A gunman attempted to enter the White House Correspondents’ Dinner in Washington, DC, last weekend. Media reports identified the suspected shooter as 31-year-old engineer and computer scientist Cole Tomas Allen. He appeared in the US District Court for the District of Columbia to face three federal charges, including attempting to assassinate the president. ### AI Security and Privacy Initiatives The **FIDO Alliance**, along with **Google** and **Mastercard**, announced working groups to develop technical guardrails for validating and protecting transactions initiated by AI agents. Simultaneously, **OpenAI** rolled out an “advanced” security risk mode for **ChatGPT** and **Codex** accounts facing heightened risk of attack. New research highlighted the risks of commercially available spyware after 90,000 screenshots from a European celebrity's phone were exposed online. **WIRED** also reported on arrests in the United Arab Emirates resulting from people sharing screenshots and other online content. ### Disney's Face Recognition Rollout **The Walt Disney Company** announced that visitors to its Disneyland Park and Disney California Adventure Park will have the option to use face recognition technology for park entry. While participation is “entirely optional,” the company notes that images may still be taken even in non-face recognition lanes. Data is purportedly deleted after 30 days, except for legal or fraud-prevention purposes. This move raises privacy concerns given the increasing prevalence of face recognition systems in public spaces. ### NSA's AI Bug Hunting with Anthropic's Mythos According to **Bloomberg News** and **Axios**, the **National Security Agency (NSA)** is testing **Anthropic’s Mythos** AI tool for discovering hackable bugs in software. Mythos has been described as highly effective at identifying vulnerabilities, leading to restricted access to prevent misuse. The **NSA** is using Mythos to hunt for bugs in **Microsoft** software, impressed by its speed and effectiveness. This adoption occurs despite the Department of Defense’s declared ban on Anthropic, citing supply chain risks. ### Scattered Spider Member Arrested A 19-year-old, Peter Stokes, is alleged to be part of the **Scattered Spider** ransomware group and has been arrested. **Scattered Spider** is known for high-profile breaches, including **MGM Resorts**, **Caesars Entertainment**, and retailers like **M&S** and **Harrods**. Stokes was arrested at an airport in Finland, reportedly involved in targeting four victim companies, including an online communications platform and a luxury retailer. ### Medicare Data Exposure A **Medicare** database left accessible on the open internet exposed the Social Security numbers and other personal information for health care providers around the US, according to the **Washington Post**. The database was linked to an online directory for the **Centers for Medicare and Medicaid Services (CMS)**. The sensitive data was reportedly online for “at least several weeks.”