Latest Analysis
Cybersecurity intelligence, threat analysis, and national security reporting.
Hackers Actively Exploit SolarWinds Serv-U Flaw to Crash Servers
SolarWinds has issued an emergency hotfix to address a critical flaw in its Serv-U file transfer product, which hackers are actively exploiting to crash servers with specially crafted POST requests. A denial-of-service vulnerability, tracked as CVE-2026-28318, can be triggered without authentication, posing a significant threat to users.
Malware Worms Infect npm Ecosystem in Dual Supply Chain Attacks
Meet IronWorm, a sneaky Rust-based malware that's infecting the npm ecosystem by scraping sensitive secrets from developers' machines and spreading through poisoned packages. This stealthy threat hides behind an eBPF kernel rootkit and communicates with its operators over Tor.
Chinese APT Exploits New Malware to Prolong Network Access
A Chinese-linked espionage group, tracked as UNC5221 or VerdantBamboo, exploited new malware to secretly maintain access to US networks for over 18 months, evading detection by blending in with legitimate traffic. The attackers used a sophisticated backdoor called Brickstorm to prolong their stay undetected.
Cisco SD-WAN Zero-Day Under Active Attack
Cisco SD-WAN is under siege from a zero-day vulnerability that's being actively exploited - and there's no patch in sight, leaving sys admins scrambling to protect their networks.
US Crackdown Targets Dark Web Drug Trafficker with 26-Year Sentence
In a major victory for justice, Darren Hughes, a 39-year-old dark web drug trafficker, has been sentenced to over 26 years in federal prison for peddling poison to unsuspecting victims. This harsh sentence sends a strong message to those who think they can hide behind the anonymity of the dark web.
ESET Exposes Android Spyware Asin Targeting Arabic Users
Malicious apps masquerading as legitimate tools have been targeting Arabic-speaking Android users, packing stealthy spyware capabilities that allow them to siphon off sensitive information. These fake apps, part of a spyware cluster called Asin, are being spread through fraudulent websites and social accounts.
DentaQuest Breach Exposes 2.6M Accounts
A massive data breach at dental benefits provider DentaQuest has exposed a staggering 2.6 million accounts, after hackers stole over 234 GB of sensitive information and released it following failed negotiations with the company.
AI Agents Expose Security Risks in 93% of Organizations
Most organizations are unwittingly rolling out AI agents with access to sensitive tasks, leaving them vulnerable to security breaches. In fact, only 32% of teams feel very confident they could recover from exposed admin credentials, highlighting a disturbing gap in control and preparedness.
US Gas Station Tank Gauge Systems Vulnerable to Ongoing Attacks
US gas stations are under cyberattack, with hackers exploiting vulnerable tank gauge systems to gain control and wreak havoc. A joint advisory from top US agencies is urging critical infrastructure organizations to secure their internet-exposed systems ASAP.
Verizon DBIR Exposes Growing Browser-Based Threats
Employees are unwittingly putting sensitive data at risk by using AI tools like ChatGPT and Gemini on corporate devices, with 67% accessing these services with personal accounts and 45% using them regularly. This Shadow AI phenomenon is rapidly escalating, with a fourfold year-over-year increase in insider risk.
Putin Allies Float Nuclear War Scenario Amid US Crisis Wishcasting
As smoke from Ukrainian drone attacks filled the air, Putin's allies gathered at the St. Petersburg International Economic Forum to discuss a chilling scenario: nuclear war. The meeting, attended by Russian oligarchs, far-right European groups, and even some US officials, couldn't have come at a more ominous time.
Congress Rebuffs Effort to Limit JAGs in Civilian Roles
In a surprising move, the House Armed Services Committee voted 31-26 against an amendment that would have restricted Judge Advocates to only military duties, allowing them to continue serving in crucial civilian roles. This decision means that these specialized resources can keep tackling a broader range of challenges, beyond just military operations.
