Latest Tech News

Stay updated with the latest in technology, AI, cybersecurity, and more

Filtered by: sec Clear Filter

Hiding secret codes in light protects against fake videos

news.ycombinator.com Patricia Waldron 2025-12-13 14:40:27

Fact-checkers may have a new tool in the fight against misinformation. A team of Cornell researchers has developed a way to “watermark” light in videos, which they can use to detect if video is fake or has been manipulated. The idea is to hide information in nearly-invisible fluctuations of lighting at important events and locations, such as interviews and press conferences or even entire buildings, like the United Nations Headquarters. These fluctuations are designed to go unnoticed by humans

Topics: code davis light secret video
Read More
Shop Amazon

Palo Alto Networks agrees to buy CyberArk for $25B

news.ycombinator.com Rebecca Szkutak 2025-12-10 11:19:44

In Brief Cybersecurity giant Palo Alto Networks announced on Wednesday its intent to acquire identity management and security company CyberArk for $25 billion. The deal, a mix of cash and stock, marks Palo Alto’s entrance into the identity security space, according to a company press release. Palo Alto has been on a shopping spree since Nikesh Arora took over as CEO and chairman of the company in 2018, according to the Financial Times, which estimated the company has spent more than $7 billion

Topics: alto company largest palo security
Read More
Shop Amazon

Google Will Use AI to Guess People’s Ages Based on Search History

wired.com Dell Cameron 2025-12-13 14:30:00

Last week, the United Kingdom began requiring residents to verify their ages before accessing online pornography and other adult content, all in the name of protecting children. Almost immediately, things did not go as planned—although, they did go as expected. As experts predicted, UK residents began downloading virtual private networks (VPNs) en masse, allowing them to circumvent age verification, which can require users to upload their government IDs, by making it look like they’re in a diff

Topics: age content online privacy security
Read More
Shop Amazon

Yes, You Can Bundle Other Cybersecurity Services With Some VPNs. But Is It a Good Idea?

cnet.com See Full Bio 2025-12-14 14:00:00

If all you’re using to protect your digital privacy and security is a VPN and your own vigilance, you’re still leaving yourself vulnerable to various online threats like phishing, malware, identity theft and ransomware. To fully protect yourself, you need to start putting together an arsenal of privacy and security tools. Using a trustworthy VPN is a great start because a VPN can boost your online privacy by encrypting your internet traffic and masking your true IP address. But a VPN is only on

Topics: password privacy security services vpn
Read More
Shop Amazon

Supporting the BEAM community with free CI/CD security audits

news.ycombinator.com Erlang Solutions Team 2025-12-15 04:20:07

Keep up to date with the latest news, best practice ideas and exclusive offers. Don’t miss out. Sign up here. Sign up for our quarterly newsletter At Erlang Solutions, our support for the BEAM community is long-standing and built into everything we do. From contributing to open-source tools and sponsoring events to improving security and shaping ecosystem standards, we’re proud to play an active role in helping the BEAM ecosystem grow and thrive. One way we’re putting that support into action

Topics: audits beam erlang security systems
Read More
Shop Amazon

AI-powered Cursor IDE vulnerable to prompt-injection attacks

bleepingcomputer.com Unknown 2025-12-15 12:00:00

A vulnerability that researchers call CurXecute is present in almost all versions of the AI-powered code editor Cursor, and can be exploited to execute remote code with developer privileges. The security issue is now identified as CVE-2025-54135 and can be leveraged by feeding the AI agent a malicious prompt to trigger attacker-control commands. The Cursor integrated development environment (IDE) relies on AI agents to help developers code faster and more efficiently, allowing them to connect

Topics: agent cursor mcp researchers security
Read More
Shop Amazon

Understanding the Complete Identity Management Ecosystem

news.ycombinator.com Unknown 2025-12-16 14:12:19

Confused by the growing identity management landscape? This comprehensive guide breaks down every IAM category—from traditional workforce identity to emerging AI agents. Learn how CIAM, PAM, Zero Trust, and 15+ other solutions connect in the modern security ecosystem. 🔐 Identity management has grown from simple password systems into a complex web of specialized tools and technologies. Each piece serves a specific purpose, but understanding how they all fit together can be confusing. This guide

