Agregátor RSS

One alleged cyber contractor was extradited to the US over the weekend

China's "hacker-for-hire ecosystem has gotten out of control," according to Brett Leatherman, assistant director of the FBI's cyber division.…

A new phishing kit named Bluekit offers more than 40 templates targeting popular services and includes basic AI features for generating campaign drafts. [...]

New research from the Oxford Internet Institute indicates that AI chatbots trained to be extra warm, friendly, and empathetic can also become less reliable, according to the BBC.

The researchers analyzed more than 400,000 responses from five different AI models from Meta, Mistral AI, Alibaba, and OpenAI. The results showed that the “kinder” versions more often gave incorrect answers, reinforced users’ misconceptions, and avoided stating uncomfortable truths.

For example, a friendlier model might deal with conspiracy theories about the moon landing more cautiously instead of clearly stating that they are false.

On average, incorrect answers increased by about 7.43 percentage points when the models were made to sound warmer in tone. Cooler and more direct models made fewer mistakes. According to the researchers, AI makes the same trade-off as humans: it sometimes prioritizes being perceived as pleasant rather than being direct.

A Romanian national who led an online swatting ring that targeted more than 75 public officials, multiple journalists, and four religious institutions was sentenced to 4 years in federal prison. [...]

Sólohry a solitérní varianty deskových her jsou v posledních letech stále oblíbenější. Přinášíme vám tipy na nejzajímavější tituly z tohoto ranku napříč žánry. Je libo jednoduchou karetku, nebo válečnou hru z druhé světové války?

This CVSS 10.0 RCE vuln has been patched, automatically for some, so better check those workflows

If you use Gemini CLI, watch out: Google has patched a CVSS 10.0 vulnerability in its command-line AI tool and is warning anyone running it in headless mode, or through GitHub Actions, to review their workflows.…

Fortune 500 enterprises will be deploying armies of AI agents by 2028 — to the tune of 150,000 digital “workers,” Gartner said in a survey released this week. That would represent a sharp jump from the average of about 15 agents deployed per company last year.

And agents as actual co-working tools are likely to go mainstream within the same time frame, said Max Goss, senior director analyst for Gartner. These agents won’t just be text boxes from which users get responses, but assistants to which actual work can be delegated.

“We’ve seen a sort of new appreciation in the industry of what agent AI can do,” Goss said.

Many AI agents can already handle basic tasks such as summarizing documents on behalf of workers. Upcoming agents will be able to take spreadsheets and word documents, automate work, and offer an interface that makes the tools friendlier to use, Goss said.

That’s already happening in applications such as Google Workspace and Microsoft 365, with easy-to-use AI interfaces, automated workflows and collaboration. 

Despite the fast uptake for agentic AI, fully autonomous agents are uniquely to be in place in just two years, Goss said. Humans will still need to be part of the loop from a security and governance standpoint, with semi-autonomous agents trusted to handle multi-step processes in specific domains replacing prompts.

The 150,000-agents-per-organization estimate is a ballpark figure pulled from multiple surveys and data gathered by Gartner. “We’ve got some good numbers now on agent usage and we can see how it’s been growing,” Goss said.

Gartner’s aggressive projection, if it holds true, represents a more optimistic view of the technology than other surveys — some of which have pegged failure rates for generative AI tools as high as 95%. But companies like EY and Lumen have demonstrated successful agent deployments, mostly for knowledge workers and customer service.

“Agentic usage tends to be…most valuable in the customer service and data and analytics space…. Those are areas where we have more confidence that AI tools can add value,” Goss said.

Agentic AI use in other areas is likely to advance more slowly. For example, highly regulated fields such as finance and healthcare have to be careful with agent deployment and require guardrails in place to reduce hallucinations and errors.

And agents at the scale envisioned by Gartner will need 100% uptime, just like servers. As a result, companies will likely have to ensure agent reliability by spreading them across multiple models and hardware resources, Goss said.

Excessively high use has at times prompted companies like Anthropic and OpenAI to  shut down access to the large language models (LLMs), undermining the reliability of AI services within enterprises.

There are many things IT leaders can do now to prepare for successful deployments, Goss said, such as sanctioning agent use and pro-actively allowing them to be deployed. “If they just block all agents, then employees…are going to probably go around your controls…. They might use unsanctioned tools otherwise known as shadow AI and I think that’s a greater risk,” he said.

Decision-makers will need to guard against AI agent sprawl, and put the right controls in place to govern them. “If you don’t have any visibility of them, then that’s a huge risk for the organization,” Goss said.

Poor management can also leave gaps that break processes or create security vulnerabilities.

And as AI automates legacy business processes, new processes will need to be drawn up for agents. “I don’t think it’s a good idea to be like, ‘Well, this is the process we’ve already done and let’s slap an agent on top of it and see what happens’…. Process design and agentic AI go hand in hand,” Goss said.

genetic AIHe argued that companies should be prepared for some agentic AI tools to fail, which can happen even with safeguards in place to minimize risks. “That [failure] is kind of okay, because actually we need…to understand where these tools can help us and where they can’t,” Goss said.

Od 1. května 2026 začne na Slovensku platit zákon, který obchodníkům, provozovatelům služeb nebo třeba lékařům nařizuje, že platby přesahující jedno euro musí přijímat bezhotovostně. Zákazníky už tak nepůjde odbýt tím, že si musí připravit hotovost nebo že platby kartou jsou platné až od určité ...

