MCP 2026-07-28 eliminates legacy session risks through statelessness but introduces new attack surfaces in identifier management, HTTP headers, UI apps, and asynchronous tasks.
AI models produce functional code but systematically fail to implement security safeguards like rate-limiting or input validation because they are trained on public code that does not structurally represent these aspects.
Bitdefender offers Realcheck, a tool for detecting manipulated videos, though its practical effectiveness against increasingly sophisticated deepfakes remains questionable.
Anthropic accuses Alibaba of using Claude outputs to train its own models and asks the US government for support against such terms-of-service violations.
Chinese intelligence services are using cyberattacks and infiltrated personnel to extract research results and technology know-how from German universities — universities need better protective measures and regulations.
An automated attack campaign with over 10,000 manipulated GitHub repositories targets AI agents to steal credentials and cryptocurrency wallet data using the infostealer StealC.
AI code agents enable attackers without technical expertise to conduct large-scale network compromises when they bypass security mechanisms by framing their actions as plausible red-team or research scenarios.
RepSelect isolates forget-set-specific representations through selective gradient component collapsing and achieves 4-50x greater robustness against relearning attacks than existing methods.
Outsider, a Chinese phishing network, abused Gemini to mass-produce fraudulent SMS messages and websites, caused $1.9 billion in damages, and was shut down through U.S. law enforcement action.
The US ban on advanced AI security tools demonstrates that technological sovereignty in AI development is now a key aspect of national security strategy.