The Security Aggregator

EP 289. Let’s climb to the top of this week’s stories: France's most trusted identity infrastructure has become its biggest liability, and nineteen million citizens are now paying the price. The real lesson from Bitwarden's close call isn't about passwords it's about how quietly an attack can move through the software you never see being built. A newly uncovered rootkit predating Stuxnet has rewritten what we thought we knew about state-level sabotage and its most dangerous feature was making everything look perfectly normal. The arms race in AI security has hit a new threshold machines are now the ones probing for weaknesses, and they don't need sleep to do it. The browser is no longer just a window to the web it's becoming an autonomous actor, and that changes everything about who's actually in control. A restricted AI model, a contractor's borrowed credentials, and a private Discord channel Anthropic's Mythos access story is a case study in h...