Red Hat security advisory (AV26-636)
Move beyond chasing vulnerabilities to a unified hybrid risk strategy. The Sensor Workload Scanner is now GA and extends our risk prioritization engine to on-premise environments to identify the...
On April 17, two radiological incidents unfolded within hours of each other at opposite ends of the European continent. At the Medyka border crossing in southeastern Poland, border guard officers...
Japanese telecommunications operator KDDI Corporation disclosed a data breach where threat actors gained access to one of its email systems used by five other internet service providers (ISPs) in...
Federal and state agricultural officials have confirmed that the number of New World screwworm cases in the United States has reached 26, as Texas authorities issue a wave of emergency quarantine...
Carmaker points finger at an 'unknown' flaw as customer fallout continues
The North American bulk power system (BPS) continued to perform reliably in 2025 even as the grid experienced increasing operational complexity. NERC’s 2026 State of Reliability (SOR) finds both...
A new agentic-AI tool will continuously scan intelligence feeds and operational networks to provide U.S. military commanders with targeting options “within seconds,” the Pentagon announced...
Key Takeaways This case was first reported to customers in a threat brief released in July 2025 and in a public flash alert in August 2025 in partnership with Swisscom B2B CSIRT, which observed...
The U.S. government Friday lifted its block on Anthropic’s powerful Claude Mythos 5 AI model, allowing the company to release it to more than 100 U.S. institutions, including major companies and...
A public proof-of-concept is now out for CVE-2026-55200, a critical flaw in libssh2 that lets a malicious or compromised SSH server trigger memory corruption on a connecting client, with possible...
CERT Polska has received a report about 2 vulnerabilities (CVE-2026-41991 and CVE-2026-41992) found in gzip software.
Cybersecurity researchers have uncovered two hijacked npm packages and a cluster of Go packages that are designed to deploy a Python-based information stealer on compromised Windows, Linux, and...
Aligning Modern CNAPP Telemetry with realistic risk assessments to drive agency efficiency through cross-team collaboration
We’ve taken one small step towards robot police officers: a drone capable of disarming a suspect: In a June 22 video posted on the Sacramento County Sheriff’s Office’s Instagram page, an officer...
Kaspersky researchers analyze incidents related to The Gentlemen RaaS group, disclose their tools and TTPs, and find a new ransomware variant.
Europe’s pro-competition proposals could see Google Search and Android systems opened up. The company claims there are serious privacy flaws.
Part 2: How the Red Agent bypassed backend resolvers to expose an entire airline booking database in fifteen minutes
Your inbox is an identity system all of its own: whoever owns it may own a lot more
Pro-Iran hackers who took credit for a nationwide Friday outage of a platform delivering emergency alerts in major U.S. cities said today that they hacked the National Weather Service website....
In June 2026, the food distribution company Sysco was targeted by a ShinyHunters "pay or leak" extortion campaign. Data was subsequently published containing 2.7M unique email addresses belonging...
Pro-Iran hackers who have claimed attacks on multiple Western websites throughout the U.S.-Israel conflict with the Islamic Republic said they were behind the outage of an incident response...
The Security Service of Ukraine (SSU) said it, together with the U.S. Federal Bureau of Investigation (FBI), uncovered a long-running campaign orchestrated by Russian intelligence services to...
OpenAI on Friday released three versions of GPT-5.6, called Sol, Terra, and Luna, as a limited preview to a small number of companies as part of an ongoing engagement with the U.S. government....
Plus: Former national security advisor John Bolton pleads guilty in classified-materials case, Microsoft helps take down major infostealer infrastructure, and more.
Time to start praying to the goddess of wisdom and war
Google Chrome security advisory (AV26-634)
The FBI and CISA have updated their March warning about Russian intelligence phishing Signal accounts, and the operators have added a step: they now coax targets into handing over their Signal...
Personal cell phones on protective missions, no threat detection on government-issued devices among the litany of sins
A newly discovered cyber attack campaign has been observed delivering a previously undocumented malware family called SharkLoader that acts as a loader for deploying Cobalt Strike Beacon on...