security considerations 2025-10-23 at 09:23 By Sinisa Markovic Large language models depend on outside tools to perform real-world tasks, but connecting them to those tools often slows them down or causes failures. A new study from the University of Hong Kong proposes a way to fix that. The

Faster LLM tool routing comes with new security considerations Read More »

AI’s split personality: Solving crimes while helping conceal them

Artificial Intelligence, cybercrime, cybersecurity, digital forensics, Don't miss, generative AI, News, research /

AI’s split personality: Solving crimes while helping conceal them 2025-10-21 at 08:52 By Sinisa Markovic What happens when investigators and cybercriminals start using the same technology? AI is now doing both, helping law enforcement trace attacks while also being tested for its ability to conceal them. A new study from the University of Cagliari digs

AI’s split personality: Solving crimes while helping conceal them Read More »

Scroll to Top