Latest Analysis
Cybersecurity intelligence, threat analysis, and national security reporting.
RQ-180 Stealth Drone Spotted Flying Over Greece in Broad Daylight
A top-secret stealth drone, the massive RQ-180, has been spotted flying in broad daylight over Greece, revealing new details about its design and presence. The unusual daytime sighting of this covert aircraft is providing fresh insights into its configuration and capabilities.
Feds Warn of Iranian Cyberattacks on US Energy, Water Systems
US government agencies have issued an urgent warning that Iranian hackers are launching targeted cyberattacks on America's energy and water infrastructure, posing a serious threat to the communities that rely on them. These attacks have already caused harm to victims in the past month, highlighting the need for immediate vigilance.
Unit 42 Uncovers Axios Supply Chain Attack's Far-Reaching Consequences
When a trusted software pathway is compromised, the consequences can be far-reaching - as Unit 42's recent analysis of the Axios supply chain attack starkly reveals, threatening digital trust and resilience. The team's detailed examination exposes the attack's full chain, from initial dropper to forensic cleanup.
North Korea-linked actor compromises axios NPM package
A shocking discovery by Google Threat Intelligence Group has exposed a vulnerability in the popular axios NPM package, which has over 100 million weekly downloads, and has raised urgent questions about the trustworthiness of software supply chains. A malicious dependency was secretly introduced into axios releases, putting countless applications at risk.
Kaspersky Uncovers Coruna Exploit Kit Linked to Operation Triangulation
Kaspersky's researchers have made a significant discovery: the Coruna exploit kit, now targeting iPhones, uses an updated kernel exploit linked to the notorious Operation Triangulation. This finding highlights the evolving threat landscape, where offensive code is repurposed to target new devices.
APAC Firms Scramble to Bolster Cloud Security Amid Rising Identity Risks
As APAC firms rush to adopt cloud technology, they're faced with a daunting dilemma: do they risk advancing without a plan, or delay and let identity-related risks leave them vulnerable? With identity issues already causing the majority of cloud breaches in the region, the clock is ticking to get cloud security right.
Unit 42 Research Exposes Risks in Amazon Bedrock's Multi-Agent AI Systems
Unit 42's latest research reveals a hidden threat: multi-agent AI systems on Amazon Bedrock can be vulnerable to new and alarming risks, including prompt injection attacks that practitioners can't afford to ignore. Learn how to safeguard your AI applications from these emerging threats.
Feds Disrupt Russia-Backed Espionage Network Infecting 18,000 Devices
Federal authorities have successfully disrupted a massive Russia-backed espionage operation that had infiltrated nearly 18,000 devices, stealing sensitive account credentials and tokens by hijacking internet traffic. This significant takedown thwarts the efforts of Forest Blizzard, a notorious threat group linked to Russia's GRU.
China's PLA Revives Explosive Tactics in Modern Warfare
The People's Liberation Army is dusting off old-school explosive tactics, deploying high-explosive satchels and makeshift charges in modern warfare, a move that suggests even simple tools can still pack a punch on the battlefield. This revival is reportedly inspired by lessons learned from the war in Ukraine, where humble explosive charges proved their continued relevance.
VMware vSphere Ecosystem Targeted by BRICKSTORM Malware Attacks
Imagine an attacker sneaking past your trusted operating system and into the hidden infrastructure that powers your virtual machines - that's the risk posed by BRICKSTORM malware, which targets the VMware vSphere ecosystem. This stealthy threat allows adversaries to operate undetected, evading traditional endpoint tools by establishing persistence at the virtualization layer.
Malicious AI Gateway Exposes Data Through Supply Chain Breach
A recent analysis of LiteLLM, a popular AI gateway, revealed a supply chain breach that embedded malicious code designed to steal sensitive data, highlighting the vulnerability of even the most trusted components. This breach turned a multifunctional gateway meant to enhance AI agents into a vector for data theft, putting countless users at risk.
Hackers Target Asia Pacific with URL-Based Threats
In Asia Pacific, hackers are ditching traditional tactics and using URL-based threats to gain easy access to your digital life - with just one click, your security can be compromised. This emerging threat landscape is redefining how we think about online identity, access, and trust.
