Hermes
Saturday 30 May 2026  ·  68 articles scored  ·  1 top scorer  ·  last 24h
1
🔐 security Microsoft Security Blog
71%

The Gentlemen ransomware: Dissecting a self-propagating Go encryptor

Microsoft Threat Intelligence presents a comprehensive analysis of The Gentlemen, a Go-based ransomware deployed by affiliates of Storm-2697 that combines per-file ephemeral key encryption with an ag…

Novelty
70%
Depth
80%
Practical
65%
Surprise
55%
Relevance
80%
https://www.microsoft.com/en-us/security/blog/2026/05/28/the-gentlemen-ransomware-dissecting-a-self-propagating-go-encryptor/
2
🤖 ai AI Alignment Forum
70%

Testing Gemini models for scheming tendencies

As AI models become increasingly capable and autonomous, keeping them safely aligned with human intentions is critical. Extending our previous work on evaluating scheming capabilities, we introduce c…

https://www.alignmentforum.org/posts/F3sDngvTL9uyfz53k/testing-gemini-models-for-scheming-tendencies
3
🔐 security Microsoft Security Blog
69%

Typosquatted npm packages used to steal cloud and CI/CD secrets

The Mini Shai-Hulud campaign used malicious npm packages to target cloud and CI/CD credentials across developer environments. This report details the attack chain, detection opportunities, and mitiga…

https://www.microsoft.com/en-us/security/blog/2026/05/28/typosquatted-npm-packages-used-steal-cloud-ci-cd-secrets/
4
🤖 ai The Decoder
69%

One company reportedly spent $500 million on Claude in one month after failing to cap AI usage

An unnamed company allegedly blew half a billion dollars on Claude licenses in a single month because nobody set usage limits. Cases like this show that without real AI expertise in model selection a…

https://the-decoder.com/one-company-reportedly-spent-500-million-on-claude-in-one-month-after-failing-to-cap-ai-usage/
5
🔐 security SecurityWeek
68%

Russia-Linked ‘GreyVibe’ Attackers Use AI to Supercharge Cyberattacks

Researchers warn GreyVibe’s extensive use of ChatGPT, Gemini, and other AI tools offers a glimpse into how future cybercriminal and state-aligned groups will operate. The post Russia-Linked ‘GreyVibe…

https://www.securityweek.com/russia-linked-greyvibe-attackers-use-ai-to-supercharge-cyberattacks/
6
🔐 security Microsoft Security Blog
65%

Malicious npm packages abuse dependency confusion to profile developer environments

A dependency confusion campaign leveraged 33 malicious npm packages to collect reconnaissance data from developer and build environments. This report details the attack chain, observed tradecraft, an…

https://www.microsoft.com/en-us/security/blog/2026/05/29/33-malicious-npm-packages-abuse-dependency-confusion-profile-developer-environments/
7
🤖 ai The Decoder
65%

Anthropic ships Claude Opus 4.8 as a "modest but tangible improvement" that tops GPT-5.5 in most benchmarks

Anthropic releases Claude Opus 4.8, which beats GPT-5.5 and Gemini 3.1 Pro in most benchmarks. The model also catches its own coding errors four times more often than its predecessor. Alongside the l…

https://the-decoder.com/anthropic-ships-claude-opus-4-8-as-a-modest-but-tangible-improvement-that-tops-gpt-5-5-in-most-benchmarks/
8
🤖 ai The Decoder
64%

New review paper argues code is how AI agents think and act, not just what they produce

A new review paper argues that the real bottleneck for autonomous AI agents isn't the language model itself but the software layer wrapped around it. Tools, memory, testing, and permission boundaries…

https://the-decoder.com/new-review-paper-argues-code-is-how-ai-agents-think-and-act-not-just-what-they-produce/
9
📦 m365 Petri IT Knowledgebase
63%

Microsoft Makes Hotpatching Enabled by Azure Arc Free For Windows Server 2025

Keeping servers secure has long meant disruptive restarts, but Microsoft is changing that approach with a major update. With Windows Server 2025, hotpatching enabled by Azure Arc is now available at …

https://petri.com/azure-arc-hotpatching-free-windows-server-2025/
10
🔐 security SecurityWeek
62%

New Edamame Platform Aims to Catch AI Coding Agents Going Off the Rails

France-based startup Edamame says its runtime verification platform uses host telemetry and AI analysis to detect coding-agent “intent drift,” secret theft and supply-chain attacks in real time. The …

https://www.securityweek.com/new-edamame-platform-aims-to-catch-ai-coding-agents-going-off-the-rails/
11
📦 m365 Petri IT Knowledgebase
60%

Microsoft Fixes SharePoint RCE Vulnerability Affecting On-Prem Servers

Microsoft has released security updates to fix a high-severity remote code execution vulnerability in Microsoft SharePoint Server that could allow attackers to compromise vulnerable servers. This fla…

https://petri.com/microsoft-fixes-sharepoint-rce-flaw-on-prem-servers/
12
🤖 ai The Decoder
59%

Google Cloud responds to AI-accelerated cyberattacks with a platform that aims to close security gaps in minutes

Google Cloud has unveiled "AI Threat Defense," a platform designed to automatically find, assess, and patch security flaws in enterprise systems. The company bundles technologies it partly acquired t…

https://the-decoder.com/google-cloud-responds-to-ai-accelerated-cyberattacks-with-a-platform-that-aims-to-close-security-gaps-in-minutes/
13
🔐 security SecurityWeek
59%

MokN Raises $15 Million for Phish-Back Platform

MokN's platform deploys realistic decoy access points to lure attackers into revealing compromised credentials, enabling organizations to respond before abuse occurs. The post MokN Raises $15 Million…

https://www.securityweek.com/mokn-raises-15-million-for-phish-back-platform/
14
⚡ tech The Verge
58%

Claude’s new model is more ‘honest’ when it messes up

Anthropic is releasing Claude Opus 4.8 on Thursday, and the company is touting the model's "honesty." According to Anthropic, it trains "all [its] models to be honest - for instance, to avoid making …

https://www.theverge.com/ai-artificial-intelligence/939094/anthropic-claude-4-8-opus-honesty-effort
15
⚡ tech The Verge
57%

Microsoft 365 Copilot gets a speed boost and cleaner design

Microsoft is launching a revamped version of Microsoft 365 Copilot, offering a cleaner design that the company claims loads twice as fast. As part of this update, Copilot will provide more reliable a…

https://www.theverge.com/tech/939273/microsoft-365-copilot-redesign