Latest Analysis
Cybersecurity intelligence, threat analysis, and national security reporting.
Anubis Ransomware Targets Adriatic Port, Exposes Maritime Security Gaps
A ransomware attack by the Anubis group on the Adriatic Port Authority exposed significant gaps in maritime security, putting sensitive employee records and critical infrastructure at risk. The breach, which occurred on December 11, 2025, resulted in the loss of around 2% of the authority's data, with some information making its way to the dark web.
US Datacenter Law Set to Lapse, Leaving Security Gaps Unaddressed
As the Federal Data Center Enhancement Act of 2023 lapses on September 30, 2026, a crucial safeguard for secure and reliable access to federal information systems will vanish, leaving gaping security holes unaddressed. Without an extension or replacement, federal data centers may operate with little oversight, putting sensitive information at risk.
Malicious Code Infiltrates WordPress Plugins, Creates Rogue Admin Accounts
Over 1.2 million WordPress sites are at risk after attackers infiltrated a trusted vendor's network, injecting malicious code into popular plugins like OptinMonster, TrustPulse, and PushEngage. This sneaky hack creates rogue admin accounts, putting sites at risk of takeover - all without ordinary visitors even noticing.
Council of Europe Probes ShinyHunters Data Breach Claims
The Council of Europe is actively investigating claims by the ShinyHunters extortion group that sensitive internal documents were stolen, and is working to assess the situation. The organization, which represents 46 European member states, has confirmed the probe but declined to provide further comment at this stage.
Microsoft 365 Copilot Flaw Exposes Sensitive Data to One-Click Attack
A single click on a seemingly trustworthy Microsoft link could have put sensitive information like emails, calendar details, and files at risk of being exposed to attackers, thanks to a flaw in Microsoft 365 Copilot Enterprise Search. This vulnerability, known as SearchLeak, highlights the importance of staying vigilant even with trusted sources.
Microsoft's Certificate Lapse Disrupts Connectivity Tests for Microsoft 365
A critical lapse in Microsoft's SSL certificate caused widespread disruption, leaving IT professionals scrambling with untrusted-connection warnings when testing Microsoft 365 connectivity via connectivity.office.com. The certificate expired on June 14 and took 35 hours to address, impacting routine diagnostics and network checks.
Novo Nordisk Data Breach Exposes Clinical Trial Information
A recent data breach at Novo Nordisk exposed sensitive clinical trial information, including pseudonymized patient records and healthcare provider contact details, highlighting the importance of robust data security measures. The breach serves as a cautionary tale, reminding us that even seemingly anonymized data can be vulnerable to cyber threats.
FBI Warns of Courier-Based Crypto Scams
Don't fall victim to crypto scams: scammers are now using couriers to collect cash from unsuspecting victims at their homes or in public, often using passwords or specific dollar bill serial numbers to authenticate the pickup. This low-tech twist on investment scams adds a frighteningly personal touch.
Google Patches Actively Exploited Chrome Zero-Day Flaw
Google just issued an emergency patch for a major Chrome vulnerability, CVE-2026-11645, that's already being exploited by hackers - and it's urging users to update their browsers ASAP to stay safe. This latest fix is part of a massive update that tackles 74 Chrome vulnerabilities, including a high-severity zero-day flaw.
Maine Data Breach Portal Disabled After Hoax Reports Flood System
The Maine Attorney General's office has temporarily disabled its data breach portal due to an influx of false reports, which were later confirmed to be hoaxes submitted by an unknown entity. The office is now reviewing its internal procedures to prevent similar abuse in the future.
Chinese hackers breach medical research servers with custom malware
Malicious hackers linked to China breached a North American medical research institution, hiding undetected for over a year and gaining access to sensitive research areas. The attackers used custom malware, known as Infinitered, with broad capabilities to siphon off valuable intel from September 2023 to November 2025.
CISOs Tackle AI-Driven Code Sprawl
The line, "I spent the weekend burning through Claude tokens," set the tone for a discussion on the risks and opportunities of AI-driven code sprawl, a pressing concern for CISOs. How can security leaders maintain control when AI puts code-writing capabilities in every employee's hands?
