The Tea app, apparently, is a women-only dating safety app where members can share reviews about men, with access to the platform requiring a selfie and a government ID. The app, apparently, had a security problem. On Friday a user posted that there was an unsecured Firebase storage bucket with driver’s licenses, selfies and photos […]
Continue reading → [DISPLAY_ACURAX_ICONS]AI is Great – But Is It Secure? MCP (Model Context Protocol) servers are the backbone of agentic AI. But researchers say that authentication is optional and nearly all of the nearly 2,000 MCP servers exposed to the Internet today do not require authentication or have access controls. What could possibly go wrong? To test […]
Continue reading → [DISPLAY_ACURAX_ICONS]The FBI released a warning yesterday about a loosely-organized cybercriminal organization called The Com. The Com launches cyberattacks to steal money and information. The FBI released 3 security bulletins about The Com, a group made up of English-speaking minors, but which has expanded to include THOUSANDS of people who commit a variety of crimes. The crimes include ransomware, […]
Continue reading → [DISPLAY_ACURAX_ICONS]The program’s director at Lawrence Livermore National Laboratory (LLNL) told Congress today that government funding for a program that hunts for threats on America’s critical infrastructure networks expired on Sunday, shutting down all work on the program. CyberSentry is a public-private partnership, managed by CISA, that looks for malicious activity on IT and operational technology […]
Continue reading → [DISPLAY_ACURAX_ICONS]Hackers can and are contributing to open-source projects, but their contributions are not benign. Open-source – including AI code generators , are the main stay of software development. Saves time and money. In the second quarter of 2025, data exfiltration remained the top priority for attackers looking to quietly compromise developer environments from the inside out. In […]
Continue reading → [DISPLAY_ACURAX_ICONS]DOGE Staffer Leaked Private xAI API Key This does not appear to be malicious but both careless and of questionable judgement. Marko Elez, a special government employee who recently worked on systems at Treasury, Social Security and Homeland, published code to his GitHub. The code contained a private API key that exposed dozens of models […]
Continue reading → [DISPLAY_ACURAX_ICONS]