Author: Carter

Tapbit has announced that it has integrated real-time infrastructure monitoring from blockchain security company CertiK, enhancing its existing Proof of Reserves (PoR) framework to meet institutional demands for verifiable exchange data. Independent Security Validation The assessment, completed in August 2025, evaluated Tapbit’s mobile, web, and backend systems using a combination of dynamic testing, manual review, and simulated attack scenarios. The findings revealed no critical or high-risk vulnerabilities, with most issues classified as medium, low, or informational. This result indicates that Tapbit’s foundational security posture meets industry standards, while also identifying areas for ongoing improvement as part of its evolving infrastructure.…

Ravie LakshmananApr 29, 2026Supply Chain Attack / Malware Security experts have raised concerns regarding a fresh supply chain attack aimed at SAP-linked npm packages, deploying malware specifically crafted to pilfer sensitive credentials. Findings from Aikido Security, SafeDep, Socket, StepSecurity, and Google-owned Wiz reveal that the attack, dubbed mini Shai-Hulud, has impacted the following packages tied to SAP’s JavaScript and cloud development tools: mbt@1.2.48 @cap-js/db-service@2.10.1 @cap-js/postgres@2.2.2 @cap-js/sqlite@2.2.2 “The compromised versions introduced a fresh installation step that wasn’t originally part of these packages’ standard behavior,” Socket explained. “The tainted releases included a preinstall script designed to fetch a platform-specific Bun ZIP from…

Think of machine learning like a high-stakes competition where building the best ensemble—combining multiple models and techniques—can be worth millions of dollars. Even tiny improvements in performance metrics can translate into massive financial gains for teams striving to lead the field. Success demands not only flawless individual components but also perfection in how those components are integrated. The state of the art For years, gradient boosted models have dominated tabular and time series prediction tasks. These are ensemble methods because they blend outputs from several simpler models to produce a final result that outperforms any single one alone. However, the…

Cybersecurity specialists warn that staffing reductions and organizational changes at the Cybersecurity and Infrastructure Security Agency have diminished CISA’s capacity to collaborate with private industry on vital cyber concerns, even as legislators consider fresh measures to tackle growing threats to areas like space infrastructure and data centers. A hearing held Wednesday before the House Homeland Security cybersecurity and infrastructure protection subcommittee centered largely on how CISA fulfills its responsibilities as a sector risk management agency, a function granted to the Department of Homeland Security. Delia Ramirez (D-Ill.), who recently assumed the role of ranking member on the cybersecurity subcommittee, noted…

By Marc Kavinsky, Lead Editor at IoT Business News.Telefónica España and Sateliot have reached a partnership agreement to create 5G NR non-terrestrial network solutions, merging ground-based mobile networks with LEO satellites. This initiative targets extending connectivity into isolated and off-grid locations, with special emphasis on sectors like defense, security and other mission-critical fields.The stubborn limitation of cellular networks is their reliance on physical geography. Industrial facilities, maritime operations, border regions, and temporary mission-critical deployments still face coverage gaps on the ground, even as private 5G networks grow more powerful. This understanding forms the foundation of the new Telefónica España-Sateliot deal,…

Radhika Rajkumar/ZDNETFollow ZDNET: Add us as a preferred source on Google.ZDNET’s key takeawaysArtificial intelligence and major tech companies continue to diminish individual privacy.Proton’s encrypted offerings are becoming more attractive to users.Proton CEO Andy Yen expresses concern about a future overwhelmed by unpredictable AI agents.As the use of AI surges, worries about the technology’s impact on privacy and safety have grown alongside it, particularly during the past year.AI has become a frequent tool in the hands of cybercriminals, making it far easier for malicious actors to harvest personal data. The technology also allows mass surveillance to be scaled to unprecedented levels.…

At Bitcoin 2026 in Las Vegas, Eric Trump and Calamos Investments CEO John Koudounis joined Bloomberg senior ETF analyst Eric Balchunas for a discussion exploring bitcoin’s evolution from a speculative asset to a potential global reserve currency. The panel touched on a range of topics, including institutional adoption, government debanking, currency devaluation, and the ongoing challenge of convincing everyday investors who still see bitcoin as too volatile, too complicated, or both. The event itself was a testament to how much the landscape has shifted — bringing together longtime bitcoin advocates and a wave of institutional capital that, just ten years…

Plenty of companies worry — and rightfully so — about staff using AI tools that haven’t been cleared by the organization. The rise of “shadow AI,” where workers feed confidential information into tools like ChatGPT, Claude, or various other AI chatbots, is a real and pressing issue. But honestly, it’s not even the most dangerous threat out there. When someone at your company hooks an AI application into Google Workspace, Microsoft 365, Salesforce, or any other critical business platform, they’re essentially building a constant, automated link between your internal systems and an outside party. That link doesn’t disappear just because…

Image by Editor # The Self-Hosted LLM Problem(s) “Power your own large language model (LLM)” has become the 2026 equivalent of the advice to “just launch your own startup.” On the surface, it sounds ideal: zero API fees, complete data privacy, and total command over every aspect of the model. But once you dive in, reality has a way of crashing the party. The GPU memory evaporates halfway through generating a response. The model produces even worse fabrications than the cloud-hosted alternative. Response times are painfully slow. Before you know it, you’ve burned three weekends on something that still stumbles…

Coding agents are great at building software. But to deploy to production they need three things from the cloud they want to host their app — an account, a way to pay, and an API token. Until now these have been tasks that humans handle directly. Increasingly, agents handle them on the user’s behalf. The agent needs to perform all the tasks a human customer can. They’re given higher-order problems to solve and choose to use Cloudflare and call Cloudflare APIs.Starting today, agents can provision Cloudflare on behalf of their users. They can create a Cloudflare account, start a paid subscription,…