Topics: access identity management security systems
Read More
Shop Amazon

Horrifyingly Huge New Stick Insect Discovered Exactly Where You Think

gizmodo.com Gayoung Lee 2025-12-16 23:05:48

Australia is famous for hosting the weirdest creatures we’ve ever seen. Sometimes, these weird creatures also come extra-large—like the newly discovered stick insect that researchers believe may be the heaviest of all Aussie insects. The insect, named Acrohylla alta, is about 15 inches (40 centimeters) long—about the height of a bowling pin—and weighs around 0.1 pounds (44 grams), slightly lighter than the heaviest golf ball. In a recent Zootaxa paper, wildlife researchers Angus Emmott and Ross

Topics: emmott insect new researchers species
Read More
Shop Amazon

Microsoft catches Russian hackers targeting foreign embassies

arstechnica.com Unknown 2025-12-16 23:43:51

Russian-state hackers are targeting foreign embassies in Moscow with custom malware that gets installed using adversary-in-the-middle attacks that operate at the ISP level, Microsoft warned Thursday. The campaign has been ongoing since last year. It leverages ISPs in that country, which are obligated to work on behalf of the Russian government. With the ability to control the ISP network, the threat group—which Microsoft tracks under the name Secret Blizzard—positions itself between a targeted

Topics: blizzard isp microsoft russian secret
Read More
Shop Amazon

SEC debuts 'Project Crypto' to bring U.S. financial markets 'on chain'

cnbc.com Tanaya Macheel 2025-12-17 09:08:26

The Securities and Exchange Commission on Thursday debuted "Project Crypto," an initiative to modernize securities rules and regulations to allow for crypto-based trading. "To achieve President Trump's vision of making America the crypto capital of the world, the SEC must holistically consider the potential benefits and risks of moving our markets from an off-chain environment to an on-chain one," SEC chair Paul Atkins said in remarks to an "American Leadership in the Digital Finance Revolution

Topics: crypto markets said sec securities
Read More
Shop Amazon

Read This Before You Trust Any AI-Written Code

gizmodo.com Aj Dellinger 2025-12-17 14:10:08

We are in the era of vibe coding, allowing artificial intelligence models to generate code based on a developer’s prompt. Unfortunately, under the hood, the vibes are bad. According to a recent report published by data security firm Veracode, about half of all AI-generated code contains security flaws. Veracode tasked over 100 different large language models with completing 80 separate coding tasks, from using different coding languages to building different types of applications. Per the repor

Topics: ai code getting models security
Read More
Shop Amazon

CISA open-sources Thorium platform for malware, forensic analysis

bleepingcomputer.com Unknown 2025-12-17 23:43:00

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) today announced the public availability of Thorium, an open-source platform for malware and forensic analysts across the government, public, and private sectors. Thorium was developed in partnership with Sandia National Laboratories as a scalable cybersecurity suite that automates many tasks involved in cyberattack investigations, and can schedule over 1,700 jobs per second and ingest over 10 million files per hour per permission

Topics: analysis cisa cybersecurity malware thorium
Read More
Shop Amazon

Launch HN: Gecko Security (YC F24) – AI That Finds Vulnerabilities in Code

news.ycombinator.com Unknown 2025-12-17 23:23:09

Hey HN, I'm JJ, Co-Founder of Gecko Security ( https://www.gecko.security ). We're building a new kind of static analysis tool that uses LLMs to find complex business logic and multi-step vulnerabilities that current scanners miss. We’ve used it to find 30+ CVEs in projects like Ollama, Gradio, and Ragflow ( https://www.gecko.security/research ). You can try it yourself on any OSS repo at ( https://app.gecko.security ). Anyone who’s used SAST (Static Application Security Testing) tools knows th

Topics: code like sast security tools
Read More
Shop Amazon

Two critical Android 16 security features you're not using (but absolutely should)

zdnet.com Jack Wallen 2025-12-18 09:51:00

JEFF PACHOUD/Getty Images Although Google's earlier-than-expected release of Android 16 was missing a few important features, the updated OS does deliver improved security that every Android user would be well-advised to enable. I'll explain these two key security features and how to find and enable them. Also: How to clear your Android phone cache (and why it greatly improves performance) 1. Identity Check This feature was added in 2024, but it didn't receive much attention until the relea

Topics: advanced android phone protection security
Read More
Shop Amazon

App Store safety again called into question by Tea app

9to5mac.com Ben Lovejoy 2025-12-18 14:10:12

Apple has frequently argued that it is reasonable for it to have monopolistic control over the sale of iPhone apps because it vets them for safety and security. This has been called into question over scam apps accepted into the App Store, and the same questions are being asked regarding the Tea app. The so-called dating advice app has been revealed to have major security vulnerabilities, which have exposed private chats and personal data of tens of thousands of women … Egregious security flaw

