Read more of this story at Slashdot.

Read more of this story at Slashdot.

Read more of this story at Slashdot.

Read more of this story at Slashdot.

Read more of this story at Slashdot.

Amazon has secured a temporary win in its fight with Perplexity over the use of AI shopping bots. Bloomberg reported that a San Francisco federal court has determined that Perplexity must stop using its Comet web browser's AI agent to make purchases for users on Amazon's marketplace. The AI company will have a week to appeal the decision, otherwise it has been ordered to stop accessing any password-protected areas of Amazon's systems and destroy its copies of Amazon's data while the two companies continue to argue their cases.

"Amazon has provided strong evidence that Perplexity, through its Comet browser, accesses with the Amazon user's permission but without authorization by Amazon, the user's password-protected account," District Judge Maxine Chesney wrote in placing the temporary block.

"The preliminary injunction will prevent Perplexity’s unauthorized access to the Amazon store and is an important step in maintaining a trusted shopping experience for Amazon customers," an Amazon spokesperson told Bloomberg.

Amazon sent a cease-and-desist letter to Perplexity over the AI company's shopping bots in November. According to Amazon, use of the Comet agent to make purchases is a violation of its terms of service. "Perplexity will continue to fight for the right of internet users to choose whatever AI they want," a representative from Perplexity said of this week's decision.

Josh Wardle had a hell of a tough act to follow. His last game, Wordle, became incredibly popular thanks to its blend of simplicity, clarity and shareability. Over four years (and a seven-figure sale of Wordle to The New York Times) later, Wardle has released his follow-up game.

Like Wordle and its myriad clones, Parseword offers up one puzzle per day. It taps into the mechanics of cryptic crossword clues. So it might ask you to replace one of the words with a synonym, reverse it or find a homophone. You may need to remove letters from a word or combine it with another one to find the answer. There’s a tutorial to help you get to grips with things and hints are available.

Wardle told The New Yorker he was inspired by The Last of Us showrunner Craig Mazin, who he heard discuss the logic behind cryptics on a podcast. Wardle brought in two friends, Chris Dary and Matt Lee, whom he worked with at Reddit to collaborate on the new game. They received permission to use clues from long-time cryptic constructors Emily Cox and Henry Rathvon.

After playing the tutorial and today's puzzle, it seems you may need to be wired in a certain way to play Parseword. It’s certainly less approachable than Wordle. At first glance, it’s hard to see this reaching the same kind of mass appeal as Wardle’s previous game. (Fittingly enough, Parseword feels like a game geared toward New Yorker readers.)

Of course, countless other casual daily games that aim to replicate the success of Wordle have popped up over the last few years, from Quordle, Bracket City and Framed to the Times’ own Connections, Strands and Pips. Catfishing, which asks you to guess Wikipedia article subjects based on their categories, is a new favorite of mine. I still miss the original Heardle, though.

The Super Mario Galaxy Movie is nearly upon us, as the hotly-anticipated sequel arrives in theaters on April 1. Nintendo recently dropped the final trailer for the film, which is filled with quick visual gags and nods to the source material.

There aren't too many actual reveals in this footage, as it covers a lot of the same ground as previous trailers. However, it does show that fan favorite Lumalee is returning as a prison guard of some sort, reversing the storyline from the original film in which the cheerfully nihilistic creature was trapped in a cage.

Nintendo also released a larger presentation that featured the aforementioned trailer, but also included interviews with actors and franchise creator Shigeru Miyamoto. We did get some news in this video.

It was revealed that the long-tongued dinosaur Yoshi will be voiced by Donald Glover. So it's likely the dino will be saying a lot more than "Yoshi" over and over. Actor Luis Guzman will also be playing Wart, the primary antagonist from Super Mario Bros. 2. Issa Rae will be on hand to voice Honey Queen, the gigantic bee character from the Super Mario Galaxy games.

