Cybersecurity Headlines US cyber chief uploaded sensitive files into public ChatGPT, Vibe-coded 'Sicarii' ransomware can't be decrypted, WhatsApp account feature combats spyware
16 snips
Jan 28, 2026 A senior US cyber official accidentally uploaded sensitive DHS contracting files to public ChatGPT. A vibe-coded 'Sicarii' ransomware strain is effectively undecryptable and may include false-flag indicators. WhatsApp rolls out a high-risk account lock to block unknown media and help protect journalists and activists. Several old and new vulnerabilities keep being exploited by threat actors.
AI Snips
Chapters
Transcript
Episode notes
US Cyber Chief ChatGPT Upload Incident
- Madhu Gautamakala uploaded contracting documents marked for official use only into a public ChatGPT last summer, which triggered DHS automated alerts.
- The documents weren't classified but prompted an internal DHS review to see if sensitive material was exposed.
Sakari Ransomware Is Self-Sabotaging
- Sakari ransomware is effectively unusable because it generates fresh RSA keys each run and discards private keys, leaving no decryption path.
- Researchers suspect the code used AI tooling and that Hebrew symbols in the build may be a false flag.
Enable WhatsApp's High-Risk Protections
- Do enable WhatsApp's strict account settings under Settings > Privacy > Advanced if you face high-risk spyware threats.
- The feature blocks attachments and media from non-contacts and complements Lockdown and Advanced Protection modes.