AI Security Week: Children's Data Stolen, Sudo Exploit Active, Vibe Coding Leaks Keys
A ransomware group called Radiant breached UK nursery chain Kido, stealing personal data belonging to approximately 8,000 children. The same week saw Google Ads serving trojan malware, fake invoice PDFs distributing Remote Access Trojans, and a critical sudo vulnerability (CVE-2025-32463) added to CISA's actively exploited list. The UK Co-Op cyberattack, attributed to DragonForce, was estimated to have caused around $275 million in damages following weeks of supply disruptions. Separately, AI-generated applications were found shipping with hardcoded API keys and credentials embedded in the code, a problem linked to developers deploying unreviewed AI output. These incidents unfolded against the backdrop of OpenAI reaching a reported $500 billion valuation, highlighting a stark contrast between soaring AI investment and widespread security failures.
This is an AI-generated summary. ShortSingh links to the original source for the complete article.


Discussion (0)
Log in to join the discussion and vote.
Log in