Google has announced that its AI-based vulnerability research tool, Big Sleep, powered by Gemini, autonomously identified 20 security vulnerabilities in widely used open-source software projects such as FFmpeg and ImageMagick. These findings were confirmed by Google's Project Zero team. Meanwhile, Cisco disclosed a data breach involving a voice phishing (vishing) attack targeting one of its representatives, resulting in the theft of personal information from an undisclosed number of its more than 300,000 global customers. The attackers exploited a third-party customer relationship management (CRM) system, downloading user data. In a related development, Pandora confirmed a third-party data breach linked to ongoing Salesforce data theft attacks, which involved phishing attempts leading to the loss of sensitive information. Google also reported that hackers stole customer data through a breach of its Salesforce database. Additionally, Microsoft 365 users have been targeted by phishers spoofing internal users, and PBS confirmed a data breach after employee information was leaked on Discord servers.