IA y criminalidad digital: ¿está preparado el Derecho chileno?, por Renzo Gandolfi Díaz

La irrupción de sistemas capaces de automatizar fraudes, clonar voces, generar identidades sintéticas y manipular evidencia digital obliga a replantear la responsabilidad penal, la ciberseguridad corporativa y la capacidad del Derecho para enfrentar delitos potenciados por inteligencia artificial. T

Niubox oficializa su expansión regional con lanzamiento estratégico

San José, Costa Rica – mayo, 2026 – En un paso decisivo para consolidar su arquitectura de servicios en la región, Niubox Legal Digital celebró este jueves 16 de abril el lanzamiento oficial de sus operaciones en Costa Rica con un espacio de conversación acerca de inteligencia artificial y regulació

Mythos: el monstruo que Anthropic aún no suelta

“Si la tecnología sin gobernanza es negligencia, la implementación de IA sin control fiduciario es una abdicación de funciones. Para los directorios que aún intentan descifrar la ‘caja negra’, la respuesta no es la parálisis, sino la imposición de límites técnicos y legales infranqueables”. The post

El caso «Rutify» y las lecciones para la Agencia de Protección de Datos Personales

Por Lucas Chávez Grille* El pasado 29 de abril de 2026, la empresa de ciberseguridad Vecert Analyzer emitió una señal de alerta que, en un principio, pareció caer en el vacío. Se informaba que bases de datos con nombres, RUT, domicilios e historiales clínicos de ciudadanos chilenos circulaban en gru

Proceso de implementación de la modificacióna la Ley de Datos Personales- Chile. El rol de la auditoría.

Por Juan Pablo González Gutiérrez* A meses de la entrada en vigencia de la Ley Nº 21.719 que reforma la Ley Nº 19.628 sobre protección de datos personales, varias organizaciones a nivel nacional han avanzando en el diseño de un Modelo de Prevención de Infracciones, en los términos indicados en los a

China advierte a la UE tras decisión europea de excluir a empresas chinas por ley de ciberseguridad

r/WallStreetBets really hates the SEC’s proposal to weaken quarterly reporting

The retail trading subreddit submitted the sharpest criticism yet in response to the financial regulator's idea of letting companies report twice per year.

Anthropic now has more business customers than OpenAI, according to Ramp data

For the first time, Anthropic has more verified business customers than OpenAI, according to this month’s AI Index from the fintech firm Ramp.

Adaption aims big with AutoScientist, an AI tool that helps models train themselves

Adaption's new AutoScientist tool is designed to let models adapt to specific capabilities quickly through an automated approach to conventional fine-tuning.

Medicare’s new payment model is built for AI, and most of the tech world has no idea

There is no governmental mechanism to pay for an AI agent that monitors a patient between visits, calls to check in, coordinates a housing referral, or makes sure someone picks up their medication. ACCESS creates that mechanism for the first time.

Kevin Hartz’s A* just closed its third fund with $450M

The firm takes a generalist approach, backing companies across categories such as AI applications, fintech, healthcare, and security. The average check size for this fund will be between $3 million and $5 million, with the aim to back at least 30 startups.

Musk mulled handing OpenAI to his children, Altman testifies

Altman said that Musk's focus on controlling the initial for-profit gave him pause because OpenAI was dedicated to keeping advanced AI out of the hands of a single person, and Altman, with his experience running the prominent startup accelerator Y Combinator, knew "founders who had control usually d

The AI legal services industry is heating up — Anthropic is getting in on the action

Anthropic's new tools are designed to help law firms automate specific clerical functions — things like document search and review, case law resources, deposition prep, document drafting, and other related areas.

Google adds Gemini-powered dictation to Gboard, which could be bad news for dictation startups

Google's transcription feature will initially launch with Samsung Galaxy and Google Pixel phones.

Canada’s Bill C-22 Is a Repackaged Version of Last Year’s Surveillance Nightmare

Last year, the Canadian government pushed Bill C-2, which would erode Canadian digital rights in the name of “border security.” The bill was so bad it didn’t even make it to committee because of the backlash from the privacy community. Now, the spring’s worst sequel, Bill C-22, aka The Lawful Access

Confidentialité de l’euro numérique : où en sommes-nous ?

La proposition de règlement sur l’euro numérique est en cours de vote au Parlement européen et l'Eurosystème se prépare à son émission d'ici 2029. La CNIL et l’autorité fédérale allemande de protection des données (BfDI) reviennent sur les enjeux et travaux sur la vie privée des européens.

