The Wire
Curated cybersecurity and tech news — AI-summarized, source attributed.
Talkie: a 13B language model trained only on pre-1931 English text
Nick Levine, David Duvenaud, and Alec Radford have released talkie-1930-13b, a 13B-parameter language model trained on 260B tokens of pre-1931 English text, alo
V. vulnificus costs man a leg and forearm in 72 hours as climate expands its range
A patient arrived at hospital with a Vibrio vulnificus infection so advanced that his right leg required above-the-knee amputation and his forearm needed extens
VECT 2.0 ransomware bug shreds files over 128KB instead of encrypting them
Check Point researchers found a fatal flaw in VECT 2.0, a ransomware-as-a-service offering pushed on BreachForums and recently aligned with TeamPCP — the crew b
Yglesias on vibecoding: leave the AI to the pros
Matthew Yglesias, quoted by Simon Willison, lands on a sharp position five months into the vibecoding era: he doesn't want to do it himself. He'd rather have pr
Anthropic's Mythos and the Shifting Baseline of AI-Driven Vuln Hunting
Anthropic's Claude Mythos Preview can reportedly find vulnerabilities in operating systems and internet infrastructure and turn them into working exploits witho
Carding Crew Publishes Three-Tier OPSEC Manual Borrowing From Intel Tradecraft
A cybercrime forum post analyzed by Flare lays out a structured operational security framework for high-volume carding crews, framing OPSEC less as hygiene and
Checkmarx confirms LAPSUS$ leaked 96GB of stolen GitHub data via Trivy supply-chain hit
Checkmarx has confirmed that data dumped by LAPSUS$ on its extortion portal was pulled from the company's private GitHub repositories, traced back to the March
Data Movement Is the Zero Trust Gap Hiding in Plain Sight
Zero Trust architectures get most of their attention at the identity and network perimeters — verifying users, segmenting workloads, locking down east-west traf
GitHub RCE Flaw CVE-2026-3854 Triggers on a Single Git Push
Researchers have disclosed CVE-2026-3854, a critical remote code execution vulnerability in GitHub that can be triggered by a single git push operation. The fla
GlassWorm Returns: Malicious VS Code Extensions Hit Developer Supply Chain Again
A new wave of GlassWorm-laced extensions has surfaced in the Visual Studio Code marketplace, continuing a campaign that weaponizes the IDE's extension ecosystem
LofyGang returns after 3-year hiatus with Minecraft-targeted LofyStealer
The Brazilian threat group LofyGang, last seen flooding npm with hundreds of malicious packages in 2022, has resurfaced with a new campaign dubbed LofyStealer a
Microsoft to block TLS 1.0/1.1 for Exchange Online POP and IMAP in July
Microsoft will fully deprecate TLS 1.0 and TLS 1.1 for POP3 and IMAP4 connections to Exchange Online starting July 2026. After the cutoff, any client still nego