Michele Spagnuolo allegedly placed multiple trades on the prediction marketplace, abusing internal access to Google’s nonpublic data on the most searched people in 2025. The post Google security...
In this newsletter, Thor breaks down why you should stop relying solely on CVSS and start using EPSS and GCVE to focus your patching efforts on the threats that actually matter.
Tanium security advisory (AV26-523)
Erlang security advisory (AV26-522)
An Android remote access trojan named BTMOB is offered to cybercriminals with a builder interface for generating malware payloads tailored to phishing lures. [...]
State of AI Usage Report 2026 (full report here) by LayerX Security reveals the extent of the enterprise AI visibility gap and why most organizations still don't understand where their AI exposure...
The US military has long known that cheap fixes could stop location data from exposing its troops. It adopted almost none—and now says adversaries are using the data to target soldiers during a war.
Microsoft Threat Intelligence tracks the operators behind the ransomware as Storm-2697, a financially motivated threat actor that manages the RaaS platform known as “The Gentlemen” while...
The FBI is warning of fake websites impersonating FIFA ahead of the 2026 World Cup, to steal personal and financial information, sell fake tickets and hospitality packages, and push other fraud...
Authentication Bypass vulnerability (CVE-2026-8990) has been found in Kidsview software.
Notepad++ security advisory (AV26-521)
Veeam security advisory (AV26-519)
Zimbra security advisory (AV26-520)
Travel and leisure giant was just one of many victims of the cybercrooks' crime spree this year
Drupal security advisory (AV26-518)
We recently observed a multi-stage macOS intrusion campaign conducted by the North Korean state-sponsored threat group Sapphire Sleet (also tracked as BlueNoroff/UNC1069).
Recently, somebody going by the name of Nightmare Eclipse has been having an online beef with Microsoft around security vulnerabilities they claim they had been trying to report. Their posts read...
Discussion of PQC relevant statistics that we see across our customers and other data sources.
Hackers are exploiting an authentication bypass vulnerability (CVE-2026-35616) in FortiClient Enterprise Management Server (EMS) to deliver an undocumented credential stealer called EKZ. [...]
A new campaign orchestrated by a previously undocumented threat actor has targeted cryptocurrency organizations with an aim to facilitate digital asset theft using recruitment-themed social...
Out-of-bounds Write vulnerability (CVE-2026-42250) has been found in bzip2 software.
Use of Weak Credentials vulnerability (CVE-2026-4377) has been found in DWR-X1820 router.
Tehran’s hackers have grown more organized, more coordinated and more willing to use artificial intelligence for influence operations in recent months — and they have demonstrated many of those...
Cisco’s evaluation of 15 leading AI models from OpenAI, Anthropic, Google, Amazon and xAI “found that single-turn attack success rate (ASR) is not a reliable proxy for what happens when an...
The newly-installed head of U.S. Cyber Command has commissioned a pair of studies, including one by a major outside research organization, to examine how the military’s digital warfare arm might...
The Trump administration is pursuing funding deals with a group of drone companies as part of its effort to increase domestic production and lower the costs of the increasingly vital weapons,...
The 2026 FIFA World Cup will be the largest sporting event ever staged. Across 39 days, 16 host cities in three nations will host 104 matches, an expanded 48-team tournament and an estimated...
Why are there more antennas on Svalbard than anywhere else on Earth? Svalbard of all places, where cats and childbirth are banned and there are more polar bears than people? This cluster of...
When Pope Leo XIV presented a 42,300-word open letter to the world’s 1.4 billion Catholics on Monday, calling for protections against the rise of artificial intelligence, he was joined by...
SpaceX and the Pentagon have been bickering about the price of using Starshield satellite service during the Iran war, according to a Reuters report published today. It appears that SpaceX asked...