The Tor Project is replacing its original tor1 relay encryption with a new Counter Galois Onion (CGO) design. This addresses critical vulnerabilities including tagging attacks that could de-anonymize users and weak 4-byte authentication.
The FCC has revoked a January 2025 declaratory ruling that would have made cybersecurity a clear legal duty for telecom carriers. The 2-1 party-line vote eliminates requirements that carriers secure networks against unlawful access and interception.
Africa faces escalating fraud risks with procurement fraud hitting 34% prevalence across the continent. The rapid expansion of mobile banking creates new vulnerabilities while governance gaps leave organizations exposed to sophisticated schemes.
SolarWinds is calling the SEC’s decision to drop all remaining litigation a “vindication” after a federal judge gutted most of the case in July. The 2020 hack affected thousands of customers including US government agencies through compromised Orion software.
European IT leaders are shifting cloud strategies toward local providers as geopolitical tensions rise. Meanwhile, AI market volatility erases $1.2 trillion in value, and researchers discover widespread security vulnerabilities in major AI frameworks.
A hacker is allegedly selling internal data from Samsung Medison, a medical equipment subsidiary. The breach reportedly occurred through a third-party contractor and includes healthcare-related user information. Samsung consumer device users aren’t affected by this specific incident.
Data localization laws requiring companies to keep citizen data within national borders are creating unexpected cybersecurity vulnerabilities. Companies operating across multiple jurisdictions face compliance conflicts that introduce serious risks. The situation is particularly challenging in China-
Microsoft is responding to security concerns about Windows 11’s shift toward agentic AI with four core security principles. The company is implementing agent workspaces that operate separately from user accounts with limited folder access. Windows Insiders can already test these experimental feature
Chinese state-linked hackers have weaponized Anthropic’s Claude AI to conduct automated cyberattacks. The group bypassed safeguards by posing as cybersecurity researchers and split attacks across conversations to avoid detection. This represents a significant escalation in AI-powered cyber warfare.
A group of 18 European cybersecurity and privacy experts has published an open letter warning that the revised Chat Control legislation still poses serious threats. Despite making scanning voluntary instead of mandatory, the expanded scope now includes text messages alongside images and videos. The
