CERT Polska has received a report about 2 vulnerabilities (CVE-2026-33384 and CVE-2026-33386) found in QuickCMS software.
Hosting provider pulled the plug after police traced 200 servers to the Netherlands
Cybersecurity researchers have discovered a malicious NuGet package that masquerades as a C# software development kit for Sicoob, one of Brazil's largest cooperative financial systems, to siphon...
Authorities dismantle Russian-aligned hosting firm, FBI warns of in-person data thefts, and TrapDoor steals credentials via software supply chain attack.
Threat actors are abusing ChatGPT's content-sharing feature to display fake OpenAI outage pages that direct users to download malware disguised as the ChatGPT desktop application. [...]
California Attorney General Rob Bonta filed a lawsuit against 23andMe, now Chrome Holding Co., over the company's failure to protect sensitive customer genetic and personal information. [...]
You and me go ChatGPhish-ing in the dark
Researchers say 'GREYVIBE' crew used AI tools throughout a campaign targeting Ukrainian military and government
Oracle security advisory (AV26-526)
Dear readers, Pope Leo XIV began the week with the release of his anticipated encyclical: “Magnifica Humanitas: On Safeguarding the Human Person in the Time of Artificial Intelligence.” This...
Each vulnerability was published with working proof-of-concept code to the Microsoft-owned code repository GitHub, making them immediately available to both attackers and security professionals.
Progressive Democrats taking hardline positions against AI are getting louder. Five influential progressives are shaping a confrontational Democratic message on AI, distinguishing themselves from...
Microsoft Edge security advisory (AV26-525)
A criminal hacking group is conducting phishing attacks, masquerading as an email company to steal user data and launch ransomware. The email company’s security team has mapped the hackers’...
National security is often framed in terms of military capabilities, technological competition, and geopolitical strategy. Yet recent global disruptions – from the COVID-19 pandemic to supply...
Cybersecurity maturity is improving across Europe’s critical infrastructure sectors, according to the latest NIS360 report from the European Union Agency for Cybersecurity (ENISA). The annual...
The EU hit out at Russia after a drone crashes into a Romanian apartment block, injuring two people. No deaths have been reported and the fire has been put out. Romania’s foreign ministry says it...
This month, a pair of viruses seized the headlines. First came a hantavirus outbreak aboard a cruise ship, which caused as many as 13 infections, three of which were fatal. Then an Ebola outbreak...
The loss of Space Force capabilities during Operation Epic Fury in Iran has highlighted the need for the service to invest in disaggregating its ground-based space operations centers and new...
A countdown began as a gaggle of defense officials, soldiers, drone makers, and reporters watched screens in a windowless operations center. Suddenly, a LUCAS drone appeared, moving at rocket...
Late last year, the Trump administration began an effort to recruit early-career software and data engineers after pushing almost 20,000 technology employees out of their government jobs under...
In this summer’s World Cup tournament, 48 teams will play 104 matches across 16 host cities over 39 days, with the United States hosting 78 games and Canada and Mexico 13 each. For millions of...
Telco giant says no sensitive data was taken, though names, addresses, phones, and emails are now out there
The People’s Republic of China is shaping global trade standards in data control and customs clearance. These standards give preference to Chinese platforms that provide Beijing with end-to-end...
Contents Introduction Key Targets Industries Affected Geographical focus Infection Chain Initial Findings Looking into the Decoy Document Technical Analysis Stage 1 – Initial Delivery Path A:...
New data from the Gambit Security Threat Intelligence detailed threat campaign linked to the pro-Iranian persona ‘Ababil of... The post Gambit links Iran-linked Black Shadow group to destructive...
New data from Darktrace identified that manufacturers are rapidly embedding AI into production scheduling, quality inspection, logistics optimization... The post Darktrace identifies rising cyber...
A new SANS Institute survey highlighted persistent resource gaps facing public sector cybersecurity programs, finding that only one... The post SANS finds funding gaps and staffing shortages are...
The North Korean state-sponsored threat actor known as Kimsuky (aka Velvet Chollima) has been attributed to a fresh set of cyber attacks targeting South Korean military and corporate entities...
Younger Americans have soured on the second Donald Trump presidency, but they are not protesting it. Despite an unpopular Iran war and an even more unpopular Trump administration, college campus...