It was even confirmed by lead actors Chris Pratt and Charlie Day that Luigi would be on hand for the entire adventure this time, and not confined to a cage-based subplot. I didn't realize Luigi's role in the first film was enough of a controversy to warrant this kind of mention, but here we are.

Illumination CEO Chris Meledandri also appeared in the video, assuring viewers that there are still "some big surprises" waiting in the actual film. To that end, there's been a rumor floating around that Fox McCloud from the Starfox franchise would be showing up. Is this the start of a Nintendo cinematic universe that will culminate in 10 years with a Super Smash Bros. movie? Stranger things have happened.

OpenAI is rolling out new interactive responses in ChatGPT it says are designed to make the chatbot more useful for learners. Starting today, ChatGPT will generate dynamic visuals when you ask it to explain select scientific and mathematical concepts, including the Pythagorean theorem, Coulomb's law and lens equations. When ChatGPT responds with an interactive visual, you'll be able to tweak any variables and the equation itself, allowing you to see how those changes affect the solution.

With today's release, OpenAI says ChatGPT will respond with interactive visuals when asked about more than 70 concepts, with support for additional topics to come down the line. The visuals are available to all ChatGPT users, regardless of subscription status. However, OpenAI notes high school- and college-aged students are likely to get the most out of the new feature.

The more interactive responses from ChatGPT follow the release of Study Mode last summer. Released in response to the sheer amount of students using chatbots to complete their coursework, that feature guides the user toward finding an answer themselves, rather than provide an outright solution. "This is just the beginning," OpenAI says of its latest feature. "Over time, we plan to expand interactive learning with additional subjects and continue building tools that strengthen learning with ChatGPT."

Nintendo's next platform adventure, Yoshi and the Mysterious Book, will be released for Switch 2 on May 21. The company announced the release date as part of its annual Mar10 Day celebration. This is a made-up holiday that exists because the date spelled out like that sort of looks like the word Mario.

In any event, there's a new trailer for the perpetually hungry dinosaur's latest adventure. It looks super cute. It sort of resembles a children's picture book come to life. Yoshi games typically boast unique graphical styles, with past entries featuring entire worlds made of yarn, cardboard and more. Even the very first Yoshi platformer, Super Mario World 2: Yoshi's Island, featured a kind of hand-drawn aesthetic.

The gameplay looks to be somewhat unique, with a reduced emphasis on chucking eggs. Many of the game's creatures grant Yoshi special abilities when they hop on the dino for a ride. This reminds me of another Nintendo-branded glutton, Kirby.

Today's trailer also shows Yoshi gobbling up an enemy and encountering a foul and bitter taste, giving the little cutie a momentary stomach ache. I guess Yoshi's palette has become more refined since the last game.

This has already been a big week for the anthropomorphic dinosaur. Nintendo recently dropped another trailer for The Super Mario Galaxy Movie and it was revealed that Donald Glover will be voicing Yoshi. That film hits theaters on April 1, which is just a few weeks away.

Iranian government-backed snoops are increasingly using cybercrime malware and ransomware infrastructure in their operations - not just hiding behind criminal masks as a cover for destructive cyber activity, according to security researchers....

Public water supplies in America will need billions invested to meet the peak requirements of datacenters during the hottest periods of the year, even if their overall annual consumption is relatively modest....

JetBrains has previewed Air, a tool for agentic AI development which it describes as a new wave of dev tooling....

Cyber baddies quietly compromised legitimate WordPress websites, including the campaign site of a US Senate candidate, turning them into launchpads for a global infostealer operation....

The skies over parts of the US could soon get busier, as the Federal Aviation Administration launches pilot projects spanning 26 states to test electric air taxis and other next-gen aircraft, with operations expected to begin by summer 2026....

Google’s $32 billion Wiz acquisition is nearing completion, marking a record Israeli tech exit and a major bet on cloud security.

