TechCapsules

A security researcher has discovered that approximately 10,000 GitHub repositories have been distributing Trojan malware to developers for over a year without being flagged or removed by the platform's automated security systems. The malicious repositories were created by cloning legitimate projects and adding a link to a downloadable ZIP archive containing a Trojan payload. The attackers exploited GitHub's trust signals and anomaly-detection architecture, making it difficult for automated systems to detect the long-running threats. The researcher released [...]

e2e-assure has launched Cumulo, a sovereign, AI-driven, zero-day SOC platform in the U.K. The platform uses digital twin technology and customer-dedicated AI models to identify threats and vulnerabilities before incidents occur. Cumulo is designed to counter AI-driven threats and answers the recent call by GCHQ Director Anne Keast-Butler for a national cyber defence capability with cutting-edge agentic AI. The platform combines predictive modelling with sovereign local AI models and expert human oversight for millisecond detection of known [...]

The US government has ordered Anthropic to restrict foreign access to its powerful AI models, Fable 5 and Mythos 5, citing national security concerns. Over 50 cybersecurity leaders have urged the government to lift the restrictions, warning that this could make the internet less safe. The ban could slow defensive cyber work, as security teams rely on advanced AI to scan code and spot suspicious patterns. Anthropic has suspended access to the models worldwide due to the [...]

Security researchers have disclosed an unpatchable SecureROM exploit, called usbliter8, for Apple's A12 and A13 chips. The vulnerability affects devices such as iPhones, iPads, and Apple Watches, allowing researchers to gain control before iOS starts loading. The exploit targets a flaw in Apple's USB boot process and cannot be fixed through software updates. Devices affected include the iPhone XS, iPhone 11 lineup, and several iPad and Apple Watch models. The vulnerability exists in the SecureROM, the first [...]

Living Security has launched its 2026 Cybersecurity Awareness Month program to help organizations navigate trust in an AI world. The program provides a complete campaign package with expert-led learning, interactive experiences, and ready-to-launch resources. It aims to help employees recognize AI-enabled deception, strengthen verification behaviors, and reduce human risk. The program includes a live virtual kickoff event, weekly awareness content, and a campaign planning toolkit. Organizations can launch the program in days, simplifying planning and execution. The [...]

A USB worm is spreading crypto-stealing malware via Windows shortcut files, targeting cryptocurrency wallets since at least February. The malware monitors clipboard contents, replacing wallet addresses with ones controlled by the attacker, and captures screenshots. Infection occurs when a victim opens a malicious LNK file on a USB drive, triggering the malware to execute and spread to other connected devices. The malware uses the Tor network to conceal communication and can capture seed phrases and private keys. [...]

Republicans in Congress have proposed the SECURE Data Act, a law that aims to establish national standards for protecting privacy rights. The legislation seeks to end the growing number of lawsuits targeting U.S. companies, often with no proof of harm. The proposed law, dubbed the "Safeguarding and Enhancing Cybersecurity and Understanding Rights of Every Data Subject Act," aims to address a "patchwork" of state privacy protection laws that have generated billions of dollars for trial lawyers. The [...]

Ayo Akinyele, Chief Engineer at RippleX, has outlined a security upgrade strategy to protect the XRP Ledger (XRPL) from threats posed by quantum computing and artificial intelligence. The upgrade, which has been in development since 2024-2025, involves implementing a hybrid signature method that allows the blockchain to operate normally under standard conditions but switch to a protected cryptographic stack if a quantum attack is detected. This approach balances security with operational continuity and avoids the performance overhead [...]