HUMAN Security has launched HUMAN Sightline, a cyberfraud defense solution featuring AgenticTrust. Developed to secure every interaction across the customer journey, HUMAN Sightline preserves legitimate human activity, prevents fraud and scraping, enables trusted automation through intent-based controls and accelerates investigations. With the introduction of AgenticTrust, the solution extends visibility and control to AI agent activity across consumer-facing surfaces, including every action taken before, during and after login. This helps enterprises embrace and adopt agentic commerce, reduce fraud losses and securely scale engagement and revenue in the AI era. HUMAN Sightline, featuring AgenticTrust, secures the customer journey and unlocks safe, scalable growth with actor-level visibility and intent-based control across humans, bots and AI agents – and delivers: Actor-level visibility into humans, bots and AI agents; Adaptive trust decisioning based on behavior, context and intent over time; Governance tools to enforce policies in real time; Investigative intelligence to uncover networks and attack patterns. Key capabilities include: Agentic visibility and control: Identify AI agent activity, prevent spoofing and enable trusted automation; Adaptive trust decisioning: Evaluate behavior and context, not just identity, to determine trust; Layered detection and learning: Detect evolving threats through multi-model signal analysis; Fraud investigation intelligence: Map attacker behavior and fraud networks across the journey; Govern bots, LLMs, and agents: Block, allow, rate-limit, redirect or monetize based on traffic type and intent; Seamless deployment: Integrates into WAF, CDN, CIAM and fraud infrastructure.
When JPMorgan takes over, it will likely drop niche processor CoreCard as the Apple Card’s processor; dropping first-of-the-month billing cycle and “payment wheel” graphic that show cardholders their projected interest costs.
The transition of the Apple Card from being financed by Goldman Sachs to JPMorgan Chase will probably cut out a smaller company, CoreCard, that currently handles the credit card. When JPMorgan takes over, it will likely drop CoreCard as the Apple Card’s processor in favor of its own in-house payment processing. Before it got the Apple account and its estimated 12 million users, CoreCard was considered a niche processor. CoreCard currently manages the day-to-day functioning of the Apple Card, ensuring that transactions are completed and handling the billing of users. It is also CoreCard that has been responsible for developing some of the distinctive features of the card alongside Apple, like its first-of-the-month billing cycle. CoreCard also developed the “payment wheel” graphic on its bills that show cardholders their projected interest costs, widely seen as consumer-friendly and educational. JPMorgan Chase will be responsible for the Apple Card once Goldman Sachs exits the consumer market. Because JPMorgan Chase has its own processing capabilities, CoreCard owner Richard Strange believes it likely that the Apple Card processing job will go in-house, dropping CoreCard. The transition will mean the loss of its biggest client.
A hacker was able to infiltrate a plugin for an Amazon generative AI assistant after obtaining stolen credentials and making unauthorized changes, including secretly instructing it to delete files
Coders who use artificial intelligence to help them write software are facing a growing problem, and Amazon.com Inc. is the latest company to fall victim. A hacker was recently able to infiltrate a plugin for an Amazon generative AI assistant1 after obtaining stolen credentials and making unauthorized changes, including secretly instructing it to delete files from the computers it was used on. The incident points to a gaping hole in the security practices of AI coding tools that has gone largely unnoticed in the race to capitalize on the technology. The hacker effectively showed how easy it could be to manipulate artificial intelligence tools — through a public repository like Github — with the the right prompt. Amazon ended up shipping a tampered version of the plugin to its users, and any company that used it risked having their files deleted. Fortunately for Amazon, the hacker deliberately kept the risk for end users low in order to highlight the vulnerability, and the company said it “quickly mitigated” the problem. But this won’t be the last time hackers try to manipulate an AI coding tool for their own purposes, thanks to what seems to be a broad lack of concern about the hazards. More than two-thirds of organizations are now using AI models to help them develop software, but 46% of them are using those AI models in risky ways, according to the 2025 State of Application Risk Report by Israeli cyber security firm Legit Security. “Artificial intelligence has rapidly become a double-edged sword,” the report says, adding that while AI tools can make coding faster, they “introduce new vulnerabilities.” It points to a so-called visibility gap, where those overseeing cyber security at a company don’t know where AI is in use, and often find out it’s being applied in IT systems that aren’t secured properly. The risks are higher with companies using “low-reputation” models that aren’t well known, including open-source AI systems from China. Dive into the shadow world of hackers and cyber-espionage. The flaw was discovered by the Swedish startup’s competitor, Replit; Lovable responded on Twitter by saying, “We’re not yet where we want to be in terms of security.” One temporary fix is — believe it or not — for coders to simply tell AI models to prioritize security in the code they generate. Another solution is to make sure all AI-generated code is audited by a human before it’s deployed. That might hamper the hoped-for efficiencies, but AI’s move-fast dynamic is outpacing efforts to keep its newfangled coding tools secure, posing a new, uncharted risk to software development. The vibe coding revolution has promised a future where anyone can build software, but it comes with a host of potential security problems too.