The post Google’s $32B Wiz Acquisition Set to Become Israel’s Largest Tech Deal Ever appeared first on TechRepublic.

Dutch intelligence says Russian state hackers are compromising Signal and WhatsApp accounts with phishing and linked-device tricks, underscoring how account security can fail even when encryption holds.

The post Russian Hackers Target Signal and WhatsApp Accounts, Dutch Intelligence Warns appeared first on TechRepublic.

AI data center startup Nscale raised $2 billion at a $14.6 billion valuation from chip giant Nvidia.

The post Nvidia-Backed Nscale Raises $2B as AI Drives ‘Largest Infrastructure Buildout in Human History’ appeared first on TechRepublic.

Google Messages is testing Tap to Draft, a new beta feature that lets users edit Smart Replies before sending and helps prevent accidental texts.

The post New Google Messages Feature Lets Users Edit Smart Replies Before Sending appeared first on TechRepublic.

A fake Gemini-style chatbot is pushing a bogus Google Coin presale, using Google branding and scripted AI replies to lure victims into crypto payments.

The post Fake Gemini AI Chatbot Promotes ‘Google Coin’ in New Crypto Scam appeared first on TechRepublic.

Read more of this story at Slashdot.

Read more of this story at Slashdot.

Read more of this story at Slashdot.

Read more of this story at Slashdot.

Read more of this story at Slashdot.

Iranian government-backed snoops are increasingly using cybercrime malware and ransomware infrastructure in their operations - not just hiding behind criminal masks as a cover for destructive cyber activity, according to security researchers....

Cyber baddies quietly compromised legitimate WordPress websites, including the campaign site of a US Senate candidate, turning them into launchpads for a global infostealer operation....

A Russian-speaking cyber criminal is targeting corporate HR teams with fake CVs that quietly install malware which can disable security tools before stealing data from infected machines....

A voice-phishing scam targeting one of Ericsson's service providers has exposed the personal data of more than 15,000 individuals after attackers sweet-talked an employee into handing over access....

Opinion The hacker mind is a curious way to be. To have it means to embody endless analytical curiosity, an awareness of any given rule set as just one system among many, and an ability to see any system in ways that its creators never expected. Combine this with a drive to find the bad and make things better, and you become one of the fundamental forces of the technological universe....

NCEES explains why licensure matters for engineers and answers your top questions about the FE and PE exams. Source Views: 15

La entrada Thinking About Becoming a Licensed Engineer? Start Here. se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

View our compilation of online stories and resources highlighting the Hispanic community and their contributions to STEM. Source Views: 14

La entrada Celebrate Hispanic Heritage Month With SWE se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

Source: www.cyberdefensemagazine.com – Author: News team Software supply chain attacks have emerged as a serious threat in the rapidly evolving field of cybersecurity, especially in medical devices. As these devices become more and more interconnected and dependent on complex software ecosystems, the potential for exploitation through the supply chain has grown exponentially. One powerful tool [...]

La entrada The Critical Role of Sboms (Software Bill of Materials) In Defending Medtech From Software Supply Chain Threats – Source: www.cyberdefensemagazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

Source: www.cyberdefensemagazine.com – Author: News team It’s common knowledge in the cybersecurity industry that ransomware is on the rise, with median demands rising 20% year-over-year across virtually all industries. But it’s not only the ransom sums themselves that are escalating; threat actors are engaging in increasingly aggressive tactics and techniques to extort their victims. It’s [...]

La entrada Ransomware Tactics Are Shifting. Here’s How to Keep Up – Source: www.cyberdefensemagazine.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

Source: www.darkreading.com – Author: Rob Wright CERT-FR’s advisory follows last month’s disclosure of a zero-day flaw Apple said was used in “sophisticated” attacks against targeted individuals. Original Post URL: https://www.darkreading.com/vulnerabilities-threats/french-sheds-light-apple-spyware-activity Category & Tags: – Views: 11

La entrada French Advisory Sheds Light on Apple Spyware Activity – Source: www.darkreading.com se publicó primero en CISO2CISO.COM & CYBER SECURITY GROUP.

