NIST Cyber AI Profile: CSF 2.0 Guidance for AI Security
NIST released NISTIR 8596 on Dec 17, 2025—the first CSF 2.0 profile for AI security. Covers secure, defend, thwart pillars. Public comment deadline: ...
Mullvad GotaTun Cuts Android VPN Crashes 97% with Rust
Mullvad VPN announced GotaTun yesterday, a Rust-based WireGuard implementation that slashed Android app crashes by ...
React2Shell: CVSS 10.0 RCE Hits Next.js in 30 Hours
On December 3, 2025, React and Vercel disclosed CVE-2025-55182—a CVSS 10.0 remote code execution vulnerability ...
AI Coding Tools Hit by Security Exploits: What Devs Need
AI coding tools hit 84% developer adoption in 2025, with half using them daily for ...
UK Claims Building Signal-Like Apps Could Be ‘Hostile’
A UK government watchdog warned this week that developers building end-to-end encrypted messaging apps like ...
A16z-Backed AI Influencer Farm Hacked: 400+ Fake Accounts Exposed
A16z-Backed AI Influencer Farm Hacked, 400+ Fake TikTok Accounts Exposed A hacker has completely compromised Doublespeed, an Andreessen Horowitz-backed startup running a phone ...
8M Users’ AI Chats Sold by “Privacy” VPN Extensions
Eight million users had their private AI conversations with ChatGPT, Claude, and Gemini silently harvested ...
Shai-Hulud 2.0 npm Worm: 25K+ Repos Compromised
November 24, 2025 marked the most destructive npm supply chain attack in history. A self-replicating ...
SoundCloud VPN Ban: Privacy Backlash and User Exodus 2025
SoundCloud blocks VPN users Dec 14-15. Is this "configuration change" temporary or permanent? What it ...
LG TVs Force Unremovable Microsoft Copilot Install
LG smart TV owners discovered this week that a webOS update forcibly installed Microsoft Copilot ...
