Palantir’s latest “Hack Week” had a specific, unsettling target: ICE. They’re running simulations. Maybe finding flaws. Maybe building the cage tighter. You decide.
Elsewhere, criminal twins got caught. Really caught. They left a Microsoft Teams recording running. Talk about an ego-driven slip. One click should do it for them.
Then there’s Foxconn. The factory that builds iPhones got hit again. Ransomware loves them. Or maybe it just loves the idea that nothing is truly safe forever. Warehousing the world’s data means holding the key to every digital lock. Bad math.
Disneyland wants a closer look at your face now. Face recognition for visitors. Convenient? Sure. Chilling? Also sure. The NSA is busy too. They’re testing Anthropic’s Mythos to poke for holes in the armor.
AI tools are leveling up bad guys.
Some mediocre hackers in North Korea figured something out. Use AI to code the malware. Use it to fake company websites. In three months they lifted $12 million. Twelve million. Because typing code manually is for amateurs now? Maybe. But the scale is wild.
Speaking of code. A robot lawnmower became a nightmare. Not because it ate the grass. Because it could be hacked. Meanwhile Meta quietly pulled the plug on encrypted Instagram DMs. Encryption died. Nobody clapped.
Open source is bleeding.
A group calling itself TeamPCP is poisoning open-source code like there’s no tomorrow. GitHub took a hit. Hundreds of orgs felt it. It’s supply chain chaos but with better branding. And thousands of vibe-coded apps from platforms like Lovable and Replit are leaking private data on the open web. Build in seconds, cry later.
The big one today? Canvas.
Instructure’s platform went dark. Thousands of schools across the US just stopped. Hackers called ShinyHunters did it. Ransomware is an education tax now. Schools paid. Or they didn’t. Either way class is cancelled.
On the dark side a alleged market kingpin got arrested. OpenAI staff fell for a supply chain scam. The Trump administration is labeling leftists violent. Russia apparently has a hacker school with leaked docs to prove it. Discord detectives even got unauthorized peek into Anthropic.
Security researchers finally cracked “Fast16.” It’s malware that messes with calculations. Dated back to 2005. Predates Stuxnet. Probably American origin. Spooks out. It might have touched Iran’s nuclear work. That’s deep history.
90,000 screenshots of one European celebrity’s phone were out there. Spyware. Intimate photos. Messages. Public. A researcher saw it. Fixed it. Barely.
Alibaba? Selling 500,00 UK health records. Spy firms exploit global telecom bugs to track targets. Apple patched a notification bug that talked too much. A Finnish teen is charged for Scattered Spider hacks.
Nothing is safe. Nothing stays secret. Just another day.
