You and me go ChatGPhish-ing in the dark
Researchers say 'GREYVIBE' crew used AI tools throughout a campaign targeting Ukrainian military and government
Oracle security advisory (AV26-526)
Dear readers, Pope Leo XIV began the week with the release of his anticipated encyclical: “Magnifica Humanitas: On Safeguarding the Human Person in the Time of Artificial Intelligence.” This...
Each vulnerability was published with working proof-of-concept code to the Microsoft-owned code repository GitHub, making them immediately available to both attackers and security professionals.
Progressive Democrats taking hardline positions against AI are getting louder. Five influential progressives are shaping a confrontational Democratic message on AI, distinguishing themselves from...
Microsoft Edge security advisory (AV26-525)
A criminal hacking group is conducting phishing attacks, masquerading as an email company to steal user data and launch ransomware. The email company’s security team has mapped the hackers’...
National security is often framed in terms of military capabilities, technological competition, and geopolitical strategy. Yet recent global disruptions – from the COVID-19 pandemic to supply...
Cybersecurity maturity is improving across Europe’s critical infrastructure sectors, according to the latest NIS360 report from the European Union Agency for Cybersecurity (ENISA). The annual...
The EU hit out at Russia after a drone crashes into a Romanian apartment block, injuring two people. No deaths have been reported and the fire has been put out. Romania’s foreign ministry says it...
This month, a pair of viruses seized the headlines. First came a hantavirus outbreak aboard a cruise ship, which caused as many as 13 infections, three of which were fatal. Then an Ebola outbreak...
The loss of Space Force capabilities during Operation Epic Fury in Iran has highlighted the need for the service to invest in disaggregating its ground-based space operations centers and new...
A countdown began as a gaggle of defense officials, soldiers, drone makers, and reporters watched screens in a windowless operations center. Suddenly, a LUCAS drone appeared, moving at rocket...
Late last year, the Trump administration began an effort to recruit early-career software and data engineers after pushing almost 20,000 technology employees out of their government jobs under...
In this summer’s World Cup tournament, 48 teams will play 104 matches across 16 host cities over 39 days, with the United States hosting 78 games and Canada and Mexico 13 each. For millions of...
Telco giant says no sensitive data was taken, though names, addresses, phones, and emails are now out there
The People’s Republic of China is shaping global trade standards in data control and customs clearance. These standards give preference to Chinese platforms that provide Beijing with end-to-end...
Contents Introduction Key Targets Industries Affected Geographical focus Infection Chain Initial Findings Looking into the Decoy Document Technical Analysis Stage 1 – Initial Delivery Path A:...
New data from the Gambit Security Threat Intelligence detailed threat campaign linked to the pro-Iranian persona ‘Ababil of... The post Gambit links Iran-linked Black Shadow group to destructive...
New data from Darktrace identified that manufacturers are rapidly embedding AI into production scheduling, quality inspection, logistics optimization... The post Darktrace identifies rising cyber...
A new SANS Institute survey highlighted persistent resource gaps facing public sector cybersecurity programs, finding that only one... The post SANS finds funding gaps and staffing shortages are...
The North Korean state-sponsored threat actor known as Kimsuky (aka Velvet Chollima) has been attributed to a fresh set of cyber attacks targeting South Korean military and corporate entities...
Younger Americans have soured on the second Donald Trump presidency, but they are not protesting it. Despite an unpopular Iran war and an even more unpopular Trump administration, college campus...
DDoS attacks are increasingly being sold like subscription services, complete with pricing tiers, support, and reseller programs. Flare explores how the DDoS-as-a-Service market has evolved from...
Dutch authorities have taken offline a massive botnet of 17 million devices and seized more than 200 servers at a local provider that supported the operation. [...]
Google says the Chrome Device Bound Session Credentials (DBSC) security feature is now generally available and is rolling out to all users to prevent account takeovers. [...]
MedusaLocker3/FarAttack Ransomware (.farattack, .itlock*, .busavelock*) Support - posted in Ransomware Help & Tech Support: The MedusaLocker gang now uses MedusaLocker3 (FarAttack) which is an...
In this roundup, Tony looks at attacks against Polish water treatment facilities, how AI-directed attacks failed in Mexico, and what Google believes is the first AI-generated zero-day exploit
A North Carolina man was sentenced to more than 10 years in prison for selling the personal information of over 7 million elderly Americans to Jamaican scammers. [...]