Latest Analysis
Cybersecurity intelligence, threat analysis, and national security reporting.
Europol Operation Disrupts StealC and Amadey Infostealers
In a major win for cybersecurity, a coordinated international effort has dismantled the operations of two notorious malware families, StealC and Amadey, freezing a whopping €41m in crypto assets of criminal origin. This significant disruption was made possible through the collaboration of Europol, Germany's Federal Criminal Police Office, J-CAT, and Eurojust.
Researchers Expose AI Browser Vulnerability to Credential Theft
Imagine a simple game trick that could convince AI-powered browsers to hand over your login credentials - a vulnerability researchers have now exposed, leaving users at risk. By creating a malicious web page that changes an AI agent's sense of reality, hackers can bypass safety guardrails and gain access to sensitive information.
Microsoft-Led Operation Disrupts Amadey, StealC Malware Networks
In a major win for cybersecurity, a Microsoft-led operation has successfully disrupted the networks behind Amadey and StealC malware, significantly increasing friction for cybercriminals and making it harder for attacks to succeed. This collaborative effort between law enforcement and private sector partners marks a crucial step forward in the fight against cybercrime.
CISA Warns of Actively Exploited Ubiquiti Flaws
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning that hackers are actively exploiting security flaws in Ubiquiti UniFi OS devices, posing a significant threat to system security. Federal agencies have just three days to apply crucial updates or recommended fixes to avoid potential breaches.
Cordyceps Flaws Compromise 300+ GitHub Repositories
A newly discovered flaw, dubbed Cordyceps, has left over 300 GitHub repositories vulnerable to exploitation by unauthenticated users, allowing for code execution, credential theft, and supply-chain compromise. This critical weakness can be easily exploited, putting countless open-source projects at risk.
North Korea-linked Backdoor Exploits AI Triage Tools
When building AI triage tools, it's crucial to treat sample contents as potentially hostile input, not instructions, to prevent malicious manipulation. Experts warn that failing to do so can allow attackers to sneak hostile content into your model.
Social Engineering Attacks Target Service Desks
Service desks have become a prime target for cyber attackers, who often find it easier to manipulate staff into divulging sensitive information than to crack the technology itself. In a string of recent incidents, hackers have successfully impersonated employees to gain access to internal systems, as seen in the 2025 UK attacks on major retailers like Marks & Spencer, Co-op, and Harrods.
AI-Powered Adversaries Compress Cyberattack Timeline
In early 2026, the emergence of advanced agentic AI models marked a chilling new era in cyber threats, enabling attackers to compress the time between discovery and weaponization to mere minutes. This means that the window for detecting and responding to breaches may soon be shorter than the time it takes to finish a cup of coffee.
London Police Deploy Live Facial Recognition in West End
Get ready for a safer West End: by the end of the year, London's Metropolitan Police Service will be deploying live facial recognition cameras to help keep you protected. This game-changing tech will be used to identify individuals on the watchlist, building on a successful six-month pilot in Croydon.
MuddyWater Exploits Ransomware Disguise for Cyber Espionage
The line between ransomware attacks and nation-state espionage is rapidly blurring, as cyber groups like MuddyWater now disguise their operations as financially motivated ransomware attacks to further their strategic objectives. MuddyWater, linked to Iran's Ministry of Intelligence and Security, has been caught posing as the Chaos ransomware group in a deliberate campaign.
Mistic Backdoor Enables Long-Term Access in Ransomware Attacks
Cyber attackers have deployed a sneaky backdoor called Mistic, allowing them to maintain long-term access to infected systems during ransomware attacks, all while staying remarkably under the radar. This stealthy threat uses clever tactics like running payloads in memory and mimicking legitimate Microsoft security tools to evade detection.
US Seizes Huione Cloud Account Tied to $31 Billion Cyber Scam Laundering
The US Department of Justice has seized a cloud account linked to a staggering $31 billion cyber scam laundering operation, disrupting a vast online marketplace for fraud and money laundering. This massive crackdown targeted HuiOne Group, a Cambodia-based company accused of helping scammers launder billions through its subsidiaries.
