Makers of Chrome, Edge, Firefox back bot-fraud defense called Private Access Control Tokens
Unit 42 research details how attackers could exploit global name uniqueness in bucket hijacking to redirect cloud data streams across major CSPs. The post The Global Namespace Risk: Universal...
As yet another extortion crew Icarus exploits Salesforce-linked integrations
Cybersecurity researchers have disclosed details of four vulnerabilities in Dify, an open-source agentic workflow platform with more than 146,000 GitHub stars, that could allow attackers to...
A heap over-read in the Squid web proxy can leak another user's cleartext HTTP request, including any credentials or session tokens it carries, to anyone already allowed to send traffic through...
Cybersecurity researchers have disclosed details of a new campaign that delivers CastleStealer by means of a previously unreported malware loader dubbed OXLOADER. According to Elastic Security...
Google has set September 30, 2026, as the day it begins enforcing Android developer verification in the first four countries, and the major device-maker app stores are in from the start. On that...
Nodejs security advisory (AV26-624)
Microsoft Edge security advisory (AV26-622)
JetBrains security advisory (AV26-623)
Earlier this month, I spoke at the Gartner Security & Risk Management Summit about a blind spot most security programs are still not accounting for - how attackers are circumventing AI security...
Amid concerns about AI models’ cybersecurity capabilities, OpenAI revealed an improved version of GPT-5.5-Cyber and its “Patch the Plant” initiative to fix open source software bugs.
It’s Monday again. This week’s threat list looks painfully familiar: abused integrations, fake tools, poisoned websites, ransomware crews trying to shut down security tools, and mobile malware...
London Hydro says names, addresses, account details may have been exposed, but much about the intrusion is unknown
The joint warning from Five Eyes countries mirrors what many cybersecurity and AI experts have been saying for the past year. The post Intel agencies: Frontier AI models will reshape cybersecurity...
From detection to protection, defense strategy starts at the endpoint
The fiscal 2026 defense policy bill contained some significant reforms to defense acquisition processes — congressional leaders said the legislation would deliver “the most significant acquisition...
Severe weather event alert platform buzzed devices across the country with the word 'misanthropy'
For decades, Cuba’s proximity to the United States has made the island strategically valuable for foreign intelligence collection. Recent warnings from senior U.S. officials about expanding...
Canada's spy service got a judge's permission to reach into infected servers, home routers, and IoT gear sitting on Canadian soil and neutralize two foreign-run botnets. The Federal Court released...
Red Hat security advisory (AV26-621)
INTERPOL’s 2025/2026 Asia and South Pacific Cyberthreat Assessment Report has revealed a dramatic increase in cybercrime across the region driven by rapid digitalization, new technologies and...
[Control systems] CISA ICS security advisories (AV26–620)
More than three-quarters of utilities organizations were hit by cyber attacks involving outdated software or unavailable patches on legacy equipment over the last year. At 77%, it was the most...
Attackers can now manipulate AI ‘deep-research‘ agents by discreetly editing Reddit threads and Wikipedia pages. They can insert as little as a 13-word snippet, which these agents may later...
Dell security advisory (AV26-619)
When Ukrainian emergency workers clambered onto a damaged structure above Reactor No. 4 at the Chornobyl Nuclear Power Plant, there were eerie echoes of 1986. Back then, when Ukraine was part of...
Ubuntu security advisory (AV26-618)
The Gulf of Aden and other waters around the Horn of Africa are seeing an increase in maritime attacks. Since late April, Somali pirates have been attacking and seizing vessels at a rate not seen...
IBM security advisory (AV26-617)