Microsoft has disrupted the infrastructure powering the largest malware code-signing service used to help ransomware groups and other cybercriminals make malicious programs harder to detect on Windows. The threat actors…
Fast-growing consumer law platform Lawhive has become the fifth biggest fee-share law firm after more than doubling in size in only a year. The post ‘Big Four’ fee-share firms become…
The High Court has dismissed an appeal by a barrister fined £15,000 for making an “unfounded and serious allegation of misconduct in public office” against a senior judge. The post…
The Bar Council needs to be clearer in the legal justificating for its controversial 10,000 Black Interns programme, a barrister has suggested. The post Barrister warns Bar’s Black interns programme…
Existing approaches to legal services complaints handling “might not be suited to the challenges posed” by the age of AI, the Law Society has warned. The post New approach to…
Key Takeaways: AI indemnities are shrinking because vendors cannot realistically underwrite open-ended risk tied to evolving models and probabilistic outputs. As indemnities narrow, governance obligations, auditability, and escalation processes are…
A brief overview of the forces at play that will get more organizations on board with creating and consuming AI bill of materials (BOMs). – Read More
Verizon’s “2026 Data Breach Investigations Report” (“DBIR”) finds that exploits are now involved in 31% of initial access for breaches, while patching lags too far behind the bad guys. –…
YellowKey, GreenPlasma, and MiniPlasma add to the growing list of vulnerabilities a security researcher disclosed over the past six weeks. – Read More
Until a few days ago, a publicly-accessible GitHub repository exposed credentials for both US government AWS accounts and internal Cybersecurity and Infrastructure Security Agency (CISA) systems. That’s according to cybersecurity…
The agency’s GitHub repository, publicly available since November 2025, was ironically named “Private-CISA.” – Read More
The SHub Reaper stealer, which hides behind fake WeChat and Miro installers, marks a shift from ClickFix social engineering to Apple script-based execution. – Read More
The world’s largest open-source registry, node package manager (npm), has been hit by another fast-moving malware attack, this time targeting the widely-used AntV enterprise data visualization tool. Unlike last week’s…
London-founded legal AI platform Jylo today (19 May) announced the opening of a second office in Strasbourg, France. Located close to the European Parliament, the Council of Europe and key…
Cybersecurity researchers have disclosed details of a new ad fraud and malvertising operation dubbed Trapdoor targeting Android device users. The activity, per HUMAN’s Satori Threat Intelligence and Research Team, encompassed…