AI tools and security flaws: a closer look at recent cyber threats
1. Curious Netizens Infiltrate Mythos Preview—Without Hacking
A group of inquisitive internet sleuths managed to bypass security measures on Mythos Preview, a restricted AI tool, simply by piecing together clues from a prior breach at an AI training firm. By deducing its hosting location and leveraging open access points, they not only accessed Mythos but also stumbled upon other unreleased AI models.
While their experiments so far have been harmless, their discovery underscores a harsh truth: keeping powerful AI tools truly secure is an uphill battle.
2. Old Phone Network Flaws Still Fueling Global Surveillance
Cybersecurity experts sound the alarm on long-standing vulnerabilities in telecom systems, which two companies have exploited to track individuals’ locations. These firms targeted small telecom providers as entry points—proof that even global phone networks remain dangerously exposed to modern espionage.
3. Southeast Asian Scam Ring Lured Victims with Fake Jobs—Then Enslaved Them
U.S. authorities have charged two men with running a large-scale fraud operation in Southeast Asia. Posing as recruiters, they lured victims with fake job offers, only to imprison them in compounds and force them into multi-million-dollar crypto scams. Physical punishment was used to maintain control.
Authorities have frozen $700 million in assets and shut down a Telegram channel used to recruit victims.
---
4. UK Researchers Caught Selling Private Medical Data on Alibaba
Three research groups in the UK were found violating trust and privacy laws by selling sensitive medical records on Alibaba. More than 500,000 individuals had entrusted UK Biobank with their genetic and health data—only for researchers to profit from their personal information.
The breach included highly sensitive details, raising serious concerns about data protection and ethical oversight.
---
5. Apple’s iOS Flaw Exposed Deleted Signal Messages to the FBI
A seemingly minor bug in iPhones allowed the FBI to recover deleted Signal messages from a defendant’s device. While Signal’s encryption prevented direct access, iOS’s push notification system stored copies—proving that small oversights can lead to major privacy breaches.
Apple patched the flaw in a later update, but the incident serves as a reminder: even tech giants aren’t immune to oversight failures.
