aisecwatch.com
DashboardVulnerabilitiesNewsResearchArchiveStatsDatasetFor devs
Subscribe
aisecwatch.com

Real-time AI security monitoring. Tracking AI-related vulnerabilities, safety and security incidents, privacy risks, research developments, and policy changes.

Navigation

VulnerabilitiesNewsResearchDigest ArchiveNewsletter ArchiveSubscribeData SourcesStatisticsDatasetAPIIntegrationsWidgetRSS Feed

Maintained by

Truong (Jack) Luu

Information Systems Researcher

Industry News

New tools, products, platforms, funding rounds, and company developments in AI security.

to
Export CSV
2923 items

Pete Hegseth’s Pentagon AI bro squad includes a former Uber executive and a private equity billionaire

infonews
policy
Feb 24, 2026

This article discusses Pete Hegseth's appointments of prominent private-sector figures, including a former Uber executive and a private equity billionaire, to lead AI-related roles at the Pentagon's research and engineering division. The piece is part of a newsletter covering how wealthy influencers and business leaders are gaining influence over AI policy in Washington.

The Verge (AI)

Tech Companies Shouldn’t Be Bullied Into Doing Surveillance

infonews
policysafety

Spanish ‘soonicorn’ Multiverse Computing releases free compressed AI model

infonews
industry
Feb 24, 2026

Multiverse Computing, a Spanish startup, has released a free compressed AI model called HyperNova 60B 2602 that reduces the size of large language models (AI systems trained on massive amounts of text) to make them cheaper and faster to use. The company uses CompactifAI, a compression technology inspired by quantum computing (using principles from quantum mechanics to process information), to create models that are roughly half the size of the original while maintaining similar performance and accuracy. The model is now available for free on Hugging Face (a platform where developers share AI models) and includes improved support for tool calling and agentic coding (where AI systems can use external tools or plan sequences of actions).

OpenAI defeats xAI’s trade secrets lawsuit

infonews
policy
Feb 24, 2026

OpenAI won a legal case against xAI, which had sued claiming that OpenAI stole its trade secrets (confidential information that gives a company a competitive advantage) and hired away its employees. The judge ruled that xAI failed to prove OpenAI actually did anything wrong, noting that while eight former xAI employees did move to OpenAI, there was no evidence that OpenAI directed them to steal anything.

US threatens Anthropic with deadline in dispute on AI safeguards

infonews
policysafety

A I-designed proteins may help spot cancer

infonews
industry
Feb 24, 2026

MIT and Microsoft researchers used AI to design molecular sensors (short proteins called peptides) that can detect early signs of cancer through a urine test. Nanoparticles coated with these peptides are activated by proteases (enzymes that are overactive in cancer cells), producing a detectable signal when excreted in urine. AI-designed peptides are more effective than older trial-and-error methods because they can be optimized to be highly sensitive and specific to particular cancer-linked proteases.

What are the types of ransomware attacks?

infonews
security
Feb 24, 2026

Ransomware is a type of malware that cybercriminals use in different ways to extort money from victims, including crypto ransomware (which encrypts data), double extortion (which steals and threatens to leak data), locker ransomware (which blocks system access), and others. The source explains how different ransomware strains work and that crypto ransomware is the most common type because it combines encryption with pressure on victims to pay. Detection methods include behavior analysis (watching how files act suspiciously), signature-based detection (identifying known ransomware code patterns), heuristic analysis (finding new or modified threats), and deception technology (using fake files as bait to catch ransomware early).

Take control: Locking down common endpoint vulnerabilities

infonews
security
Feb 24, 2026

Endpoints (network-connected devices like laptops and servers) face common vulnerabilities that attackers exploit, particularly exposed Remote Desktop Protocol (RDP, a tool for remote access) which allows brute force attacks on passwords, and phishing emails that trick users into revealing credentials or installing malware. Both threats are preventable with proper security practices.

