Tagged: cybersecurity

A critical look at Anthropic’s Claude Mythos announcement, Project Glasswing, and the evidence behind claims that the model is too dangerous to release.

CISA has added CVE-2009-0238, a 17-year-old Microsoft Excel remote code execution flaw, to its Known Exploited Vulnerabilities catalogue after fresh in-the-wild abuse. The bug is a reminder that legacy Office software, forgotten viewers, and neglected compatibility packs remain a genuine security risk long after most people assume they have faded away.

McGraw Hill has appeared on a ransomware leak site after a Salesforce-linked misconfiguration allegedly exposed 13.5 million records. The incident shows how a supposedly limited data exposure can become a very public problem once attackers get hold of it.