Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
A gunman attempted to enter the White House Correspondents’ Dinner in Washington, DC, last week, where President Donald Trump, Vice President JD Vance, and other senior administration officials were in attendance. Media reports and Trump himself he quickly identified the suspected shooter as 31-year-old engineer and computer scientist Cole Tomas Allen. The California resident was arrested at the scene on Saturday and appeared on Monday in US District Court for the District of Columbia face three federal charges: attempted assassination of the president, carrying firearms in interstate commerce, and discharging firearms during riots.
The certification body FIDO Alliance announced working groups this week along with Google and Mastercard to develop security measures for authentication and authorization. to prevent incidents caused by an AI agent. Meanwhile, due to the increasing number and impact of other work using AI, OpenAI released an “advanced” security solution of ChatGPT and Codex accounts that are at increased risk.
A new study out this week sheds light on what happened 90,000 photos taken from a European celebrity’s phone have been leaked online-emphasizing the dangers of commercial spyware such as privacy attacks and the threat of privacy breaches and harassment. And WIRED took a look Arrested in the United Arab Emirates for sharing photos and other online resources.
And there are many. Every week, we create security and privacy stories that we haven’t covered in depth ourselves. Click on the headlines to read all the stories. And be safe out there.
The Funniest Place on Earth has just begun. The Walt Disney Company he announced this week that visitors to Disneyland Park and Disney California Adventure Park will have the opportunity to “choose” to enter the park through a gate equipped with facial recognition technology. Although the company says that submitting to facial recognition is “optional,” it says that “you can still have your photo taken” when you enter the parks through entrances without facial recognition systems. Disney’s facial recognition, like many others, works by converting images of people’s faces into numbers, which can then be used to match faces to other images. The company says the data will be deleted after 30 days, “unless the data needs to be stored for legitimate purposes or to prevent fraud.”
Facial recognition systems are widely used in the United States and around the world. Law enforcement agencies often use technology, but it has also spread into everyday activities, since airports in MLB and NFL stadiums to Madison Square Garden.
Anthropic’s Mythos Preview AI version has been described as being so adept at digging up modifiable bugs in software that its use has been carefully restricted to prevent it from falling into the hands of malicious hackers. So maybe it would be surprising if the National Security Agency would be no tried before.
Bloomberg News is Axios reported this week that the NSA was among the agencies and companies that were granted access to Mythos, which has been limited to 40 organizations so far, according to Axios. The agency has used the tool to hunt for bugs in Microsoft software — naturally, because it still runs on most PCs in the world — and has been impressed by its speed and ability to find exploitable threats, according to sources who spoke anonymously to Bloomberg. The agency’s offering also includes other resources to help the US government identify and identify security threats in the software it uses, as well as exploiting some of the weaknesses in the NSA’s operations.
The NSA’s testing or adoption of Anthropic’s AI tool appears to have continued despite the Department of Defense’s ban on Anthropic, which followed Defense Secretary Pete Hegseth’s assertion that the company represented a product risk. Hegseth said in February, however, that the DOD would move away from Anthropic’s equipment for six months, and Anthropic has filed a lawsuit to overturn the ban. Since the NSA is part of the DOD, it’s unclear at this point whether the NSA is just using Mythos on the screen before the ban goes into effect, or if the tool is powerful enough to force the NSA to reconsider its ban — or create something different.
The ransom group known as Scattered Spider has been involved in an extensive damage campaign focusing on recent memory, including breaches of MGM Resorts, Caesars Entertainment, and retailers such as M&S and Harrods. It is also distinguished among ransomware criminals by its membership: In most cases, young English-speaking criminals who live in countries that cooperate with US law enforcement – and therefore are arrested.
The latest member of the group to be identified and charged is 19-year-old Peter Stokes, who was arrested at an airport in Finland, where he tried to board a flight to Japan. According to the Chicago Tribune, Stokes’ alleged involvement in the pursuit of four companies involved in Scattered Spider is described in the complaint filed. Stokes is said to be accused of helping to steal millions from unidentified companies, which included an online communications platform and a luxury goods retailer. According to the complaint, he also led a jet-set lifestyle, traveling from Dubai to Thailand to New York and appearing in one photo wearing a diamond necklace that read “HACK THE PLANET.”
The Medicare system left open on the Internet inadvertently exposed Social Security numbers and other health information of people around the US, the Washington Post reported. The system was linked to the online directory of the Centers for Medicare and Medicaid Services (CMS), which allowed Medicare patients to look up insurance plans accepted by health care providers. According to the Post, the leaked information had been online for “at least several weeks.” The release of the book is part of the Trump administration’s efforts to “create a global database of health care providers,” the Post reports, which is overseen by Amy Gleason, head of the US DOGE Service who also works as a CMS employee.
