top of page


Enterprise Security Tech
A cybersecurity resource for CxOs
Search


University of Nottingham Cyberattack Exposes Student Financial and Personal Data
Hackers accessed a significant amount of personal data belonging to University of Nottingham students and alumni, potentially including financial records, National Insurance numbers and protected characteristics. The university detected unauthorized activity in its Campus Solutions student records system on Tuesday and took affected systems offline. It has contacted impacted individuals and reported the incident to Action Fraud, the Information Commissioner’s Office and other
Jun 10


Meta AI Support Flaw Led to 20,225 Instagram Account Takeovers
A vulnerability in Meta’s AI-assisted account recovery system allowed attackers to hijack 20,225 Instagram accounts by redirecting password reset links to email addresses they controlled. The flaw affected High Touch Support, or HTS, an AI-powered system designed to help locked-out Instagram users recover their accounts. The recovery process failed to properly confirm that a newly submitted email address was already associated with the account being targeted. Attackers could
Jun 10


White House AI Order Raises the Stakes for Enterprise AI Governance
The White House’s new artificial intelligence executive order is focused heavily on national security, frontier model testing and AI-powered cyber defense. For businesses, however, its broader message is difficult to ignore: AI systems should be tested, monitored and governed before they become deeply embedded in critical operations. The order directs federal agencies to develop classified benchmarks for evaluating the cyber capabilities of advanced AI models. It also propose
Jun 10


RoguePlanet Windows Zero-Day Turns Microsoft Defender Into an Exploitation Tool
A newly disclosed Windows zero-day dubbed RoguePlanet abuses Microsoft Defender’s own quarantine process to give an ordinary user the highest level of control over a Windows 11 machine. Cyderes researchers said they reproduced the local privilege escalation exploit on a fully patched Windows 11 Pro system. The attack requires no administrator rights, kernel vulnerability or memory corruption. Instead, it chains together legitimate Windows features, including Defender scans, N
Jun 10


Anthropic Opens Mythos-Class AI to the Public With Claude Fable 5 Safety Controls
Anthropic has released Claude Fable 5, a new artificial intelligence model that brings much of its restricted Mythos technology to the public while attempting to block its most dangerous capabilities. Fable 5 generally allows users to access Mythos-class reasoning for complex tasks. When Anthropic’s systems detect requests involving high-risk areas, such as biological weapons or software exploitation, the query will instead be handled by the older Claude Opus 4.8 model. “We w
Jun 10


ServiceNow Security Flaw Exploited to Access Customer Instance Data
ServiceNow has disclosed a security incident involving a vulnerability that allowed unauthenticated users to access information inside some customer instances. The enterprise software provider said it detected anomalous activity connected to the flaw and found evidence that attackers successfully queried instance tables belonging to a subset of customers. ServiceNow privately notified the affected organizations and deployed a security update to hosted environments on June 5,
Jun 10
bottom of page