Google’s $32 billion Wiz acquisition is nearing completion, marking a record Israeli tech exit and a major bet on cloud security.

The post Google’s $32B Wiz Acquisition Set to Become Israel’s Largest Tech Deal Ever appeared first on TechRepublic.

A fake Gemini-style chatbot is pushing a bogus Google Coin presale, using Google branding and scripted AI replies to lure victims into crypto payments.

The post Fake Gemini AI Chatbot Promotes ‘Google Coin’ in New Crypto Scam appeared first on TechRepublic.

Attackers are using fake Claude Code install pages and malicious search ads to spread infostealer malware targeting Windows and macOS systems.

The post Fake Claude Code Spreads Malware to Windows, macOS Users appeared first on TechRepublic.

Veeam’s Agent Commander turns backup into an AI-era command center, giving enterprises the guardrails, visibility, and precision “undo” they need to safely scale autonomous agents.

The post Veeam’s ‘Agent Commander’: Bringing Guardrails and Resilience to the Wild West of AI appeared first on TechRepublic.

The FBI is investigating suspicious cyber activity in a system used to process surveillance and wiretap warrants, raising concerns about security risks to sensitive data.

The post FBI Investigates Suspicious Activity in Surveillance Platform appeared first on TechRepublic.

For B2B SaaS companies, Zero Trust isn't an optional enterprise security concept. It's what enterprise buyers are demanding, what audit frameworks require, and increasingly what separates companies that close deals from those that don't.

The post Zero Trust for B2B SaaS: What Every Founder and CTO Needs to Know appeared first on Security Boulevard.

OpenAI has snapped up Promptfoo, a specialized artificial intelligence (AI) security startup, to bolster the safety of autonomous digital workers and convince enterprise clients that AI co-workers are ready for high-stakes business environments. OpenAI did not disclose financial terms of the transaction. PitchBook data indicates Promptfoo was valued at $119 million following a $22 million..

The post OpenAI Acquires Security Startup Promptfoo to Fortify AI Agents appeared first on Security Boulevard.

Managed service providers (MSPs) bridge the gap between what the cloud makes possible and what most organizations can realistically run, secure, and scale with their current teams. MSPs turn AWS capabilities into reliable services that drive customer value instead of sitting unused on a roadmap.

The post How MSPs Bridge the Gap Between Cloud Potential and Day‐to‐Day Reality appeared first on Security Boulevard.

Author, Creator & Presenter: Lea Kissner, LinkedIn

Our thanks to USENIX Security '25 (Enigma Track) (USENIX '25 for publishing their Creators, Authors and Presenter’s tremendous USENIX Security '25 (Enigma Track) content on the Organizations' YouTube Channel.

Permalink

The post USENIX Security ’25 (Enigma Track) – Security Theater Is Canceled: Time For A Real Show appeared first on Security Boulevard.

Scammers are impersonating local municipal officials around the country with seemingly legitimate phishing messages demanding payment for permits. The bad actors grab publicly available information and use them in their emails to fool their targets.

The post Phishing Scammers Impersonating City, County Officials, Demanding Payment: FBI appeared first on Security Boulevard.

Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite

Since starting HIBP a dozen and a bit years ago, I've loaded an average of one breach every 4.7 days. That's 959 of them to date, but last week it was five in only two days. That's a few weeks' worth of

Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite

The Odido breach leaks were towards the beginning during this week's update. I recorded it the day after the second dump of data had hit, with a third dump coming a few hours later, and a final dump of everything the day after that. From what I hear,

Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite

The recurring theme this week seems to be around the gap between breaches happening and individual victims finding out about them. It's tempting to blame this on the corporate victim of the breach (the hacked company), but they're simultaneously dealing with a criminal intrusion, a ransom

Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite

Well, the ESP32 Bluetooth bridge experiment was a complete failure. Not the radios themselves, they're actually pretty cool, but there's just no way I could get the Yale locks to be reliably operated by them. At a guess, BLE is a bit too passive to detect

Presently sponsored by: Report URI: Guarding you from rogue JavaScript! Don’t get pwned; get real-time alerts & prevent breaches #SecureYourSite

A big "thank you" to everyone who helped me troubleshoot the problem with my "Print Screen" button on the new PC. Try as we all might, none of us could figure out why it refused to bind to SnagIt and instead insisted on dumping the entire

Countries around the world are becoming increasingly concerned about their dependencies on the US. If you’ve purchase US-made F-35 fighter jets, you are dependent on the US for software maintenance.

The Dutch Defense Secretary recently said that he could jailbreak the planes to accept third-party software.

It’s called AirSnitch:

Unlike previous Wi-Fi attacks, AirSnitch exploits core features in Layers 1 and 2 and the failure to bind and synchronize a client across these and higher layers, other nodes, and other network names such as SSIDs (Service Set Identifiers). This cross-layer identity desynchronization is the key driver of AirSnitch attacks.

The most powerful such attack is a full, bidirectional machine-in-the-middle (MitM) attack, meaning the attacker can view and modify data before it makes its way to the intended recipient. The attacker can be on the same SSID, a separate one, or even a separate network segment tied to the same AP. It works against small Wi-Fi networks in both homes and offices and large networks in enterprises...

This is a very weird story about how squid stayed on the menu of Byzantine monks by falling between the cracks of dietary rules.

At Constantinople’s Monastery of Stoudios, the kitchen didn’t answer to appetite.

It answered to the “typikon”: a manual for ensuring that nothing unexpected happened at mealtimes. Meat: forbidden. Dairy: forbidden. Eggs: forbidden. Fish: feast-day only. Oil: regulated. But squid?

Squid had eight arms, no bones, and a gift for changing color. Nobody had bothered writing a regulation for that. This wasn’t a loophole born of legal creativity but an oversight rooted in taxonomic confusion. Medieval monks, confronted with a creature that was neither fish nor fowl, gave up and let it pass...

OpenAI is in and Anthropic is out as a supplier of AI technology for the US defense department. This news caps a week of bluster by the highest officials in the US government towards some of the wealthiest titans of the big tech industry, and the overhanging specter of the existential risks posed by a new technology powerful enough that the Pentagon claims it is essential to national security. At issue is Anthropic’s insistence that the US Department of Defense (DoD) could not use its models to facilitate “mass surveillance” or “fully autonomous weapons,” provisions the defense secretary Pete Hegseth ...

An unknown hacker used Anthropic’s LLM to hack the Mexican government:

The unknown Claude user wrote Spanish-language prompts for the chatbot to act as an elite hacker, finding vulnerabilities in government networks, writing computer scripts to exploit them and determining ways to automate data theft, Israeli cybersecurity startup Gambit Security said in research published Wednesday.

[...]

Claude initially warned the unknown user of malicious intent during their conversation about the Mexican government, but eventually complied with the attacker’s requests and executed thousands of commands on government computer networks, the researchers said...

Upgrade to Sophos Firewall v22 today.

Categories: Products & Services

Tags: Firewall, v22, network

Rising tensions have sparked an increase in regional hacktivist activity, but impact has been minimal

Categories: Threat Research

Tags: hacktivism, Iran, israel, Operation Epic Fury

Insights and recommended defensive measures from Sophos X-Ops Counter Threat Unit

Categories: Security Operations

Tags: Sophos CTU, Iran, Operation Epic Fury

Categories: Threat Research

Tags: advisory, vulnerability, SD-WAN

We’re excited to announce the highly anticipated release of Sophos Workspace Protection has arrived.

Categories: Products & Services

Tags: Workspace