AI Enables Faster, Cheaper Cyber-Attacks
Cyber attacks just got a whole lot faster, cheaper, and sneakier thanks to AI, which is now a key player in the cybercrime world, enabling attackers to launch more sophisticated and elusive threats. ReliaQuest reports that AI is revolutionizing the attack workflow, making it easier for attackers to scale, customize, and slip past traditional defenses.
UK Museums Exposed to Rising Cybersecurity Threats
The UK's cultural treasures are under threat from rising cybersecurity risks, with a recent report criticizing the Department for Culture, Media and Sport for being reactive rather than proactive in protecting national galleries and museums. This vulnerable stance puts priceless artifacts and historical exhibits at risk of being compromised.
Cisco Unified CM Flaw Exploited in Active Attacks
Hackers are actively exploiting a high-severity flaw in Cisco Unified CM, tracked as CVE-2026-20230, which allows them to send malicious HTTP requests and potentially take control of affected devices. This vulnerability, with a CVSS score of 8.6, could enable attackers to write files to the underlying operating system and escalate their privileges.
US-UK Nuclear Pact Bolsters Mutual Deterrence
The US-UK nuclear partnership is a two-way street, with Washington gaining tangible technical, operational, and strategic advantages from the collaboration, just as London has benefited from US support for over 65 years. This mutual deterrence pact serves US interests just as much as British ones, experts argue.
Army to Unify Divisions with Next-Gen Command and Control System
The Army is taking a major step forward in modernizing its operations by implementing a next-generation command and control system, uniting its divisions under a single, cutting-edge configuration. Anduril will lead the charge in bringing together two prototype divisions, the 25th Infantry Division and the 4th Infantry Division, onto this common platform.
Australia Overhauls Veteran Support System with Landmark Reforms
Australia is overhauling its veteran support system with historic reforms aimed at saving lives, driven by the Royal Commission's finding that inadequate support is a contributing factor to veteran suicides. From July 1, a simplified compensation framework and new national body will coordinate wellbeing services for veterans and their families.
Iranian Drone Swarm Poses Questions After F-15E Downing
An F-15E pilot described a chilling scene before ejecting from his downed jet: a swarm of Iranian drones moving in unison, resembling a jellyfish with smaller drones clustered beneath larger ones like legs. This unprecedented encounter has raised more questions than answers.
NSA Faces AI Setback as White House Limits Mythos 5 Access
The White House's sudden limits on Anthropic's advanced AI models, including Mythos 5, have left the NSA reeling, with some analysts losing access to the powerful tool in a matter of hours. This setback comes at a critical time, with Senator Mark Warner warning that a similar breach had already compromised almost all classified systems in a remarkably short timeframe.
Malicious AI Skills Evade Detection on ClawHub Marketplace
Malicious AI skills are slipping through the cracks on ClawHub, with nearly 1 in 5 skills analyzed carrying hidden threats, and a recent audit found a thriving marketplace for bad actors to exploit. Unit 42 uncovered alarming trends, including infostealers and evasion techniques, highlighting the need for vigilance in this rapidly evolving threat landscape.
Senate Rebukes Trump with War Powers Resolution on Iran Conflict
In a historic move, the Senate has passed a War Powers Resolution to end US hostilities in Iran, with a 50-48 vote that marks the first time both chambers of Congress have taken a stand against the conflict. The resolution, which doesn't require the President's signature, is a significant rebuke to Trump and a major step towards reining in executive power.
Australia's Defence Force Struggles to Govern Rapid AI Integration
The Australian Defence Force is betting big on AI, with a whopping A$425 billion investment in cutting-edge capabilities by 2035-36 - and artificial intelligence is at the forefront, poised to revolutionize everything from undersea warfare to cyber defence. With AI now embedded in the Defence Force's budget, it's clear that this tech is no longer just a nice-to-have, but a must-have for Australia's military future.
Army Launches Low-Cost Interceptor Program to Counter Affordable Drone Threats
The Army is shaking up its defense strategy with a new Low-Cost Interceptor program, aiming to take down affordable drone threats with scalable, budget-friendly solutions. This move is set to revolutionize air-defense systems by providing a cost-effective alternative to multimillion-dollar solutions.