Les lunettes connectées : la CNIL appelle à la vigilance

L’essor des lunettes connectées constitue un nouveau défi pour la vie privée et soulève des enjeux éthiques et sociétaux forts. La CNIL alerte sur ces risques, qui nécessitent une vigilance collective, et lance son plan d’action.

Privacy Research Day : participez à la journée dédiée à la recherche sur la vie privée

La cinquième édition de la Journée de recherche sur la vie privée (Privacy Research Day) se tiendra le 24 juin 2026, dans le cadre du G7 des autorités de protection des données accueilli par la CNIL. Cet évènement international, reliant le monde académique aux acteurs de la régulation des données, s

Demandes de crédit : comprendre l’utilisation de vos données et vos droits

Acheter un logement, financer un achat… demander un crédit implique de partager de nombreuses données personnelles. Pour mieux vous protéger, la CNIL publie des recommandations pour les professionnels qui renforcent la transparence, encadrent les pratiques et facilitent l’exercice de vos droits.

Octroi de crédit : la CNIL publie sa recommandation sur l’utilisation de données personnelles pour l’évaluation de la solvabilité

À l’issue d’une consultation publique, la CNIL publie ses recommandations sur l’évaluation de la solvabilité dans le cadre de l’octroi de crédit. Elle renforce transparence et contrôle, notamment des décisions automatisées, et accompagne les acteurs à mieux comprendre leurs obligations.

US lawmakers demand answers from Instructure after Canvas data breaches

U.S. House lawmakers want to know how hackers broke into education tech giant Instructure twice, and stole reams of data from students who use the company's flagship student data software Canvas.

Fine of nearly £1m issued against South Staffordshire Plc and South Staffordshire Water Plc following major cyber attack and data breach | ICO

ShinyHunters Claims Second Attack Against Instructure

The edtech company is struggling to wrest control from its hackers. PII belonging to hundreds of millions of people is on the line.

Instructure Reaches Ransom Agreement with ShinyHunters to Stop 3.65TB Canvas Leak

American educational technology company Instructure, the parent company of Canvas, said it reached an "agreement" with a decentralized cybercrime extortion group after it breached its network and threatened to leak stolen information from thousands of schools and universities. In an update shared on

cPanel CVE-2026-41940 Under Active Exploitation to Deploy Filemanager Backdoor

A threat actor named Mr_Rot13 has been attributed to the exploitation of a recently disclosed critical cPanel flaw to deploy a backdoor codenamed Filemanager on compromised environments. The attack exploits CVE-2026-41940, a vulnerability impacting cPanel and WebHost Manager (WHM) that could result

Ollama Out-of-Bounds Read Vulnerability Allows Remote Process Memory Leak

Cybersecurity researchers have disclosed a critical security vulnerability in Ollama that, if successfully exploited, could allow a remote, unauthenticated attacker to leak its entire process memory. The out-of-bounds read flaw, which likely impacts over 300,000 servers globally, is tracked as CVE-2

TCLBANKER Banking Trojan Targets Financial Platforms via WhatsApp and Outlook Worms

Threat hunters have flagged a previously undocumented Brazilian banking trojan dubbed TCLBANKER that's capable of targeting 59 banking, fintech, and cryptocurrency platforms. The activity is being tracked by Elastic Security Labs under the moniker REF3076. The malware family is assessed to be a majo

Linux Kernel Dirty Frag LPE Exploit Enables Root Access Across Major Distributions

Details have emerged about a new, unpatched local privilege escalation (LPE) vulnerability impacting the Linux kernel. Dubbed Dirty Frag, it has been described as a successor to Copy Fail (CVE-2026-31431, CVSS score: 7.8), a recently disclosed LPE flaw impacting the Linux kernel that has since come

Ivanti EPMM CVE-2026-6973 RCE Under Active Exploitation Grants Admin-Level Access

Ivanti is warning that a new security flaw impacting Endpoint Manager Mobile (EPMM) has been explored in limited attacks in the wild. The high-severity vulnerability, CVE-2026-6973 (CVSS score: 7.2), is a case of improper input validation affecting EPMM before versions 12.6.1.1, 12.7.0.1, and 12.8.0

PAN-OS RCE Exploit Under Active Use Enabling Root Access and Espionage

Palo Alto Networks has disclosed that threat actors may have attempted to unsuccessfully exploit a recently disclosed critical security flaw as early as April 9, 2026. The vulnerability in question is CVE-2026-0300 (CVSS score: 9.3/8.7), a buffer overflow vulnerability in the User-ID Authentication