Handwave’s tech uses a combination of surface palm imaging and near-infrared vein mapping to enable secure, frictionless authentication of payments, age verification and loyalty programs without the need for devices, apps or wallets
Handwave has raised $4.2 million in a seed round to launch its palm-based authentication method across Europe and the United States. The company’s technology enables payments, age verification and loyalty programs to be done “with one wave of a hand.” “Using a combination of surface palm imaging and near-infrared vein mapping, Handwave creates an encrypted biometric template that never leaves your control,” Handwave said. “The result? Secure, frictionless authentication with a single gesture — no devices, apps or wallets required.” Handwave said palm biometrics provides users with greater control than facial recognition and greater security than face scans or fingerprints. While facial recognition can be triggered passively, palm biometrics requires users to extend their hand and confirm the action. Plus, the palm’s “unique network of veins, geometry and motion” is difficult to replicate and can be verified with liveness detection. The early-stage venture capital firm focused on Baltic founders said Handwave’s biometric payments and identification platform “is redefining how we pay and prove who we are — with just a palm.” “The idea that you can securely pay or verify your identity with nothing but your palm—without even taking out a phone—is not just futuristic, it’s imminently practical,” Practica Capital Partner Arvydas Bloze said.
Retailers are turning to Snapchat as CX engagement tool to target Gen Z, 77% of who use it for brand discovery and shopping, building authentic conversations using its communication-friendly design, and tapping its AR-based location-sharing
Here are a few specific reasons so many retailers are turning to Snapchat as a consumer engagement platform, starting with favorable user demographics: 1) One big reason an increasing number of retailers are reaching out to customers via Snapchat is that highly coveted Gen Z and even Gen Alpha (the generation following Gen Z of consumers 15 and under) shoppers are spending their time, and money, there. Data backs up the fact that young consumers frequent Snapchat and see it as a branding and shopping platform. According to a recent survey of U.S. and U.K. Gen Z consumers from identity verification technology provider SheerID, 77% of respondents reported learning about a new brand through platforms such as Instagram, Tiktok and Snapchat. Gen Alpha has an estimated $28 billion in direct purchasing power. While 14% Gen Alpha consumers rank Snapchat as their favorite social network, 84% check it at least once a day. If your brand appeals to young shoppers, or you want it to, Snapchat is a vital engagement tool. 2) Snapchat is heavily focused on direct communication among peers, including features for texting, video chatting and exchanging photos. Its communication-friendly design is perfect for both one-to-one and one-to-many conversations, adding an air of authenticity and “real life” interaction which ironically would not be achievable without digital assistance. 3) This sense of digitally enhanced reality extends to Snapchat’s augmented reality capabilities, which retailers are leveraging to get their brand and products in front of consumers in new ways. American Eagle is something of a retail Snapchat pioneer, and another interesting promotion it is currently running on the platform involves including more than 800 retail stores across the U.S. as Promoted Places on the Snap Map location-sharing feature.
Scalenut’s AI-powered SEO platform tracks how often and where a brand is cited in AI-generated answers across AI platforms and provides visibility into citation trends, topic coverage, and competitor benchmarking
Scalenut, an AI-powered SEO and content marketing platform, announced the launch of two powerful new tools: GEO Watchtower and Social Upreach, to help marketers stay visible, relevant, and cited across AI-driven search ecosystems. Scalenut’s latest release tackles three urgent challenges for marketing teams in the age of AI search. First, it helps brands track how and where they show up in AI-generated content. Second, it supports authority-building by making it easier to earn citations that matter to both Google and generative engines. Third, it improves engagement by tapping into high-signal conversations on platforms like Reddit — a key source of data for large language models. Instead of juggling multiple tools, teams can now manage AI visibility, content strategy, and user-generated content from a single platform.The new tools are designed specifically for AI-first search environments: GEO Watchtower: Tracks how often and where a brand is cited in AI-generated answers across AI platforms with GEO Watchtower. It provides visibility into citation trends, topic coverage, and competitor benchmarking. These are insights that traditional SEO dashboards don’t offer. Social Upreach: Reddit and other open platforms feed directly into large language model training data. Social Upreach helps brands identify high-signal conversations and engage in them strategically, improving their presence in both social spaces and AI-generated outputs. These tools work together to give marketers the visibility, control, and strategic direction they need in a fast-changing AI search landscape. They help bridge the gap between traditional SEO and the new era of generative discovery.