Britain's Defence Acquisition System Exposes Chronic Flaws
Britain's defence acquisition system is marred by chronic flaws, as seen in the Royal Air Force's Wedgetail aircraft purchase, which was scaled down but still left the country with costly commitments. The buyer's remorse is palpable with lingering obligations and fresh vulnerabilities.
Blue Origin Explosion Exposes Fragility of US Military Launch Plans
The recent Blue Origin rocket explosion is a stark reminder of the fragility of US military launch plans, with just two companies, SpaceX and United Launch Alliance, certified to handle nearly 100 critical National Security Space missions over the next five years. This narrow margin raises serious concerns about the resilience of our space launch infrastructure.
Researchers Prototype Self-Contained AI Worm
Imagine a computer worm that's not just a malicious piece of code, but a self-contained AI entity that can spread and operate on its own - researchers have just prototyped one, and it's as fascinating as it is unsettling. This AI-powered worm is equipped with its own Large Language Model (LLM), making it a reality that's eerily close to sci-fi concepts.
China-Linked OP-512 Targets IIS Servers with Custom Web Shells
Meet OP-512, a China-linked threat cluster with a taste for espionage, recently caught targeting IIS servers with custom web shells in a stealthy bid for sensitive intel. This sneaky operation aligns with China's intelligence priorities, putting certain sectors and geographies firmly in its crosshairs.
US House Passes Ukraine Aid Bill with Fresh Russia Sanctions
In a powerful show of bipartisan support, the US House of Representatives has passed the Ukraine Support Act, delivering a strong message that it stands with the Ukrainian people and will hold Russia accountable for its actions. The landmark bill, which passed with a 226-195 vote, provides $8 billion in military financing to Ukraine and introduces fresh sanctions against Russia.
Congress Probes Navy's Trump Class Battleship Plan Over Nuclear Shipbuilding Concerns
The House Armed Services Committee is pushing for answers on the Navy's ambitious plan to build 15 new nuclear-powered battleships, known as the Trump Class, at a hefty $17 billion each, and wants assurance that the massive project won't derail existing shipbuilding programs. Members are demanding a formal risk assessment to prove the Navy can handle the enormous undertaking without compromising its nuclear shipbuilding capacity.
World Food Programme Breach Exposes 600k Gazan Family Records
A devastating data breach at the World Food Programme has left 600,000 vulnerable Gazan families exposed, with their personal records compromised - but thankfully, aid recipients have been assured that their support will continue uninterrupted.
SOCs Struggle to Unlock AI Value Amid Fragmented Architecture
Despite aggressive AI adoption, with surging growth in tools like large language models and AI co-pilots, a mere 10% of Security Operations Centers (SOCs) report that AI has delivered excellent value to their operations. Most SOCs are left wondering if their AI investments are truly paying off.
Lloyds Banking Group Unveils Hands-On Approach to Securing Agentic AI
Lloyds Banking Group is taking a proactive approach to securing agentic AI, recognizing that understanding AI itself is crucial to embedding security into its adoption. The bank has made security a top priority, framing it as a deliberate technical strategy that spans the entire AI lifecycle.
OWASP Unveils Framework to Gauge Agentic AI Security Maturity
As organizations rapidly deploy AI agents, governance often lags behind - but a new framework from OWASP aims to change that. The Enterprise Adoption Maturity Model provides a practical roadmap for gauging and improving agentic AI security maturity.
UK Council Exposes Hundreds of Disabled Residents in Email Blunder
A simple email mistake by the City of York Council had serious consequences, exposing the identities of hundreds of disabled residents who hold Blue Badges. The blunder occurred when a BCC function failed, revealing the list of recipients in a message intended to be private.
Hackers Exploit Everest Forms Pro Flaw to Compromise WordPress Sites
A critical vulnerability in Everest Forms Pro, affecting over 4,000 active WordPress installations, has been exploited by hackers to gain remote code execution, allowing them to take control of sites without authorization. A patch has been released, but sites remain at risk if not updated to version 1.9.13 or later.