security controls

The 90 Day Disclosure Policy Is Dead

The article argues that the traditional 90-day vulnerability disclosure policy is no longer effective due to advances in AI and large language models (LLMs) that have drastically sped up bug discovery and exploit development. Real-world examples show multiple researchers independently finding the same critical bugs within weeks and exploits emerging minutes after patches are released, leaving no safe window for vendors to patch before attacks occur. The author urges the security industry to treat every critical bug as a top priority for immediate fix and to integrate AI-assisted tools into continuous development and security processes to keep pace with emerging threats.

https://blog.himanshuanand.com/2026/05/the-90-day-disclosure-policy-is-dead/

Microsoft Says Bug Causes Copilot to Summarize Confidential Emails

Microsoft 365 Copilot bug since January causes AI to incorrectly summarize confidential emails, bypassing DLP policies. A code error allows emails marked with confidentiality labels to be processed, prompting Microsoft to initiate a fix. As of mid-February, they continue monitoring the situation but have not disclosed the full impact or timeline for resolution.

https://www.bleepingcomputer.com/news/microsoft/microsoft-says-bug-causes-copilot-to-summarize-confidential-emails/

Milan-Cortina 2026: How Winter Olympics Embraced AI to Fend Off Cyber Attacks

Milan-Cortina 2026 Winter Olympics implement AI and cybersecurity measures to combat threats amid geopolitical tensions. Organized by Italian authorities and supported by technology partners, initiatives focus on mitigating cyber attacks, including DDoS attempts. Key infrastructure will handle extensive data operations, ensuring performance and security throughout the Games.

https://www.sportspro.com/analysis/technology/milan-cortina-2026-winter-olympics-cybersecurity-ai-tech-february-2026/

Scroll to Top