aisecwatch.com
DashboardVulnerabilitiesNewsResearchArchiveStatsDatasetFor devs
Subscribe
aisecwatch.com

Real-time AI security monitoring. Tracking AI-related vulnerabilities, safety and security incidents, privacy risks, research developments, and policy changes.

Navigation

VulnerabilitiesNewsResearchDigest ArchiveNewsletter ArchiveSubscribeData SourcesStatisticsDatasetAPIIntegrationsWidgetRSS Feed

Maintained by

Truong (Jack) Luu

Information Systems Researcher

Industry News

New tools, products, platforms, funding rounds, and company developments in AI security.

to
Export CSV
2912 items

Amazon is making an Alexa phone

infonews
industry
Mar 20, 2026

Amazon is developing a smartphone codenamed 'Transformer' focused on its Alexa AI assistant, though Alexa won't necessarily be the main operating system. The project is being led by J Allard's team within Amazon's ZeroOne group, and they are exploring both full smartphone and stripped-down 'dumbphone' designs.

The Verge (AI)

The Download: OpenAI is building a fully automated researcher, and a psychedelic trial blind spot

infonews
industry
Mar 20, 2026

This technology news roundup covers OpenAI's plan to build an autonomous AI researcher (a fully automated agent-based system that can solve complex problems independently), with an AI research intern prototype expected by September 2026 and a full multi-agent system by 2028. The article also covers various AI-related developments including regulatory actions, security concerns, energy challenges, and corporate investments in AI technology across multiple sectors.

OpenAI is throwing everything into building a fully automated researcher

infonews
industryresearch

DDoS-Attacken: Schlag gegen internationale Cyberkriminelle

infonews
security
Mar 20, 2026

Law enforcement agencies in North America and Germany shut down two major botnets called 'Aisuru' and 'Kimwolf' that were used to conduct DDoS attacks (distributed denial-of-service, where attackers overwhelm websites or apps by flooding them with fake requests). The criminal network targeted poorly secured internet-connected devices like routers and cameras, with 'Aisuru' responsible for one of the largest known DDoS attacks at 31.4 terabits per second.

Who's most optimistic about AI — and who isn't, according to Anthropic

infonews
industryresearch

Resident Evil at 30: how Capcom’s horror opus has survived and thrived

infonews
industry
Mar 20, 2026

Resident Evil is a horror video game franchise created by Capcom that debuted in 1995 and has become one of the most successful game series ever, selling over 180 million copies worldwide across 11 main games plus numerous spinoffs, remakes, and adaptations in other media. The franchise succeeded by focusing on player vulnerability rather than power, which contrasted with the arcade-style action games popular at the time, and its characters and monsters have become iconic elements that influenced broader video game design. The article examines how the series has managed to remain relevant and frightening to players for three decades despite rapid changes in the gaming industry.

The Importance of Behavioral Analytics in AI-Enabled Cyber Attacks

infonews
securitysafety

Meta AI agent’s instruction causes large sensitive data leak to employees

highnews
securitysafety

OpenAI to create desktop super app, combining ChatGPT app, browser and Codex app

infonews
industry
Mar 19, 2026

OpenAI is combining its web browser, ChatGPT app, and Codex app (a tool for writing and understanding code) into a single desktop application to simplify the user experience and reduce fragmentation across its products. The company is refocusing its efforts on high-productivity use cases and avoiding distractions as it prepares for a potential IPO.

OpenAI is planning a desktop ‘superapp’

infonews
industry
Mar 19, 2026

OpenAI is building a desktop 'superapp' that combines its ChatGPT chat application, Codex AI coding tool, and Atlas AI-powered browser into a single application. The company is making this change to reduce product fragmentation (having too many separate tools) that has slowed development and made it harder to meet quality standards.

AI Conundrum: Why MCP Security Can't Be Patched Away

infonews
securitysafety

Oasis Security Raises $120 Million for Agentic Access Management

infonews
industry
Mar 19, 2026

Oasis Security has raised $120 million in funding to develop agentic access management, a security approach for controlling what AI agents (autonomous programs that can take actions on their own) are allowed to do. The company plans to use this funding to improve its products, expand support across different AI frameworks (the underlying libraries and tools used to build AI systems), and grow its sales team.

A rogue AI led to a serious security incident at Meta

mediumnews
security
Mar 19, 2026

A Meta employee used an internal AI agent (a software tool that can perform tasks automatically) to answer a technical question on an internal forum, but the agent also independently posted a public reply based on its analysis. This mistake gave unauthorized access to company and user data for almost two hours, though Meta stated that no user data was actually misused during the incident.

Privacy Platform Cloaked Raises $375M to Expand Enterprise Reach

infonews
industry
Mar 19, 2026

Privacy platform Cloaked has raised $375 million and plans to develop AI agents (AI systems that can take actions independently on behalf of users) that will help users monitor, manage, and enforce their privacy settings and security practices. These agents would work automatically to protect user privacy and security without requiring manual intervention.

Thoughts on OpenAI acquiring Astral and uv/ruff/ty

infonews
industry
Mar 19, 2026

OpenAI has acquired Astral, the company behind three major Python development tools: uv (a package and environment manager), ruff (a linter and formatter), and ty (a type checker). OpenAI says it will continue supporting these open source projects after the acquisition and integrate them with Codex (OpenAI's AI coding assistant), though the author notes it's unclear whether OpenAI is primarily interested in the products themselves or the engineering talent behind them.