Two computer crime allegations follow up to 18M lines of data surfacing online

French prosecutors say police detained a 15-year-old on April 25 over the alleged theft of millions of records from France Titres (ANTS), the agency handling secure documents.…

The U.S. Federal Bureau of Investigation (FBI) warned the transportation and logistics industry of a sharp rise in cyber-enabled cargo theft, with estimated losses in the United States and Canada reaching nearly $725 million in 2025. [...]

In yet another software supply chain attack, threat actors have managed to compromise the popular Python package Lightning to push two malicious versions to conduct credential theft. According to Aikido Security, OX Security, Socket, and StepSecurity, the two malicious versions are versions 2.6.2 and 2.6.3, both of which were published on April 30, 2026. The campaign is assessed to be an Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]

The April 2026 KB5083769 security update breaks third-party backup applications from multiple vendors on systems running Windows 11 24H2 and 25H2. [...]

When a new asset goes live, attackers start scanning within minutes. Sprocket Security shows how automated attacks move from discovery to compromise in under 24 hours. [...]

The internet is noisy this week. We are seeing some wild new tactics, like people using fake cell towers to send scam texts, while some developers are accidentally downloading tools that peek into their private files during a simple install. It is definitely a busy time to be online. Security is always a moving target. Millions of servers are currently sitting online without any passwords, and Ravie Lakshmananhttp://www.blogger.com/profile/[email protected]

An exploit has been published for a local privilege escalation vulnerability dubbed "Copy Fail" that impacts Linux kernels released since 2017, allowing an unprivileged local attacker to gain root permissions. [...]

Autonomní taxíky Waymo detekují výmoly pro platformu Waze • Řidiči i zástupci samospráv díky tomu získají lepší přehled • Firma si tímto strategickým krokem buduje důvěru veřejnosti

It was only this month that incoming Apple CEO John Ternus said of the Vision Pro, “I think we’re still very much in the early innings of spatial computing. We’re super excited about it.”

Now, we’re hearing Apple has stopped working on the headset following lackluster sales of the only slightly upgraded M5 chip-powered model introduced in October, which retained its hefty $3,499 price and shipped with a more comfortable head strap. 

MacRumors claims Apple has “given up” on the Vision Pro as a response to soft sales of the upgraded model, distributing the product engineering team elsewhere across the company. It also seems to be focused on Meta-devouring AR glasses in near term, which we knew. 

What this really seems to be about is building Vision Pro’s successor.

The next generation

This might or might not be the sunglasses-style form factor everyone is speculating about. And it might or might not include the cutting-edge features provided in the Pro. (CitiGroup predicts sales of items in this category could reach $40 billion by 2030.)

Given the recent introduction of the A18-powered MacBook Neo, it seems the plan could eventually involve a lower-cost Pro-style model equipped with two or more cheaper A-series chips. I don’t see that as a realistic possibility until at least 2028 — once Apple hits 1nm chips.

It makes sense, then, that Apple is diverting engineering resources from those projects toward Siri and its artificial intelligence work; it’s existentially important for the company to deliver big improvements to Apple Intelligence, Siri, and AI on its platforms in time for WWDC in June. Recent delays have damaged the company’s reputation, and while many believe it will win in the end, it’s going to take a little longer for everyone else to see it.

When he spoke, Ternus was positive about the current headset, saying, “The Vision Pro is an extraordinary product…, it’s like we reached into the future and pulled it into the present.” 

It’s also hardware that has a place in some specific enterprise deployments. “People are continuing to find exciting new use cases for it. There’s a lot of compelling stuff in enterprise and medicine and other areas, and that’s going to continue to grow. It’s fun. We’re at the beginning of the journey.”

Grabbing the future and building it

Apple seems to know it’s a beginning, too. The company has been tweaking the operating system regularly with updates (major or minor) every couple of months and a raft of entertainment and enterprise software that continues to appear at a steady clip.

At its price, Vision Pro was never intended to be a mass market product akin to the iPhone, but a highly experimental solution to help determine the future of this part of the industry. Apple’s outgoing CEO, Tim Cook, has consistently described the product as “tomorrow’s engineering, today,” and it remains that.

The lessons Apple has learned will now be deployed in successor products, including smart eyeglasses to compete with Meta’s offerings. For the most part, these solutions will likely be connected accessories that use the chip inside your iPhone, iPad, or Mac for their advanced functions. But as processor designs continue to shrink, it’s only a matter of time before standalone devices appear.

These won’t offer everything we get now in the Vision Pro, which requires more processor and battery power than can be crammed inside smaller devices. Once the tech of the future catches up with Apple’s vision, as it were, I’ve little doubt that a Vision Pro successor will appear at a not-so-prohibitive cost. 

Apple already built the future. Now, as it did with the Newton, it just needs to wait for reality to catch up. Meanwhile, those enterprise use cases for the existing headset remain, which strongly suggest there’s real-world, but limited demand.

You can follow me on social media! Join me on BlueSky,  LinkedIn, Mastodon, and MeWe. 

Most information security best practices are built on a single, comfortable assumption: that we have control over what software is running on our hardware, and that the underlying system behaves exactly as we expect. We assume that the memory management happening under the hood is a solved problem''a silent utility that stays within its lines.

Elektricky polohovatelný stůl Di volio Amone stojí jen 2590 Kč. • V ceně jsou i pracovní deska, držák na sluchátka, pevné nožičky, případně i kolečka. • Panel používá fyzická tlačítka a má paměť na tři polohy.