As AI applications introduce a new class of infrastructure resources, visibility into what your IaC creates, where it runs, and whether it has drifted has never been more critical.
CERT Polska has received a report about 2 vulnerabilities (CVE-2026-40458, CVE-2026-40459) found in PAC4J software.
White House Office of Management and Budget (OMB) Director Russell Vought told senators at a Budget Committee hearing Thursday that the Department of Homeland Security (DHS) is “disintegrating”...
Florida legislators have sent the governor a bill to formalize state cybersecurity support for municipalities, and it is currently awaiting action following the close of the 2026 legislative...
Sweden’s announcement this week marks an important shift in how the country publicly frames the threat from Russia. Cyber intrusions against Swedish targets are not new, but for the first time,...
The exchange of bombs and missiles in the Middle East between Iran and its foes has been paused for more than a week now. Iran’s hackers, however, have remained active on the digital battlefield....
Ten years ago, the emerging conventional wisdom among many defense planners was that the United States Army would not serve a meaningful role in a potential conflict with China — that there would...
A post-midnight revolt in the House sank the White House's efforts to extend Section 702—a spy program the FBI has used to look into members of Congress, protesters, and political donors.
A company wakes up to a news story claiming it has suffered a major data breach. The details are specific, technical and convincing. But the breach didn’t happen. No systems were compromised. No...
Drupal security advisory (AV26-359)
Nginx UI security advisory (AV26-360)
HPE security advisory (AV26-361)
Microsoft Edge security advisory (AV26-362)
HashiCorp security advisory (AV26-363)
JetBrains security advisory (AV26-364)
Security researchers recently spent a month getting a first-hand look at the activity of cybercriminals targeting the trucking and logistics industry. The researchers, from cybersecurity firm...
A security researcher named Morpheuskafka has found that thousands of private files from the Tel Aviv-based gig-work website Fiverr were left open for anyone to view online. The leaked data...
This article is the result of a collaboration with Indian media outlet Newslaundry. You can find Newslaundry’s editorially independent coverage here. Indian companies have shipped more than 320...
On 13 April 2026, 21 countries joined forces in a coordinated action week that focused on enforcement and prevention measures against over 75,000 criminal users engaging in distributed...
The suspect accused of attempting to murder OpenAI CEO Sam Altman expressed interest in “Luigi’ing” technology leaders in an online chat late last year, referring to Luigi Mangione, the man...
Authorities take down W3LL phishing ring, AgingFly malware steals Ukrainian government data, and actors exploit Nginx flaw to hijack servers.
TBK DVRs targeted by Nexcorium: exploiting, persisting, brute-force attacks, and multi-architecture Mirai-style DDoS in a single campaign. From CVE-2024-3721 exploitation to CVE-2017-17215 reuse,...
Strategic debate in Washington often focuses on the possibility of a future kinetic war over Taiwan, yet Midshipman Second Class Alejandro D. Tilley argues in a paper at the U.S. Naval Institute...
The House unanimously passed a short-term extension of the nation’s spy powers early Friday morning after GOP rebels dramatically rejected a late-night, last-minute deal to extend the measure for...
The U.S. Secret Service is moving to embrace kinetic mitigation technologies to counter the threats posed by unmanned aerial systems — or drones — ahead of multiple upcoming large-scale events,...
The National Institute of Standards and Technology (NIST) has announced changes to the way it handles cybersecurity vulnerabilities and exposures (CVEs) listed in its National Vulnerability...
America and China are racing for technological supremacy, and the margin is razor thin. Today, tech supremacy is increasingly synonymous with artificial intelligence (AI) leadership. And China has...
A Chinese ship has tested a new device capable of slicing through submarine data cables thousands of meters beneath the ocean surface. That demonstration may exacerbate security concerns over a...
Server-Side Request Forgery (SSRF) vulnerability (CVE-2026-5131) has been found in GREENmod software.
An international law enforcement operation has taken down 53 domains and arrested four people in connection with commercial distributed denial-of-service (DDoS) operations that were used by more...