Vulnerabilities Exposed in Amazon Bedrock AgentCore Sandbox
Security researchers at Unit 42 have uncovered critical vulnerabilities in Amazon Bedrock AgentCore's sandbox, revealing that a protective layer meant to separate code and services can be breached using DNS tunneling, exposing sensitive credentials in the process. This alarming discovery highlights the potential risks of slipping through the cracks of a supposedly secure system.
China Upgrades Older Tanks with Active Protection Systems
A game-changing photo has emerged showing an older Chinese tank sporting cutting-edge Active Protection Systems, shifting analysts' focus to the country's strategic intent, costs, and battlefield logistics. This surprise upgrade on a tried-and-true Type 96 main battle tank has significant implications for the future of armored warfare.
Ransomware Evolves with AI-Fueled Mutation Tactics
The game-changing threat of AI-fueled ransomware is here: hackers can now wield polymorphic malware that mutates on the fly, making it exponentially harder to detect and stop. This emerging menace is made possible by ransomware-as-a-service platforms supercharged with artificial intelligence.
Kaspersky Uncovers CrystalX RAT with Extensive Spyware and Stealer Capabilities
Meet CrystalX, a sinister new remote-access tool that's being sold as a ready-made menace, packing an alarming combination of spyware, stealer, and prankware capabilities that put your digital security at risk. This malicious toolkit is the latest threat to watch out for, and Kaspersky researchers are sounding the alarm.
Pakistan Weighs Iran's Ballistic Missile Playbook
As Iran's war with the US and Israel puts its ballistic missile posture to the test, the world is watching - and wondering: could another state replicate its approach to impose meaningful costs in war? Tehran's decades-long efforts to build this defensive strategy offer a compelling case study for regional strategists and defence planners.
Japan Expands Military Footprint in Southeast Asia with Combat Unit Deployment
Japan is taking a historic leap in its security engagement with Southeast Asia by deploying combat units to a trilateral military exercise with the Philippines and the United States - a significant shift in its long-standing policy of limited overseas military deployment. This bold move marks a new era in Tokyo's security posture, particularly with Manila, and has observers buzzing with interest.
China Unveils Upgraded QJH001 Heavy Machine Gun for Peacekeeping Missions
China's latest upgrade to its QJH001 heavy machine gun is turning heads, particularly in peacekeeping missions, where its deployment from a helicopter door offers enhanced protection and firepower. This seemingly small but significant advancement could have far-reaching implications for militaries, technologists, and policymakers.
Chinese Satellites Exhibit Patterns Suggesting Covert Military, Intelligence Operations
A recent analysis by the Center for Strategic and International Studies (CSIS) has uncovered 75 unusual moves by a small group of Chinese satellites in orbit over nearly a decade, suggesting potential covert military and intelligence operations. These maneuvers reveal patterns that raise concerns about the true intentions behind China's satellite activities.
Iran War Escalation Strains US Alliances, Disrupts Global Fuel Markets
The Iran war escalation has sent shockwaves around the globe, straining US alliances and disrupting fuel markets, as the conflict enters its second month with the supreme leader gone and global commerce reeling. This unsettling new reality is forcing urgent choices and testing the foundations of the post-Cold War order.
Scams Evolve, Target Human Judgment in AI-Driven Attacks
As cyberattacks evolve, they're no longer targeting weak spots in code or networks, but rather the weakest link of all - human judgment. With AI-driven scams on the rise, attackers are exploiting trust and manipulating people into becoming the unwitting victims of their clever tactics.
Iranian Drones Redefine Defence with Loitering Munitions Tactics
Discover how Iranian drones are revolutionizing defence strategies with their game-changing loitering munitions tactics, and what this means for naval power dynamics in the region. Loitering munitions, as showcased in the US-Iran war, are redefining the rules of engagement.
Australia, New Zealand Forge Deeper Defense Ties Under ANZUS Treaty
Australia and New Zealand are taking their decades-long friendship to the next level, aiming to supercharge their military cooperation under the ANZUS Treaty and make significant strides by 2035. The two nations are shifting from political promises to practical action, seeking a deeper defense partnership that will bring their militaries even closer together.