Anthropic recently found itself at the center of an avoidable but consequential security incident: leaked internal drafts revealing the existence of an unreleased, high-capability model called “Claude Mythos.” The exposure—rooted in an unsecured, publicly searchable data cache—pulled back the curtain on product plans, internal risk assessments, and even references to an exclusive executive event. For organizations building powerful AI, the
Category: Compliance and Privacy
GDPR, CCPA, HIPAA, PCI-DSS, SOC 2, ISO 27001, NIST, DORA, NIS2, data privacy, data protection, privacy policy, compliance audit, regulatory compliance, data governance, DPO, data processing agreement, right to erasure, data residency, privacy by design, AI Act, EU AI Act, digital identity, eIDAS, cookie consent, consent management, PECR, data localisation, breach notification
AstraZeneca Allegedly Targeted by LAPSUS$ — Claims of a 3GB Internal Data Dump
A known hacking collective identifying as LAPSUS$ has posted claims that it obtained and is attempting to sell a 3GB .tar.gz archive allegedly containing AstraZeneca internal data. As of the reports dated March 20, 2026, AstraZeneca had not issued a public statement confirming or denying the claim. What the threat actors presented The actors published teasers and screenshots on breach
Aura Exposed: When 900,000 Marketing Contacts Turned Into a Security Crisis
Aura, the consumer digital safety company known for identity protection and fraud monitoring, recently confirmed a data breach that exposed nearly 900,000 marketing contacts. What seems like a single shocking number actually reveals deeper problems: legacy data inherited through acquisitions, the continued effectiveness of social-engineering attacks, and the tricky line between marketing lists and active customer records. This incident is
Cognizant’s TriZetto Subsidiary Reports Data Breach Affecting 3.4 Million Patients
TriZetto Provider Solutions, a healthcare-technology subsidiary of Cognizant, has disclosed a large data breach that exposed the protected health information of 3,433,965 patients. The company classified the incident as an external system hacking event after threat actors gained unauthorized access to TriZetto’s external infrastructure. Timeline and discovery Initial unauthorized access occurred on November 19, 2024. TriZetto did not detect the
From Tunnel to Cloud: The 2026 Strategy Guide to Self‑Hosting vs Third‑Party VPN
In 2026 the boundary between “VPN” and “personal cloud” is fuzzier than ever. A third‑party VPN still sells one‑click privacy and wide geo-hopping, but for many users that convenience now trades away transparency, extensibility, and long‑term value. Renting a small VPS and running WireGuard, AdGuard Home, Vaultwarden, and automation tools like n8n converts a disposable privacy tool into a persistent
OpenAI’s Next Frontier: Smart Speakers, Glasses, and the Hardware Bet on Everyday AI
The idea that artificial intelligence lives only in the cloud or behind a chat window is changing. OpenAI—best known for conversational models that scale across apps and businesses—is reportedly building a family of physical devices, starting with a smart speaker and potentially expanding into smart glasses and even a smart lamp. This move represents a pivotal moment in how AI