Google rushes Chrome update to fix zero-days under attack
… The company also revealed this week that it paid $17 million to 747 security researchers through its Vulnerability Reward Program in 2025. …
Search
Fake Linux Foundation leader using Slack to phish devs
… "This activity was a social engineering campaign that abused Google Sites to host a phishing page; it was not a security vulnerability or an underlying flaw within Google Workspace," a Google spokesperson told us. …
Anthropic, Google, Microsoft paid AI bug bounties – quietly
… "We may find this vulnerability in other vendors as well." None of the three vendors responded to The Register 's inquiries for this story. Claude Code Security Review Guan originally found the flaw in Claude Code Security Review. …
AI agents are 'gullible' and easy to turn into your minions
… They become a trusted advisor, but we need to be careful, because a trusted advisor can lead you off the cliff." In other words: don't trust until you verify. ® special features rsa conference rsa research ai security
VS Code goes weekly, gets AI autopilot - what could go wrong
… Autopilot is a permission level in Copilot Chat, in which all tool calls are approved automatically, errors are automatically retried, and questions raised by tools auto-respond "so that the agent does not stall waiting for a reply." Although it speeds development, auto approval is a security risk … …
Google: Spyware vendors, China-linked spies led 0-day abuse
… Google 11 and Apple 8 round out the top three. ® cybercrime security ciso google cloud
Cryptographers place $5,000 bet whether quantum will matter
… The clock is ticking. ® encryption quantum computing software security
Voice phishing skyrockets as smooth crims talk their way in
… Operators of edge devices don't often protect them with endpoint security products, so attacks running the machines often evade defenders. …
Linux kernel czar says AI bug reports aren't slop anymore
… Greg, who lives in the Netherlands these days, was there to briefly comment on AI, Linux, and security. We spoke about how, over the last month, AI-driven activity around Linux security and code review has "really jumped" in a way no one in the open source world saw coming. …