Anthropic won’t budge as Pentagon escalates AI dispute

inforegulatory
policyindustry

Anthropic faces Friday deadline in Defense AI clash with Hegseth

inforegulatory
policy
Feb 24, 2026

Defense Secretary Pete Hegseth has given Anthropic (an AI company that develops Claude models) until Friday to allow the military broad access to its AI systems, threatening to label the company a 'supply chain risk' (a designation that would require DoD vendors to stop using Anthropic's products) or invoke the Defense Production Act (a law allowing the president to control domestic industries for national security) if it refuses. Anthropic wants safeguards preventing its models from being used for autonomous weapons or mass surveillance, while the DoD wants unrestricted access to 'all lawful use cases' without limitations.

Why AMD's megadeal with Meta shows Nvidia is still the best game in town

infonews
industry
Feb 24, 2026

N/A -- This content is a footer/navigation page from CNBC with no substantive article text about AMD, Meta, Nvidia, or any AI/LLM-related technical issue. The provided material contains only website metadata, subscription prompts, and legal information.

Cursor announces major update to AI agents as coding tool battle heats up

infonews
industry
Feb 24, 2026

Cursor, an AI coding tool startup, announced updates to its AI agents (software that can complete tasks automatically on a user's behalf) that allow them to test changes, run multiple tasks in parallel on cloud-based virtual machines (remote computers), and work across different platforms like Slack and GitHub. The update aims to help Cursor compete with rivals like OpenAI and Anthropic in the rapidly growing market for AI-powered coding assistants.

RoguePilot Flaw in GitHub Codespaces Enabled Copilot to Leak GITHUB_TOKEN

highnews
securitysafety

OpenAI COO says ‘we have not yet really seen AI penetrate enterprise business processes’

infonews
industry
Feb 24, 2026

OpenAI's COO Brad Lightcap stated that AI has not yet been widely adopted into enterprise business processes at scale, despite powerful AI systems being available to individual users. To address this, OpenAI launched a new platform called OpenAI Frontier, which allows enterprises to build and manage agents (AI systems that can perform tasks autonomously) and helps complex organizations integrate AI into their workflows by measuring success through business outcomes rather than just user seat licenses.

Microsoft adds Copilot data controls to all storage locations

infonews
securityprivacy

Software stocks rebound as Anthropic announces new partnerships

infonews
industry
Feb 24, 2026

Anthropic announced new partnerships and updates to Claude (its AI assistant), allowing companies to integrate it into enterprise software tools like Slack, Gmail, and Salesforce. This announcement reassured investors that AI won't completely replace existing software systems, causing software and cybersecurity stocks to rebound after recent declines driven by fears that AI tools could disrupt traditional software businesses.

Anthropic’s Claude Cowork is plugging AI into more boring enterprise stuff

infonews
industry
Feb 24, 2026

Anthropic announced updates to Claude Cowork, an AI tool that helps with office tasks, allowing it to connect with popular apps like Google Workspace, Docusign, and WordPress through new plug-ins. These plug-ins can automate work across different fields such as HR, design, and finance, and Claude can now handle multi-step tasks across Excel and PowerPoint by passing context between the two applications.

Oura launches a proprietary AI model focused on women’s health

infonews
industry
Feb 24, 2026

Oura, a health tracking company, released a custom AI model designed specifically for women's health questions, powering its chatbot called Oura Advisor. The model uses established medical research reviewed by doctors and combines it with users' biometric data (measurements like heart rate and sleep patterns) to provide personalized guidance on topics like menstrual cycles and menopause. The company emphasizes the model is hosted on its own servers and designed to be supportive rather than replace actual medical doctors.

Identity-First AI Security: Why CISOs Must Add Intent to the Equation

infonews
securitypolicy

Anthropic launches new push for enterprise agents with plugins for finance, engineering, and design

infonews
industry
Feb 24, 2026

Anthropic announced a new enterprise agents program that lets companies deploy pre-built AI agents (software programs that can perform tasks autonomously) to handle common business work like financial research and HR tasks. The program includes a plugin system, pre-made agents for specific departments, and integrations with tools like Gmail and DocuSign, along with controls that corporate IT departments need for managing software safely.

