LLMs Fall Short in Vulnerability Discovery and Exploitation
Forescout found that most LLMs are unreliable in vulnerability research and exploit tasks, with threat actors still skeptical about using tools for these purposes
FBI's CJIS demystified: Best practices for passwords, MFA & access control
FBI's Criminal Justice Information Services (CJIS) compliance isn't optional when handling law enforcement data. From MFA to password hygiene, see how Specops Software helps meet FBI standards while also securing your Windows Active Directory.
Four arrested in UK over M&S, Co-op, Harrod cyberattacks
The UK's National Crime Agency (NCA) arrested four people suspected of being involved in cyberattacks on major retailers in the country, including Marks & Spencer, Co-op, and Harrods.
Model Context Protocol (MCP) allows AI agents to interface with external systems. It powers a new class of software with unique identity security challenges.
L'Israélien Pegasus sera-t-il bientôt jugé aux États-Unis pour l'espionnage de journalistes ? - Numerama
Alors qu'en mars 2024, un tribunal californien avait jugé l'affaire d'espionnage opposant un média salvadorien au logiciel israélien Pegasus « entièrement étrangère », une cour d'appel fédérale a relancé ce dossier le 8 juillet 2025, au motif que les journalistes ont été espionnés via des serveurs américains. Pegasus
Microsoft Authenticator on iOS moves backups fully to iCloud
Microsoft is rolling out a new backup system in September for its Authenticator app on iOS, removing the requirement to use a Microsoft personal account to back up TOTP secrets and account names.
News alert: Reflectiz expands Datadog’s security scope to cover client-side web vulnerabilities
BOSTON, July 9, 2025, CyberNewswire -- Reflectiz, a leading cybersecurity company specializing in web exposure management, today announced a new integration with Datadog, Inc. (NASDAQ: DDOG), the monitoring and security platform for cloud applications. This integration combines advanced website security intelligence with enterprise-grade observability, empowering organizations with continuous visibility and control over their expanding attack
Microsoft confirms Windows Server Update Services (WSUS) sync is broken
Microsoft has confirmed a widespread issue in Windows Server Update Services (WSUS) that prevents organizations from syncing with Microsoft Update and deploying the latest Windows updates.
Qantas confirms data breach impacts 5.7 million customers
Australian airline Qantas has confirmed that 5.7 million people have been impacted by a recent data breach, in which threat actors stole customers' data.
Trump bill will have major impact on health care cybersecurity, experts warn Congress | CyberScoop
Witnesses at a Senate hearing Wednesday connected One Big Beautiful Bill provisions to potential cyber issues in the health care sector, much to GOP Sen. Bill Cassidy’s chagrin.
Google reveals details on Android’s Advanced Protection for Chrome
Google is sharing more information on how Chrome operates when Android mobile users enable Advanced Protection, highlighting strong security improvements.