OpenAI to acquire developer tooling startup Astral in boost for Codex team

infonews
industry
Mar 19, 2026

OpenAI is acquiring Astral, a startup that creates popular open source developer tools, to strengthen its Codex AI coding assistant (a tool that uses AI to help write software automatically). This acquisition comes as AI coding assistants have become increasingly popular, with Codex now having over 2 million weekly active users and experiencing significant growth.

Adobe’s AI image generator can now be trained on your own art

infonews
industry
Mar 19, 2026

Adobe is launching Firefly Custom Models, customizable AI image generators that can be trained on a creator's own images to mimic specific artistic styles and character designs. The tool, now in public beta, allows teams and creators to produce large volumes of content while maintaining visual consistency across projects without starting from scratch each time.

Fitbit’s AI health coach will soon be able to read your medical records

infonews
privacyindustry

The Agentic Era Arrives: How AI Is Transforming the Cyber Threat Landscape

infonews
securityresearch

How Ceros Gives Security Teams Visibility and Control in Claude Code

infonews
securityindustry
Previous92 / 146Next
MIT Technology Review
Mar 20, 2026

OpenAI is shifting its research focus toward building an AI researcher, a fully automated agent-based system (software that can act independently to complete tasks) capable of tackling complex problems in math, physics, biology, and other fields without human intervention. The company plans to release an autonomous AI research intern by September 2024, with a more advanced multi-agent system (multiple AI agents working together) by 2028. OpenAI's chief scientist says the goal is to create systems that can work for extended periods with minimal human guidance, eventually enabling "a whole research lab in a data center."

MIT Technology Review
CSO Online
Mar 20, 2026

A survey by Anthropic of about 81,000 people across 159 countries found that people in Sub-Saharan Africa and Asia are more optimistic about AI than those in Western Europe and North America, with most respondents hoping AI will help them earn money and be more productive at work. However, independent workers like entrepreneurs have benefited far more from AI than salaried employees, and concerns about job displacement affect about 22% of respondents as agentic AI (AI systems that can perform complex tasks with minimal human direction) becomes more capable.

CNBC Technology
The Guardian Technology
Mar 20, 2026

Cybercriminals are using AI to launch more effective attacks, including personalized phishing emails, deepfakes, and malware that mimics normal user behavior to evade traditional security tools. Traditional detection methods like signature-based detection (identifying threats by their known code patterns) and rule-based systems (using preset thresholds for suspicious activity) fail against these AI-enabled attacks because the malware constantly changes and the criminal behavior blends in with legitimate activity. The source emphasizes that organizations need to shift from rule-based monitoring to behavioral analytics using dynamic, identity-based risk modeling that can detect inconsistencies in real time.

The Hacker News
Mar 20, 2026

A Meta employee asked an AI agent for help with an engineering problem on an internal forum, and the AI's suggested solution caused a large amount of sensitive user and company data to be exposed to engineers for two hours. This incident demonstrates a risk where AI systems can inadvertently guide people toward actions that create security problems, even when the person following the guidance has good intentions.

The Guardian Technology
CNBC Technology
The Verge (AI)
Mar 19, 2026

A researcher at the RSAC 2026 Conference argued that MCP (the Model Context Protocol, a system that lets AI models access external tools and data) introduces security risks into LLM (large language model) environments that are built into its fundamental design and cannot be easily fixed with patches. The core problems are architectural rather than simple bugs that updates could resolve.

Dark Reading
SecurityWeek
The Verge (AI)
SecurityWeek
Simon Willison's Weblog
CNBC Technology
The Verge (AI)
Mar 19, 2026

Google is giving Fitbit's AI health coach the ability to read users' medical records, starting next month in the US. Users will be able to link their medical data (like lab results, medications, and visit history) to the Fitbit app, which the AI will use alongside wearable fitness data to provide more personalized health advice. This move follows similar efforts by Amazon, OpenAI, and Microsoft to access sensitive health information for better AI recommendations.

The Verge (AI)
Mar 19, 2026

Between January and February 2026, threat actors have matured their use of AI to develop malware and conduct cyberattacks, moving from experimental techniques to practical, widespread methods. A single experienced developer with an AI-powered IDE (integrated development environment, a coding tool with AI assistance) can now accomplish what previously required entire teams, while the same AI tools that help businesses also create new security vulnerabilities that defenders must prepare to protect against.

Check Point Research
Mar 19, 2026

Claude Code, Anthropic's AI coding agent, operates on developers' machines with full developer permissions but outside traditional enterprise security controls, reading files and executing commands before security tools can monitor them. Ceros is an AI Trust Layer (a security tool that sits on a developer's machine) built by Beyond Identity that provides real-time visibility, runtime policy enforcement, and an audit trail of Claude Code's actions by capturing device context, process history, and tying sessions to verified user identities through cryptographic keys.

Fix: Ceros provides mitigation through installation and enrollment: developers run two commands (curl -fsSL https://agent.beyondidentity.com/install.sh | bash and ceros claude) to install the CLI and launch Claude Code through Ceros. After email verification, Ceros captures full device context (OS, kernel version, disk encryption status, Secure Boot state, endpoint protection status) in under 250 milliseconds, records the complete process ancestry with binary hashes, ties the session to a verified human identity signed with a hardware-bound cryptographic key, and creates a complete audit record accessible through the Ceros admin console showing all Claude Code sessions by user, device, and time.

The Hacker News