Lifeboat Foundation: Safeguarding Humanity
Toggle light / dark theme

Blog

Category: security

China Takes Supercomputer Crown From U.S. For First Time Since 2017

China took back a coveted computing crown from the United States on Tuesday, ratcheting up a fierce technological competition that has implications for science, national security and geopolitics.

LineShine, a massive computing system in Shenzhen, China, was declared the world’s fastest by a group of researchers using a set of standard tests for supercomputers. Besides raw speed, the system stood out because it uses only standard microprocessors and not the special-purpose chips called graphics processing units, which most high-end supercomputers rely on for heavy number crunching.

That underlying design could point to a better way to blend artificial intelligence with traditional scientific tasks, said Jack Dongarra, an organizer of the so-called Top500 list of the world’s most powerful supercomputers.

Cisco Unified CM Flaw Exploited After PoC Reveals File-Write Path to Root

Threat actors have begun to exploit a recently disclosed critical security flaw impacting Cisco Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME).

The vulnerability, tracked as CVE-2026–20230 (CVSS score: 8.6), is a case of improper input validation for specific HTTP requests that could allow an unauthenticated, remote attacker to conduct server-side request forgery (SSRF) attacks through an affected device.

“An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device,” Cisco said in an advisory released earlier this month. “A successful exploit could allow the attacker to write files to the underlying operating system that could be used later to elevate to root.”

OpenAI Expands Daybreak With GPT-5.5-Cyber to Help Defenders Patch Security Flaws

OpenAI on Monday said it’s releasing an improved version of its GPT‑5.5‑Cyber model to trusted defenders as part of the Daybreak initiative the artificial intelligence (AI) company announced last month.

Calling GPT‑5.5‑Cyber its “strongest model yet for finding and helping patch software vulnerabilities,” OpenAI said the model can “sustain deeper analysis across large codebases” to identify security issues, validate them in a controlled environment, and develop and test patches.

In tandem, the tech upstart is releasing an update to the Codex Security plugin⁠ to speed up the process of discovering and patching vulnerabilities in existing systems, alongside preventing new vulnerabilities from entering production codebases.

Unpatchable ‘usbliter8’ Exploit Breaks Apple A12 and A13 SecureROM Boot Chain

Security researchers at Paradigm Shift have published a working exploit, dubbed usbliter8, that achieves arbitrary code execution inside the SecureROM of Apple’s A12 and A13 chips.

That code is burned into the silicon at manufacture. No software update can reach it. Affected devices will carry this flaw for as long as they stay in use.

This is not a remote attack. It requires physical possession of the device, which must be in DFU mode and connected via USB to a dedicated RP2350-based microcontroller board. With that setup, the exploit finishes in under two seconds, before Apple’s signed boot chain loads.

Hackers exploit info disclosure bug in Gravity SMTP WordPress plugin

Threat actors are exploiting an unauthenticated information disclosure vulnerability in the WordPress plugin Gravity SMTP, active on 100,000 sites.

The flaw is tracked as CVE-2026–4020 and received a medium severity rating. It affects all versions of the plugin from 2.1.4 and older and has been addressed in version 2.1.5, released on March 17.

WordPress security company Defiant is warning that hackers are actively exploiting the vulnerability. The company’s Wordfence firewall has blocked more than 17 million attempts against protected customers.

Navigating Emerging Technologies: Opportunities and Security Threats (AI, Quantum, Space, Energy)

Dear Readers.

Welcome to another issue of Security & Tech Insights. This edition features original content that explores the benefits and challenges of emerging technologies impacting our global ecosystem, including AI, quantum, space, and energy.

Thank you for reading and sharing. Stay safe!

/* */