Topics: app apple security store tea
Read More
Shop Amazon

China summons Nvidia over potential security concerns in H20 chips

techspot.com Rob Thubron 2025-12-18 18:46:00

What just happened? Nvidia's relief at being allowed to resume export of its China-specific H20 chips may be short-lived. The country's cyberspace regulator says that it met with Nvidia to discuss national security concerns related to the H20, including potential tracking and backdoors. The Cyberspace Administration of China (CAC) said that Nvidia was asked to "clarify and submit relevant supporting documentation regarding security risks, including potential vulnerabilities and backdoors, assoc

Topics: china chips h20 nvidia security
Read More
Shop Amazon

How was the Universal Pictures 1936 opening logo created?

news.ycombinator.com Unknown 2025-12-18 17:19:54

A quick Google search turned up the following on a forum link which explains this originated from Tim Dickinson, who has a complete explanation of how this logo was done on Twitter Alexander Golitzen, famed Art Director, who worked at Universal for over 30 years. With new owners behind the studio, the biplane that had circled the Earth since 1927 was dropped. Golitzen embraced the Art Deco movement, using plexiglass for its replacement. The differently sized spinning stars were filmed first, u

Topics: globe lettering pass second stars
Read More
Shop Amazon

Apple security bounties pay up to $2M, but it only paid $1k for a critical bug

9to5mac.com Ben Lovejoy 2025-12-19 05:06:31

Apple encourages security researchers to seek out and report vulnerabilities in its devices and apps, in return for which it pays bug bounties of up to $2M. However, one security researcher who reported a Safari vulnerability Apple graded as Critical, and gave a severity score of 9.8 out of 10, says they were paid only $1,000 … Apple upgraded its security bounty program back in 2022, and stated then that its average payout was $40,000 and that it had on twenty occasions paid a six-figure sum f

Topics: 000 apple critical payout security
Read More
Shop Amazon

Figma will IPO on July 31

news.ycombinator.com Unknown 2025-12-18 20:24:58

Figma is a design and product development platform—where teams come together to turn ideas into the world’s best digital products and experiences. Today, we’re announcing the pricing of Figma’s initial public offering of 36,937,080 shares of Class A common stock at a public offering price of $33.00 per share. The shares are expected to begin trading on the New York Stock Exchange on July 31, 2025 under the ticker symbol "FIG." The offering is expected to close on August 1, 2025, subject to the

Topics: figma new offering prospectus securities
Read More
Shop Amazon

Critical vulnerability in AI coding platform Base44 allowing unauthorized access

news.ycombinator.com Unknown 2025-12-18 18:12:32

One of the most profoundly transformed domains in the wake of the LLM revolution has been code generation, especially the rise of vibe coding, where natural language prompts replace traditional programming. This shift has empowered millions of users with little to no technical background to build fully functional applications with ease. Platforms like Loveable, Bolt, and Base44 are on the front of this movement - they have enabled the creation of millions of applications spanning from persona

Topics: applications base44 platforms security vulnerability
Read More
Shop Amazon

Shadow AI adds $670K to breach costs while 97% of enterprises skip basic access controls, IBM reports

venturebeat.com Louis Columbus 2025-12-19 18:23:49

Want smarter insights in your inbox? Sign up for our weekly newsletters to get only what matters to enterprise AI, data, and security leaders. Subscribe Now Shadow AI is the $670,000 problem most organizations don’t even know they have. IBM’s 2025 Cost of a Data Breach Report, released today in partnership with the Ponemon Institute, reveals that breaches involving employees’ unauthorized use of AI tools cost organizations an average of $4.63 million. That’s nearly 16% more than the global ave

Topics: ai breach organizations report security
Read More
Shop Amazon

Security Bite: iPhone users are more reckless online, new study finds

9to5mac.com Arin Waichulis 2025-12-20 09:28:19

9to5Mac Security Bite is exclusively brought to you by Mosyle, the only Apple Unified Platform. Making Apple devices work-ready and enterprise-safe is all we do. Our unique integrated approach to management and security combines state-of-the-art Apple-specific security solutions for fully automated Hardening & Compliance, Next Generation EDR, AI-powered Zero Trust, and exclusive Privilege Management with the most powerful and modern Apple MDM on the market. The result is a totally automated Appl

