The Wire
Curated cybersecurity and tech news — AI-summarized, source attributed.
Edge Leaves Saved Passwords Sitting in Process Memory
Microsoft Edge retains saved credentials in plaintext within its running process memory, where any local actor with sufficient privileges — malware, a compromis
FTC settlement bars Kochava from selling precise location data without consent
The FTC has reached a proposed settlement with Idaho-based data broker Kochava and its subsidiary Collective Data Solutions, ending a four-year case that began
Germany's .de TLD reportedly disrupted by DNSSEC chain-of-trust failure
Germany's national top-level domain experienced a resolution outage tied to DNSSEC validation. Verisign Labs' DNSSEC analyzer output shows the chain-of-trust tr
llm-echo 0.5a0 adds thinking-block simulation for LLM 0.32a0 testing
Simon Willison shipped version 0.5a0 of llm-echo, a plugin that registers a fake "echo" model inside the LLM CLI tool. The model performs no inference — it simp
MetInfo CMS Flaw CVE-2026-29014 Under Active Exploitation for Unauthenticated RCE
A critical PHP code injection vulnerability in MetInfo CMS versions 7.9 through 8.1, tracked as CVE-2026-29014 with a CVSS score of 9.8, is being actively explo
Middle East cyber conflict expands, with UAE emerging as a primary target
Cyber operations across the Middle East are widening in scope, and the UAE is taking a disproportionate share of the activity. The shift reflects the country's
Musk's lawyers grill OpenAI's Brockman over diary entries revealing profit motives
OpenAI president Greg Brockman took the stand in Elon Musk's lawsuit against OpenAI, where Musk's attorney Steven Molo forced him to read aloud personal journal
OAuth Tokens Are the Unwatched Back Door: Drift Breach Shows the Cost
OAuth grants issued to AI tools, automation platforms, and productivity apps don't expire, don't reset when passwords change, and rarely sit under any centraliz
Pennsylvania sues Character.AI over chatbot posing as licensed psychiatrist
Pennsylvania's Department of State and Board of Medicine have sued Character.AI, alleging the platform hosts chatbot characters that impersonate licensed medica
Quasar Linux implant hunts developer credentials with eBPF rootkit and PAM backdoors
Trend Micro has documented a previously unseen Linux malware kit, Quasar Linux (QLNX), built specifically to compromise developer and DevOps workstations intera
RFK Jr. targets SSRI prescribing with debunked heroin-comparison claims
Health Secretary Robert F. Kennedy Jr. used a Make America Healthy Again Institute event to announce federal initiatives aimed at reducing antidepressant prescr
ShinyHunters claims 280M-record theft from Instructure Canvas across 8,800 institutions
The ShinyHunters extortion crew is taking credit for last week's Instructure breach, claiming exfiltration of roughly 280 million records spanning students, tea