The joint warning describes a major tactical shift by Chinese-linked hackers and lays out what organizations should do about it. The post A dozen allied agencies say China is building covert...

GitHub security advisory (AV26-383)

The Edmonton Police Service is trialing new bodycam facial recognition technology to identify what they have deemed “high-risk offenders.” Speaking to the CBC, senior research associate Kate...

The Bitwarden CLI was briefly compromised after attackers uploaded a malicious @bitwarden/cli package to npm containing a credential-stealing payload capable of spreading to other projects. [...]

Cisco Talos is aware of UAT-4356's continued active targeting of Cisco Firepower devices’ Firepower eXtensible Operating System (FXOS). UAT-4356 exploited n-day vulnerabilities (CVE-2025-20333 and...

Google Chrome security advisory (AV26-382)

Recently observed Trigona ransomware attacks are using a custom, command-line tool to steal data from compromised environments faster and more efficiently. [...]

Mongolian governmental institutions have emerged as the target of a previously undocumented China-aligned advanced persistent threat (APT) group tracked as GopherWhisper. "The group wields a wide...

Vercel on Wednesday revealed that it has identified an additional set of customer accounts that were compromised as part of a security incident that enabled unauthorized access to its internal...

LevelBlue SpiderLabs’ Cyber Threat Intelligence Team continues to observe a progressive convergence between traditional cybercrime activity and attacks targeting cryptocurrency users.

Written by: JP Glab, Tufail Ahmed, Josh Kelley, Muhammad Umair Introduction Google Threat Intelligence Group (GTIG) identified a multistage intrusion campaign by a newly tracked threat group,...

Crypto scammers are targeting the thousands of ships stranded near the Strait of Hormuz—and at least one ship that faced Iranian gunfire may have been tricked into believing it had paid Iran for...

Apple has rolled out a software fix for iOS and iPadOS to address a Notification Services flaw that stored notifications marked for deletion on the device. The vulnerability, tracked as...

It could take six months to fully clear the Strait of Hormuz of mines deployed by the Iranian military, and any such operation is unlikely to be carried out until the U.S. war with Iran ends, the...

The bill, known as the SECURE Data Act, is backed by top Republicans on the House Energy and Commerce and Financial Services committees.

Wins $300M deal over Salesforce, IBM because of 'integration with existing USDA systems,' among other things Palantir has won a $300 million contract from the US Department of Agriculture (USDA)...

China’s growing role in Latin America is framed as more than routine geopolitical competition, instead resembling a form of “unrestricted warfare” that uses economic, technological, legal, and...

The Senate took the first steps in a new effort to reopen the Department of Homeland Security early Thursday, voting to adopt a budget plan that would fund ICE and Border Patrol over Democratic...

Cyber attacks on education institutions rose 63% globally over the past year, according to Quorum Cyber, which recorded 425 incidents across 67 countries in the latest 12-month period. The figures...

World's largest biomedical dataset lifted and shifted on Chinese mega marketplace Breaking Details of volunteers of UK-based Biobank, which describes itself as the custodian of the world's most...

Americans lost nearly $21 billion to cybercrime in 2025, a new record for cyber-enabled economic losses. Private sector losses to malicious cyber activity regularly exceed $200 billion in a given...

Britain’s cybersecurity chief warned Tuesday that the country is handling four nationally significant cyber incidents every week, with the majority now traced back to hostile foreign governments...

Early into his tenure leading U.S. Southern Command, Marine Corps Gen. Francis Donovan is ramping up drone and AI-enabled operations to disrupt maritime drug trafficking and dismantle networks of...

AI is uncovering vulnerabilities at a scale that will overwhelm legacy defenses. Here is how to build a security organization that is Mythos ready.Key takeawaysWhile frontier AI models like Claude...

Windows Admin Center flaws mean on-prem can attack cloud, and vice-versa Black Hat Asia Israeli researchers found a series of flaws in Microsoft's Windows Admin Center (WAC) and suggest this shows...

Department of Homeland Security researchers showed lawmakers just how easy it is for bad actors to weaponize artificial intelligence models to build a bomb, plan a terror attack or launch a...

Hackers have compromised Docker images, VSCode and Open VSX extensions for the Checkmarx KICS analysis tool to harvest sensitive data from developer environments. [...]

President Donald Trump’s pick to lead the government’s civilian cyber defense agency is withdrawing from consideration after his candidacy languished in the Senate. Sean Plankey informed Homeland...

Ukrainian authorities have dismantled a so-called “bot farm” that police say was supplying thousands of fake social media accounts to Russian intelligence services for use in disinformation...

The nonprofit Sandy Hook Promise sought to turn a tragedy into a force for good. Using tips to its “Say Something Anonymous Reporting System,” the group formed by parents of children who died in...