Topics: android apple iphone security users
Read More
Shop Amazon

Palo Alto Networks agrees to buy CyberArk for $25 billion

techcrunch.com Rebecca Szkutak 2025-12-20 09:38:29

In Brief Cybersecurity giant Palo Alto Networks announced on Wednesday its intent to acquire identity management and security company CyberArk for $25 billion. The deal, a mix of cash and stock, marks Palo Alto’s entrance into the identity security space, according to a company press release. Palo Alto has been on a shopping spree since Nikesh Arora took over as CEO and chairman of the company in 2018, according to the Financial Times, which estimated the company has spent more than $7 billion

Topics: alto company largest palo security
Read More
Shop Amazon

Critical Vulnerability in AI Vibe Coding platform Base44

news.ycombinator.com Unknown 2025-12-20 12:12:32

One of the most profoundly transformed domains in the wake of the LLM revolution has been code generation, especially the rise of vibe coding, where natural language prompts replace traditional programming. This shift has empowered millions of users with little to no technical background to build fully functional applications with ease. Platforms like Loveable, Bolt, and Base44 are on the front of this movement - they have enabled the creation of millions of applications spanning from persona

Topics: applications base44 platforms security vulnerability
Read More
Shop Amazon

Critical Vulnerability Discovered 11 Days After Wix Buys Base44

news.ycombinator.com Unknown 2025-12-20 18:12:32

One of the most profoundly transformed domains in the wake of the LLM revolution has been code generation, especially the rise of vibe coding, where natural language prompts replace traditional programming. This shift has empowered millions of users with little to no technical background to build fully functional applications with ease. Platforms like Loveable, Bolt, and Base44 are on the front of this movement - they have enabled the creation of millions of applications spanning from persona

Topics: applications base44 platforms security vulnerability
Read More
Shop Amazon

Palo Alto Networks stock falls after announcing $25 billion Cyberark deal

cnbc.com Samantha Subin 2025-12-20 23:45:40

Palo Alto Networks will take over Israeli identity security provider CyberArk in a deal valued at roughly $25 billion. The California-based cybersecurity company will pay shareholders $45 apiece for 2.2005 shares of CyberArk, representing a 26% premium to its share price Friday. The deal is expected to close during Palo Alto Networks' fiscal year 2026. Shares of Palo Alto fell 5% Wednesday, building on a 5% loss from Tuesday. CyberArk's stock whipsawed. Palo Alto CEO and chairman Nikesh Arora

Topics: alto cyberark cybersecurity market palo
Read More
Shop Amazon

Palo Alto Networks stock falls 7% after announcing $25 billion Cyberark deal

cnbc.com Samantha Subin 2025-12-21 04:47:22

Palo Alto Networks will take over Israeli identity security provider CyberArk in a deal valued at roughly $25 billion. The California-based cybersecurity company will pay shareholders $45 apiece for 2.2005 shares of CyberArk, representing a 26% premium to its share price Friday. The deal is expected to close during Palo Alto Networks' fiscal year 2026. Shares of Palo Alto fell 7% Wednesday, building on a 5% loss from Tuesday. CyberArk's stock dipped about 1%. Palo Alto CEO and chairman Nikesh

Topics: alto cyberark cybersecurity market palo
Read More
Shop Amazon

Palo Alto Networks stock falls 8% after announcing $25 billion Cyberark deal

cnbc.com Samantha Subin 2025-12-21 09:59:50

Palo Alto Networks will take over Israeli identity security provider CyberArk in a deal valued at roughly $25 billion. The California-based cybersecurity company will pay shareholders $45 apiece for 2.2005 shares of CyberArk, representing a 26% premium to its share price Friday. The deal is expected to close during Palo Alto Networks' fiscal year 2026. Shares of Palo Alto fell more than 8% Wednesday, building on a 5% loss from Tuesday. CyberArk's stock dipped about 2%. Palo Alto CEO and chair

Topics: alto cyberark cybersecurity market palo
Read More
Shop Amazon
Trending Topics
Hot Now
ai 3659 apple 3036 new 2410 google 2036 content 1733
Popular
like 1502 company 1428 pro 1335 iphone 1175 app 1132 zdnet 1114 said 1070 data 1052 does 909 reviews 894
Emerging
editorial 873 amazon 860 game 810 samsung 777 phone 767 pixel 761 android 742 just 721 users 688 available 685
About GoKawiil

GoKawiil is a project by nerdhub.co that curates technology news from trusted sources. We built this site to provide a cleaner, more mobile-friendly experience without intrusive ads or heavy JavaScript.

Privacy

Your privacy matters. GoKawiil doesn't use Google Analytics or Facebook Pixel. The only tracking occurs through affiliate links to Amazon.

Advertising

Interested in advertising? Contact us at [email protected]