Flyhomes’ platform enables homebuyers to use equity from their current home towards a down payment by securing a backup offer on their current home before it’s sold, which removes their existing mortgage payments from debt-to-income calculations
Seattle-based real estate FinTech firm Flyhomes has raised $15m in funding to transition from a direct-to-consumer platform to a wholesale financial product provider. The Series D funding round was backed by investors including Andreessen Horowitz, Norwest Venture Partners, Canvas Ventures, Camber Creek, Al Goldstein, and Mark Vadon. Flyhomes, founded in 2016, offers innovative lending solutions that enable homebuyers to purchase their next property before selling their current one. The firm’s core product, “Buy Before You Sell,” is central to its wholesale strategy, which now focuses on partnerships with loan officers and real estate agents. Flyhomes currently holds lending licenses in 40 US states and plans to expand to more.
Perplexity is accused of willingly crawling and scraping content from websites that have explicitly blocked its bots, by obscuring its identity
AI startup Perplexity is crawling and scraping content from websites that have explicitly indicated they don’t want to be scraped, according to internet infrastructure provider Cloudflare. Cloudflare published research saying it observed the AI startup ignore blocks and hide its crawling and scraping activities. The network infrastructure giant accused Perplexity of obscuring its identity when trying to scrape web pages “in an attempt to circumvent the website’s preferences,” Cloudflare’s researchers wrote. Perplexity appears to be willingly circumventing these blocks by changing its bots’ “user agent,” meaning a signal that identifies a website visitor by their device and version type, as well as changing their autonomous system networks, or ASN, essentially a number that identifies large networks on the internet, according to Cloudflare. “This activity was observed across tens of thousands of domains and millions of requests per day. We were able to fingerprint this crawler using a combination of machine learning and network signals,” read Cloudflare’s post. Cloudflare said it first noticed the behavior after its customers complained that Perplexity was crawling and scraping their sites, even after they added rules on their Robots file and for specifically blocking Perplexity’s known bots. Cloudflare said it then performed tests to check and confirmed that Perplexity was circumventing these blocks. “We observed that Perplexity uses not only their declared user-agent, but also a generic browser intended to impersonate Google Chrome on macOS when their declared crawler was blocked,” according to Cloudflare. The company also said that it has de-listed Perplexity’s bots from its verified list and added new techniques to block them.
KredosAi combines conversational intelligence, RCS and real‑time customer data to deliver branded, interactive, two-way messaging that enables enterprises to offer deeply personalized experiences to late paying customers at scale
KredosAi announced a successful seed fundraise to scale its platform and accelerate go-to-market expansion. The raise follows its recent RCS deployment with UScellular, the fourth-largest U.S. wireless carrier, showcasing the platform’s traction and enterprise readiness. KredosAi cuts through the digital noise to help enterprises engage past-due customers with empathy, making it easier for them to resolve payments while preserving and strengthening customer relationships. By integrating RCS, KredosAi delivers branded, interactive, two-way messaging that enables enterprises to offer deeply personalized experiences at scale. This approach sets a new benchmark for digital engagement. KredosAi is already trusted by Tier 1 Telcos and national auto lenders to drive better outcomes across the customer lifecycle. KredosAi’s AI‑native engagement platform unifies conversational intelligence, advanced messaging formats like RCS, and real‑time customer data. By experimenting with, and testing, thousands of messages at scale, KredosAi can increase engagement rates, reduce churn, and enhance customer loyalty by delivering messages that are timely, relevant, and human‑first. KredosAi is the first to deliver RCS at production scale with a proprietary AI feedback loop that’s driving measurable ROI not just in engagement, but in cash conversion and payment recovery.
Samsung’s Galaxy S26 to feature a second NFC antenna to the top of the device in addition to the existing NFC coil near the rear camera, to improve user convenience for in-person payments
Samsung’s Galaxy S26 is reportedly making a hardware change to the benefit of mobile payments, with a second NFC antenna reportedly being added to the top of the device. Most Android phones have their NFC antennas roughly halfway down the device. This generally works well enough, but it can lead to occasions where trying to tap your phone for a payment doesn’t work until you move it around. Anecdotally, it’s also a pain for using your phone as an NFC reader for in-person payments through apps like Square, as it’s a lottery trying to get the scan going unless you know exactly where the NFC antenna lines up. Samsung, with its Galaxy S26 series, is apparently looking to clear up NFC confusion by looking into Apple’s playbook. Samsung is adding a second NFC antenna to the Galaxy S26 series which is placed at the top of the device. This would be in addition to the existing antenna which, on the Galaxy S25 series, is found near the camera lenses. The report says: “Samsung Electronics’ next-generation smartphone, the Galaxy S26 series, scheduled for release in the first half of next year, will reportedly feature a design that adds Near Field Communication (NFC) recognition to the top of the device. While retaining the existing NFC coil next to the rear camera, a new NFC antenna will likely be added to the top of the device to improve user convenience.” Apple has implemented this in iPhones for some time, but most Android phones have not. Apparently, that may be due to patents, with Samsung taking “a considerable amount of time to technically circumvent them.”