OpenClaw gives users yet another reason to be freaked out about security
The viral AI agentic tool let attackers silently gain admin unauthenticated access.
Ars Technica
New Rowhammer attacks give complete control of machines running Nvidia GPUs
GDDRHammer, GeForge and GPUBreach hammer GPU memory in ways that hijack the CPU.
Ars Technica
Quantum computers need vastly fewer resources than thought to break vital encryption
No, the sky isn't falling, but Q Day <em>is</em> coming, and it won't be as expensive as thought.
Ars Technica
Google bumps up Q Day deadline to 2029, far sooner than previously thought
Company warns entire industry to move off RSA and EC more quickly.
Ars Technica
Self-propagating malware poisons open source software and wipes Iran-based machines
Development houses: It's time to check your networks for infections.
Ars Technica
Widely used Trivy scanner compromised in ongoing supply-chain attack
Admins: Sorry to say, but it's likely a rotate-your-secrets kind of weekend.
Ars Technica
Cloud service providers ask EU regulator to reinstate VMware partner program
Broadcom says the group is misrepresenting market "realities."
Ars Technica
Federal cyber experts called Microsoft's cloud a "pile of shit," approved it anyway
One Microsoft product was approved despite years of concerns about its security.
Ars Technica
Researchers disclose vulnerabilities in IP KVMs from four manufacturers
Internet-exposed devices that give BIOS-level access? What could possibly go wrong?
Ars Technica
Supply-chain attack using invisible code hits GitHub and other repositories
Unicode that's invisible to the human eye was largely abandoned—until attackers took notice.
Ars Technica
The who, what, and why of the attack that has shut down Stryker's Windows network
Company says it doesn't know how long it will take to restore its Microsoft environment.
Ars Technica
14,000 routers are infected by malware that's highly resistant to takedowns
Most of the devices are made by Asus and are located in the US.
Ars Technica
Feds take notice of iOS vulnerabilities exploited under mysterious circumstances
The long, strange trip of a large assembly of advanced iOS exploits.
Ars Technica
Amazon appears to be down, with over 20,000 reported problems
Problems viewing products and checking out.
Ars Technica
Trump gets data center companies to pledge to pay for power generation
With no enforcement and questionable economics, it may not make a difference.
Ars Technica
Downdetector, Speedtest sold to IT service-provider Accenture in $1.2B deal
Accenture plans to buy Ookla, which also includes RootMetrics and Ekahau.
Ars Technica
Downdetector, Speedtest sold to IT service provider Accenture in $1.2B deal
Accenture plans to buy Ookla, which also includes RootMetrics and Ekahau.
Ars Technica
LLMs can unmask pseudonymous users at scale with surprising accuracy
Pseudonymity has never been perfect for preserving privacy. Soon it may be pointless.
Ars Technica
Google quantum-proofs HTTPS by squeezing 15kB of data into 700-byte space
Merkle Tree Certificate support is already in Chrome. Soon, it will be everywhere.
Ars Technica
Google quantum-proofs HTTPS by squeezing 2.5kB of data into 64-byte space
Merkle Tree Certificate support is already in Chrome. Soon, it will be everywhere.
Ars Technica
New AirSnitch attack bypasses Wi-Fi encryption in homes, offices, and enterprises
That guest network you set up for your neighbors may not be as secure as you think.
Ars Technica
New AirSnitch attack breaks Wi-Fi encryption in homes, offices, and enterprises
That guest network you set up for your neighbors may not be as secure as you think.
Ars Technica
Most VMware users still "actively reducing their VMware footprint," survey finds
Broadcom's "strategy was never to keep every customer," CloudBolt report says.
Ars Technica
Password managers' promise that they can't see your vaults isn't always true
Contrary to what password managers say, a server compromise can mean game over.
Ars Technica
Retraction: After a routine code rejection, an AI agent published a hit piece on someone by name
This story has been retracted
Ars Technica
Attackers prompted Gemini over 100,000 times while trying to clone it, Google says
Distillation technique lets copycats mimic Gemini at a fraction of the development cost.
Ars Technica
OpenAI sidesteps Nvidia with unusually fast coding model on plate-sized chips
OpenAI's new GPT‑5.3‑Codex‑Spark is 15 times faster at coding than its predecessor.
Ars Technica