Login Subscribe

7secure Coverage

Articles

Search and filter the broader reporting stream across incidents, AI security, policy, and operational coverage.

Threat Intelligence

AI‑Generated Passwords Supercharge Credential‑Stuffing Attacks

FireEye’s threat research team has identified a new tactic where adversaries employ large‑language models to automatically create realistic, yet never‑used passwords for credential‑stuffing campaigns. By prompting AI to generate passwords that mimic human‑crafted strings—mixing words, numbers, and symbols—the attackers avoid traditional dictionary‑based

AI Security & Threats

CISA Warns: AI Model Training Data Poisoning Threat Rises

The Cybersecurity and Infrastructure Security Agency (CISA) has released an advisory noting a surge in supply‑chain attacks that target publicly hosted training datasets. Threat actors masquerade as legitimate contributors, subtly inserting malicious samples or metadata that act as hidden triggers. When downstream developers download and use these poisoned datasets

AI Security & Threats

OpenAI Embeds Persistent Watermarks in GPT‑5 Outputs to Thwart Deepfakes

OpenAI announced that its forthcoming GPT‑5 model will automatically embed a covert watermark into any text, image, or audio it generates. The watermark is engineered to survive common post‑processing steps such as compression, resizing, or format conversion, and can be detected using a free, open‑source toolkit that

Vulnerabilities & Exploits

Microsoft Patches Azure AD Token‑Issuance Flaws Exploited by Ransomware

Microsoft disclosed two high‑severity vulnerabilities in Azure Active Directory that allowed attackers to issue authentication tokens without proper authorization. Proof‑of‑concept exploit code leaked onto underground forums, and ransomware operators swiftly adopted the bugs to create persistent, low‑profile access to victim networks. The flaws enabled credential theft,

EU Tightens AI Act: Mandatory Audits, Transparency Boost, Heavier Fines

The European Commission unveiled amendments to the AI Act, targeting high‑risk AI systems. The changes require independent third‑party security assessments before deployment, broaden the scope of model‑card disclosures, and impose mandatory post‑market monitoring to ensure ongoing compliance. For defenders, the new rules raise the baseline security

AI Security & Threats

AI Voice Deepfakes Hijack Bank Transfers, Multi‑Million Dollar Losses Reported

A coordinated wave of deepfake voice phishing campaigns has swept across banks in multiple regions. Criminal groups are using state‑of‑the‑art generative‑AI models to clone the voices of senior executives, allowing them to place real‑time phone calls to finance teams and demand urgent wire transfers. The