HPE security advisory (AV26-500)

cPanel security advisory (AV26-499)

Microsoft Edge security advisory (AV26-497)

Ubiquiti security advisory (AV26-498)

New research from Check Point Software Technologies identified that cyberattacks targeting organizations across Germany, Austria and Switzerland surged... The post Germany becomes focal point of...

Cops seize First VPN and share intel on users, Reaper spoofs multiple brands to infect Macs, and two Microsoft Defender zero-days exploited in the wild.

Heap-based Buffer Overflow vulnerability (CVE-2026-8997) has been found in vifm software.

The U.S. Department of Justice (DoJ) on Thursday announced the arrest of a Canadian man in connection with allegedly operating a distributed denial-of-service (DDoS) botnet known as Kimwolf. In...

Crazy story: Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly...

Dear readers, The executive order on vetting powerful new AI models that was expected this week failed to materialize at the last minute. While the security community is waiting to see what the...

Russia’s March 2026 proposal to restrict foreign AI systems, including ChatGPT, Gemini and Claude, on the grounds of protecting “traditional Russian spiritual and moral values” has been largely...

For years now, Chinese state-aligned hackers have been spying on telecommunications companies in Central Asia and beyond, using a newly discovered Linux post-exploitation framework. The malware is...

Republicans struggled Thursday to find the votes to dismiss legislation that would compel President Donald Trump to withdraw from the war with Iran, delaying planned votes on the matter into June....

Financial crime investigators in the Netherlands (FIOD) arrested two men and seized 800 servers linked to a web hosting company that enabled cyberattacks, interference operations, and...

The Department of Transportation is considering whether workers always need to be in the loop for AI workflows, according to one of the agency’s top technology leaders. Having a human in the loop...

The Department of Defense does not primarily have a cyber recruiting problem — it has a cyber talent management problem. The military already possesses serious qualification frameworks,...

Waymo has now paused service in four cities because its robotaxis are struggling to deal with heavy rain and flooded roads, a problem that already prompted the company to issue a recall last week....

The United States and China are engaged in an enduring competition for leadership in space. China’s military-led space habitation and lunar ambitions have maintained a consistency of purpose with...

An attack on a nuclear power plant in the United Arab Emirates has raised fears about the scope of Iran’s retaliation to a potential U.S. resumption of strikes, with experts highlighting the...

Unit 42 details Screening Serpens' use of AppDomainManager hijacking and new RAT variants to target tech and defense sectors in recent campaigns. The post Tracking Iranian APT Screening Serpens’...

Customers' info potentially handed to anyone who could send an HTTP request

Several state technology officials on Thursday brought before a House Homeland Security subcommittee a request that Congress reauthorize funding for the expired State and Local Cybersecurity Grant...

Securing some of the open-source technology that serves as the backbone for all modern digital infrastructure is going to require some “hard decisions” amid a wave of malware attacks, the leader...

The CCB has published a detailed threat actor profile on DragonForce, a rapidly expanding Ransomware-as-a-Service (RaaS) operator that has compromised over 400 organisations worldwide including...

Eleventh-hour phone calls with industry leaders and former AI and crypto czar David Sacks helped persuade President Donald Trump not to sign a highly anticipated executive order on artificial...

CERT Polska has received a report about 3 vulnerabilities (from CVE-2026-25606 to CVE-2026-25608) found in STER software.

Iranian-aligned cyber actors are increasingly targeting weakly secured U.S. critical infrastructure systems, exploiting gaps in basic cyber hygiene... The post Weak authentication, exposed ICS...

Iranian state-sponsored cyber activity continues to rank among the most persistent threats facing U.S. networks and critical infrastructure,... The post Iranian state-sponsored hackers exploit...

Two former executives of a call-tracking and analytics company pleaded guilty to concealing a years-long tech support fraud scheme that victimized individuals worldwide. [...]

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Langflow and Trend Micro Apex One to its Known Exploited Vulnerabilities (KEV)...