Arch Linux Cracks Down on Malicious Commits in User Repository
Malicious hackers have launched a massive assault on the Arch User Repository, compromising over 1,500 user-submitted packages and forcing the Arch Linux team to temporarily halt new account signups to contain the damage. The attack has been mitigated, but not before highlighting the vulnerability of community-run package repositories.
Chinese Spies Exploit Medical, Military Networks for Over a Year
Google's Threat Intelligence Group uncovered a sneaky espionage campaign by Chinese spies that infiltrated medical and military networks in North America for over a year, making off with a treasure trove of sensitive data. The group, tracked as UNC6508, targeted top medical providers, academic centers, and military organizations, leaving no stone unturned in their quest for classified information.
Microsoft 365 Copilot Exploited in 1-Click Data Theft Attack
A critical vulnerability in Microsoft 365 Copilot Enterprise, known as SearchLeak, could be exploited with just one click to steal sensitive data from mailboxes, OneDrive, and SharePoint. Fortunately, Microsoft has patched the flaw, CVE-2026-42824, and no user action is required to stay safe.
ShinyHunters Breach Exposes 137,000 Infinite Campus Staff Accounts
A massive data breach at Infinite Campus has exposed the sensitive information of 137,000 staff members, including names, email addresses, phone numbers, and physical addresses, after the ShinyHunters extortion group hacked into the company's Salesforce instance. The stolen data has been published online, putting staff at risk of identity theft and phishing scams.
Weak Onboarding Passwords Expose Corporate Systems to Unnecessary Risk
Poorly handled onboarding passwords can put entire corporate systems at risk, exposing sensitive data to potential breaches - and it's a problem that's easier to prevent than you think. Temporary passwords sent via email or SMS can be intercepted, forwarded, or compromised, creating an open invitation for attackers.
WordPress Plugins Compromised to Deploy Hidden Backdoors
Over 1.2 million WordPress sites are potentially at risk after a security breach compromised three popular plugins, allowing hackers to secretly install backdoors and gain admin access. The sneaky attack injects malicious code that only kicks in when a logged-in administrator visits the site, putting unsuspecting site owners in the dark.
Chrome Extensions Exploit User Data for Adware, Fake Traffic
Beware of Chrome extensions that seem too good to be true: 152 fake live wallpaper and new-tab add-ons have been downloaded around 105,000 times and are secretly spreading adware and fake traffic. These malicious extensions, masquerading as popular themes, have been hiding in plain sight on the Chrome Web Store.
Section 702 Surveillance Program Set to Lapse Amid Congressional Standoff
A critical surveillance program that helps the US gather foreign intelligence is on the verge of lapsing for the first time in its history, sparking a heated debate among lawmakers, tech companies, and civil liberties groups. This development puts at stake the country's ability to collect vital information from abroad.
US Orders Anthropic to Disable Top AI Models Over Export Controls
The US government has ordered AI firm Anthropic to disable access to its top models, Fable 5 and Mythos 5, for foreign nationals, citing export-control measures. This move has prompted Anthropic to temporarily restrict access to these models for all customers while it works to comply.
US, Iran Near Deal to Remove Nuclear Materials
Iranian Foreign Minister Seyed Abbas Araghchi says a deal with the US to remove nuclear materials is nearing finalization, urging caution and patience as negotiators put the finishing touches on the agreement. The US and Iran are on the cusp of a major breakthrough, with details to be revealed in the coming days.
China Decommissions Aging Submarines Amid Regional Naval Shifts
A glimpse into a decommissioned Type 035G Ming-class submarine reveals a surprisingly domestic touch - an oversized round chopping block and stainless-steel steamer pots - giving the vessel a distinctly Chinese kitchen feel. This unique detail highlights the blend of Soviet naval lineage and Chinese character in these aging submarines.
US AI Export Curbs Expose Vulnerability for Allied Nations
The US Commerce Department's recent order to restrict access to Anthropic's AI models, Fable 5 and Mythos 5, from foreign nationals has sparked concern, highlighting the vulnerability of allied nations and raising questions about the feasibility of such nationality-based controls. This move has led Anthropic to suspend access to the models globally, citing the impracticality of enforcing a citizenship test.