Tags: Security

Microsoft is embedding AI capabilities such as Copilot, Vision, and Voice directly into Windows, aiming to create an "agentic" operating system. The rollout has sparked criticism from users who report reliability issues and a loss of control, prompting concerns about forced adoption and privacy. Microsoft officials acknowledge the need for choice and have begun adding safeguards, but the push continues as the company expands AI features across its suite of products and infrastructure. Weiterlesen

Microsoft has rolled out a new Windows 11 Insider build that adds an optional "experimental agentic features" toggle. The update enables Copilot Actions, an AI‑driven assistant that can handle tasks such as file organization, meeting scheduling, and email composition. While the feature aims to boost productivity, Microsoft acknowledges novel security risks and has built safeguards, including separate user accounts for agents, mandatory user approvals, activity logs, and observable actions. The feature is currently disabled by default and limited to early test builds. Weiterlesen

Microsoft is rolling out an experimental feature called agent workspaces in Windows 11, allowing AI agents to run in a sandboxed environment separate from the user’s account. The design emphasizes security and privacy by granting agents limited permissions to specific apps and files. Early testing will involve a small group of insiders, with plans to expand as feedback is gathered. Microsoft highlights the ability to manage each agent’s access, maintain logs of activity, and protect against risks such as hallucinations or prompt injection. Sample agents include Copilot Actions for routine tasks and Manus AI for more complex projects. Weiterlesen

A Deloitte survey of U.S. consumers shows that while more than half are experimenting with or regularly using generative AI, a majority also express strong worries about privacy and security. About four in ten respondents pay for AI services, yet concerns about data misuse, inaccurate results, and companies’ focus on competition over problem solving persist. Users increasingly verify AI outputs and remain reluctant to share personal data, highlighting a trust gap that tech firms must address. Weiterlesen

Google announced a new bug bounty program focused on its AI products, defining AI bugs as issues that use large language models or generative AI to cause harm or exploit security gaps. The program rewards researchers for uncovering rogue actions such as prompt‑injection attacks that could unlock a Google Home device or exfiltrate email data. Since its inception two years ago, participants have earned over $430,000. Alongside the bounty, Google introduced CodeMender, an AI‑driven agent that has already patched 72 security fixes in open‑source projects after human review. Weiterlesen

Eufy, the security camera brand owned by Anker, launched a program that offers users cash for videos of package and car thefts to improve its artificial‑intelligence detection. The initiative encourages both real and staged incidents, promising payment per video. While the effort aims to enhance AI performance, it has sparked worries about privacy and data security, especially after earlier revelations that Eufy’s camera streams were not fully encrypted as advertised. Weiterlesen

Security researchers have highlighted a serious privacy flaw in Tile Bluetooth trackers: the devices transmit unencrypted identifiers that can be intercepted and used to follow individuals. While Tile’s anti‑theft mode hides a tag from the network, it does not rotate MAC addresses, allowing a single captured signal to fingerprint a tag for its entire life. Experts from the Georgia Institute of Technology and privacy advocates at the Electronic Frontier Foundation warn that the vulnerability could enable stalkers to track victims without detection. Tile’s parent company, Life360, says it has made improvements after the issue was reported. Weiterlesen

Microsoft announced a new Microsoft 365 Premium subscription that bundles a range of AI features across its Office apps. Priced at twice the cost of the Personal plan, Premium includes higher limits for AI image generation, access to Copilot tools such as Researcher, Analyst, Photos Agent, and Actions for up to six users, and a 1 TB cloud storage allocation. The AI capabilities are limited to the subscription owner and require files to be saved on OneDrive with AutoSave enabled. Existing Personal and Family plans will also receive higher usage limits and new Copilot Chat functionality, while college students continue to enjoy a free year of Microsoft 365 Personal. Weiterlesen

Google is rolling out a major upgrade to Chrome that embeds its Gemini AI across the desktop, Android, and soon iOS versions of the browser. A new Gemini button lets users ask questions and receive summaries of content in any open tab, while AI Mode becomes reachable directly from the omnibar. The integration also links to Google services such as Calendar and YouTube and adds AI‑driven security tools that can spot common scams and help manage compromised passwords. The enhancements aim to make browsing more intuitive, productive, and secure. Weiterlesen

OpenAI’s ChatGPT Agent demonstrated its ability to handle a multi‑step online purchase by ordering a pizza from a local shop. The system navigated the restaurant’s website, added the desired pie to the cart, and completed checkout after the user supplied address and payment details. The process took only a few minutes, and the pizza arrived promptly. While the experience highlights the convenience of AI‑driven personal assistants, it also raises questions about security, potential misuse, and the broader impact of agents that can interact directly with consumer platforms. Weiterlesen

AI tools are reshaping how developers write and understand code, offering speed and convenience while also raising questions about quality, security, and skill erosion. The technology works best when used for focused tasks, acting as an editorial partner rather than a full‑scale replacement. Experts warn that reliance on AI can diminish deep programming knowledge, yet the same tools can accelerate learning and improve security when combined with human oversight. The evolving balance between automation and craftsmanship defines the current debate on AI’s role in software engineering. Weiterlesen

AI agents—autonomous, task‑driven models with tool access—are moving from experimental tools to integral teammates in enterprises. Companies are leveraging them for functions such as supplier negotiations, payment terms, and dynamic pricing, which were once handled by human analysts. This shift brings significant security and governance challenges, as agents require onboarding, risk thresholds, and clear escalation paths similar to human employees. Leaders are establishing AI steering committees and Chief AI Officer roles to embed organizational values and safeguards into agent behavior, aiming to balance rapid innovation with responsible oversight. Weiterlesen