Brought to you by Socket

Secure your dependencies. Ship with confidence.

Show notes

FortiBleed campaign used custom FortiGate sniffer to steal credentials | BleepingComputer

FortiBleed: Fortinet device credential compromise expands into broader credential-attack guidance | unit42.paloaltonetworks.com

Cybercriminals allegedly hacked tens of thousands of Fortinet firewalls used by major companies all over the world | TechCrunch Security

Klue OAuth breach linked to 'Icarus' Salesforce data theft attacks | BleepingComputer

Polymarket (@Polymarket) on X | X (formerly Twitter)

The Korean telecom giant at the center of Anthropic’s Mythos controversy | wrd.cm

Beyond Fable: Can a Local LLM Replace Cloud AI for Security Code Reviews - SRLabs Research | SRLabs

OpenAI Launches Full-Scale Effort to Patch Open-Source Bugs as It Takes on Anthropic’s Mythos | wired.com

Sponsored: Trail of Bits and OpenAI patch the planet | Risky Bulletin

Intel agencies: Frontier AI models will reshape cybersecurity faster than expected | cyberscoop.com

Embedding Forbidden Text in Spyware to Discourage AI Analysis | Schneier on Security

A new unpatchable flaw in Apple chips opens the door to an iPhone jailbreak | TechCrunch Security

USB worm spreads crypto-stealing malware via Windows shortcut files | BleepingComputer

Android verification is coming: Google confirms timeline and supported app stores | Ars Technica

California water utility probes breach claim by Iran-linked actor | Cybersecurity Dive

Suspected cyberattack triggers false emergency alerts across parts of Brazil | The Record

Tesco moving 40,000 server workloads off VMware amid Broadcom's "abusive conduct" | Ars Technica

Trump directs federal agencies to protect US data from quantum threats | therecord.media

Accenture shells out $4.18B on three companies in big industrial cybersecurity push | cyberscoop.com