Author: admin

turned-on flat screen monitor
Security

Enterprises that pull community models: the May 2026 Hugging Face typosquat that installed a Windows infostealer

In May 2026, a typosquatted Hugging Face repository—Open-OSS/privacy-filter—distributed a loader that ultimately installed a Rust-based credential stealer on Windows machines; the repo was downloaded over 200,000 times before removal. For teams that pull community models into development or production, this incident reframes the threat: attackers can hide executable installers in model repos, not just poison […]

admin 
a building with columns and a clock on the front of it
AI

Musk v. Altman week 2: OpenAI fires back, and Shivon Zilis reveals that Musk tried to poach Sam Altman

Elon Musk’s civil trial, which began jury selection on April 27, 2026, tests a narrow legal condition: can OpenAI’s switch from a nonprofit founding promise to a for‑profit public benefit corporation in October 2025 be treated as fraud or unjust enrichment? The judge has let fraud and unjust enrichment claims proceed while dismissing breach-of-contract counts; […]

admin 
man in yellow crew neck t-shirt using macbook pro
AI

Oracle’s rigid severance formula and remote-worker labeling expose legal and trust risks as it redirects billions to AI infrastructure

Oracle refused to negotiate severance during its 2026 mass layoffs, applying a strict formula and designating some staff as remote to limit pay and notice obligations; that combination — plus forfeited unvested RSUs and impersonal mass-email notifications — has already produced courtroom pushback in Canada and creates a material test of whether cost-cutting to fund […]

admin 
a group of men sitting at a table with laptops
Security

GeForce NOW breach limited to Armenian partner GFN.am, not NVIDIA’s core systems

GeForce NOW breach limited to Armenian partner GFN.am, not NVIDIA’s core systems NVIDIA confirmed a data breach affecting only its Armenian GeForce NOW partner, GFN.am, and said the company’s core, globally managed systems were not compromised. The incident—dated March 20–26, 2026—exposed personal user records held by the regional operator but did not include passwords or […]

admin 
man in gray crew neck t-shirt using laptop computer
Security

ShinyHunters’ Salesforce assault exposed 275M Canvas users — a supply-chain problem, not just an LMS outage

ShinyHunters claims it extracted roughly 3.65 TB of data from Instructure’s systems, affecting about 275 million people across nearly 9,000 institutions. This was not simply a broken Canvas instance: investigators say the attackers used compromised Salesforce credentials and API keys tied to Instructure’s SaaS stack, turning a single vendor compromise into a global extortion campaign. […]

admin 
Digital interface with "ask anything" prompt.
AI

Why OpenAI’s GPT‑Realtime suite changes how teams build production voice agents

OpenAI’s new realtime voice models are not just faster speech-to-text or better translation — they bring GPT-5-class reasoning, a 128K-token live context, and multi-tool orchestration into running voice conversations. For teams deciding whether to move a voice assistant from prototype to production, the change is practical: you must now trade off depth of in-conversation reasoning, […]

admin 
black laptop computer turned on near black and white electronic devices
Security

Active, unauthenticated RCE in Ivanti EPMM — interim RPMs stop attacks but 12.8.0.0 (Q1 2026) is the real fix

Two critical Ivanti EPMM zero-days (CVE-2026-1281 and CVE-2026-1340) are being exploited in the wild to achieve unauthenticated remote code execution. Interim RPM patches stop the immediate attacks, but they must be re-applied after upgrades; a permanent fix is scheduled for EPMM 12.8.0.0 in Q1 2026. Observed exploitation and its immediate effects Attackers are sending simple, […]

admin 
a group of people sitting around a table with laptops
Security

Mozilla’s Mythos Test: 271 Firefox 150 Bugs Show AI Finds Far More — But Creates Remediation and Governance Strain

Mozilla’s early access work with Anthropic’s Mythos model turned up 271 vulnerabilities in Firefox 150 — more than ten times the 22 issues Anthropic’s Opus 4.6 flagged in Firefox 148 — demonstrating a sharp jump in discovery rate that has immediate operational consequences for maintainers and defenders. What Mythos actually revealed in Firefox Mythos autonomously […]

admin 
black flat screen tv turned on displaying man in black suit
AI

After OpenAI’s 2023 board crisis, Barry Diller says personal trust won’t stop AGI — build enforceable guardrails

Barry Diller used a recent public forum to turn a familiar argument—trust the builder—into a warning: as AGI nears, reliance on charismatic founders alone is no longer a governance strategy. He pointed to the 2023 OpenAI board episode as evidence that institutional controls must replace personal trust before systems become irreversible. How the OpenAI board […]

admin