Big Tech’s Mixed Response to U.S. Treasury Sanctions In May 2025, the U.S. government sanctioned a Chinese national for operating a cloud provider linked to the majority of virtual currency investment scam websites reported to the FBI. But more than a month later, the accused continues to openly operate accounts at a slew of American tech companies, including Facebook, Github, LinkedIn, PayPal and Twitter/X.
https://krebsonsecurity.com/20....25/07/big-techs-mixe

Buckle up, Buttercup, AIxCC’s scored round is underway! Our CRS (Cyber Reasoning System), Buttercup, is now competing in the one and only scored round of DARPA’s AI Cyber Challenge (AIxCC) against six other teams to see which autonomous AI-driven system can find and patch the most software vulnerabilities.
https://blog.trailofbits.com/2....025/07/02/buckle-up-

Strategic Synergy: CSA STAR, CCM, and FedRAMP 20x Security compliance, as we’ve traditionally known it, is buckling under the weight of modern complexity. Burdensome documentation, excessive manual oversight, and frameworks that are misaligned with today’s cloud-native architectures are pushing compliance past the breaking point. Legacy compliance regimes strain to keep pace with the speed, scale, and dynamism of contemporary technology. Nowhere is this more apparent than in government security programs like FedRAMP.

FedRAMP was bu...
https://cloudsecurityalliance.....org/articles/strateg