Previous117 / 147Next
Feb 24, 2026

The U.S. Department of Defense is pressuring Anthropic, an AI company, to allow their technology to be used for surveillance and autonomous weapons systems (weapons that operate without human control) by threatening to label them a 'supply chain risk' that would prevent other defense contractors from using their AI. Anthropic has publicly stated these are 'bright red lines' they will not cross, and the article argues they should maintain this position rather than give in to government pressure.

EFF Deeplinks Blog
TechCrunch
The Verge (AI)
Feb 24, 2026

The US Pentagon is threatening to remove AI company Anthropic from its supply chain and invoke the Defense Production Act (a law allowing the government to compel companies to produce goods for national security) unless Anthropic allows unrestricted use of its Claude AI chatbot for military applications by Friday evening. Anthropic has refused to allow its technology for certain uses, including autonomous kinetic operations (AI making final targeting decisions without human input) and mass domestic surveillance, citing safety concerns.

BBC Technology
MIT Technology Review

Fix: A layered approach that includes behavior analysis, signature-based detection, heuristic analysis, and deception technology is described as 'the best way to defend against ransomware' to protect against both known and unknown threats.

CSO Online

Fix: For RDP vulnerabilities: don't expose RDP to the public internet unless necessary, restrict admin rights, enforce multi-factor authentication (MFA, a security method requiring multiple forms of verification) for RDP sessions, apply Windows security configurations beyond defaults, and monitor for suspicious logins. For phishing attacks: conduct regularly scheduled security awareness training (SAT) to help users recognize malicious emails, use MFA to reduce damage if credentials are compromised, and don't respond directly to suspicious sender emails.

CSO Online
Feb 24, 2026

Anthropic, an AI company, is refusing to give the U.S. military unrestricted access to its AI model because of concerns about mass surveillance and autonomous weapons, despite the Pentagon threatening to declare the company a "supply chain risk" (a serious designation usually reserved for foreign adversaries) or invoke the Defense Production Act (a law giving the president power to force companies to prioritize production for national defense). The dispute highlights tension between corporate AI safety policies and government demands for military access, with experts warning that using these extreme measures could signal the U.S. is becoming unstable for business.

TechCrunch
CNBC Technology
CNBC Technology
CNBC Technology
Feb 24, 2026

A vulnerability called RoguePilot in GitHub Codespaces allowed attackers to inject hidden malicious instructions into GitHub issues, which GitHub Copilot (an AI code assistant) would automatically execute when a developer opened a Codespace from that issue, potentially leaking the GITHUB_TOKEN (a credential that grants access to repositories). The flaw is an example of prompt injection (tricking an AI by hiding instructions in its input), and attackers could hide their malicious prompts using HTML comments to avoid detection.

Fix: The vulnerability has since been patched by Microsoft following responsible disclosure.

The Hacker News
TechCrunch
Feb 24, 2026

Microsoft is expanding data loss prevention (DLP, rules that block AI from accessing sensitive documents) controls to protect files stored on local devices, not just in cloud storage like SharePoint or OneDrive. The change, rolling out between March and April 2026, will prevent the Microsoft 365 Copilot AI assistant from reading or processing documents marked as confidential. This update addresses a recent bug where Copilot Chat accidentally read confidential emails despite DLP protections being active.

Fix: Microsoft will deploy the enhancement through the Augmentation Loop (AugLoop, an Office component that helps Copilot access documents) between late March and late April 2026. The fix enables Office clients to provide sensitivity labels directly to AugLoop rather than requiring a call to Microsoft Graph using file URLs, allowing DLP enforcement to apply uniformly across all storage locations, including local files. Organizations with DLP policies already configured to block Copilot from processing sensitivity-labeled content will have this protection automatically enabled without requiring administrative action or changes.

BleepingComputer
CNBC Technology
The Verge (AI)
TechCrunch
Feb 24, 2026

AI agents in enterprises now perform critical operations like provisioning infrastructure and approving transactions, but they are often not governed as distinct identities—instead inheriting broad privileges from their creators. Traditional identity and access management (IAM, the systems that control who can access what) is insufficient because AI agents are dynamic and can take unpredictable paths to achieve their goals, so a new approach called intent-based permissioning is needed, which checks not just who the agent is but why it is requesting access and whether that purpose justifies the action at that moment.

BleepingComputer
TechCrunch