Latest Analysis
Cybersecurity intelligence, threat analysis, and national security reporting.
French Football Federation Exclusive: Damaging Data Breach
Imagine names, birthdates and contact details for more than two million amateur players suddenly exposed — that’s the frightening possibility tied to a suspected breach at the French Football Federation. Players and parents should be on alert for phishing and scams while the federation works to lock down access and notify those affected.
MS Teams Guest Access Exclusive Critical Defender Risk
Think twice before you add guests to Microsoft Teams: when someone joins as a guest, their protections are set by the host tenant — a Teams guest access gap attackers can exploit to bypass Defender for Office 365. Patch immediately, rotate credentials, and hunt sign‑in logs to stop a small convenience from becoming a major breach.
Bloody Wolf: Exclusive Dangerous Java RAT Hits Central Asia
Think your monitoring keeps you safe? Bloody Wolf has been quietly delivering NetSupport RAT across Kyrgyzstan and Uzbekistan via a Java-based loader and DLL sideloading — a stealthy, modular campaign that evades signature scanners and forces defenders to rely on behavioral monitoring and active threat hunting.
FCC Warns: Exclusive Threat of False Radio Alerts
The FCC is sounding the alarm on false radio alerts—here’s how to spot bogus broadcasts and protect yourself from dangerous misinformation on the airwaves.
Bloody Wolf Expands in Central Asia Exclusive Danger
As Bloody Wolf expands across Central Asia, attackers are repurposing trusted remote‑administration tools to slip quietly into government networks and exfiltrate sensitive data. That shift from noisy attacks to stealthy intelligence gathering leaves smaller states scrambling to detect and respond.
Microsoft Exclusive: Critical Entra ID Script Block 2026
Microsoft is tightening the Content Security Policy for Entra ID so login.microsoftonline.com will only run JavaScript from Microsoft-owned domains — a strong move to block unauthorized script injection that helps protect tokens and credentials. Rolling out in about a year, it’s a heads-up for admins: tighter security, but likely compatibility pain for third‑party integrations.
Asahi Exclusive: Alarming Cyberattack Hits 1.5M
Up to 1.5 million Asahi customers are asking, Were my records exposed? after a September ransomware attack that disrupted deliveries and may have accessed customer databases. Investigators and law enforcement are still probing what was taken as the company grapples with a growing privacy and trust crisis.
OpenAI Warns: Exclusive Critical Mixpanel Breach
OpenAI is urging users to rotate keys and audit integrations after a Mixpanel breach that may have exposed leaked API keys and telemetry — a wake‑up call that third‑party analytics can become an attack vector overnight.
OpenAI Exclusive: Critical Mixpanel Breach Hits API Users
A critical Mixpanel breach has put API users data at risk. Read our exclusive breakdown of what happened, whos affected, and simple steps you can take now to protect your apps.
Fraud Fears: Exclusive Reassuring Outlook for Holidays
Worried about holiday fraud? ICO data shows no Q4 2024 spike in reported data breaches — a reassuring sign, but one that forces us to ask whether criminals have gone stealthier or our reporting systems are missing the real threat.
Lapsus$ Hunters Pose Dangerous, Exclusive Threat to Zendesk
Patchable missteps meet crowd‑powered coercion: Scattered Lapsus$ Hunters are resurfacing with new phishing domains and social‑engineering tricks aimed at support tools like Zendesk. Compromised help‑desk credentials can give attackers an exclusive backdoor into customer and corporate data—so small lapses can have big consequences.
UK Cyber Resilience Bill: Exclusive Critical Provisions
Take an exclusive look at the UK Cyber Resilience Bill’s critical provisions. From privacy-by-design and data limits to distributed trust and independent oversight, Parliament’s choices will decide whether our digital infrastructure becomes truly resilient or merely shifts risk around.
Shai-Hulud v2 Exclusive: Dangerous Spread Exposes Secrets
Shai‑Hulud’s second wave has jumped from npm into Maven, turning trusted packages into a secret‑stealing worm that probes CI and environment tokens and self‑replicates through dependencies. If you build or secure software, now’s the moment to rotate credentials, harden pipelines, and vet every dependency.
Cyber-Attack Exclusive: Severe OnSolve CodeRED Outage
Imagine the sirens going silent: when INC Ransom hit OnSolve’s CodeRED, communities missed vital alerts and scrambled to improvise slow, unreliable backups. The outage — and exposed user data — lays bare how dangerously dependent public safety has become on just a few commercial providers.
Huawei Exclusive: Dangerous Chinese Surveillance Risks
Leaked reporting lays bare how Chinese surveillance has flowed from labs into startups, turning facial recognition, NLP and phone‑forensics into commercial tools sold to local governments. What looks like efficient security is increasingly opaque — and alarmingly easy to repurpose for control.
UK Report: Stunning liability rules could be costly
What if the software that runs hospitals, banks and supply chains could be held legally liable for every flaw? A new UK report urges clearer legal liability to force better security and faster fixes — but warns those protections could be costly, reshape markets and squeeze smaller vendors.
FBI Exclusive: Stunning $262M Costly Account Takeovers
Imagine waking to find your bank account emptied by someone who cloned your bank’s site — the FBI says over $262M has been lost to account takeover scams since January 2025. Learn how phishing, credential stuffing and fake reporting pages let criminals turn stolen logins into instant cash — and what you can do to stop them.
Gainsight Cyber-Attack Exclusive: Critical Salesforce Hit
A Gainsight cyber attack has critically hit Salesforce—here’s what happened and the immediate steps you need to protect your data and your org.
Chrome Extension Exclusive: Malicious Raydium Solana Fees
Think your trading extension has your back? Researchers uncovered Crypto Copilot — a Chrome add-on that stealthily skimmed tiny fees off Raydium Solana swaps to an attacker-controlled wallet, a stark reminder to vet permissions before installing extensions.
HashJack Exclusive: Dangerous Injection Weaponizes Websites
Meet HashJack — a new technique that turns everyday websites into traps for AI‑enabled browsers and automated agents, tricking them into leaking session tokens and secrets with a convincing prompt. What feels like a harmless CAPTCHA or verification dialog can quietly hand attackers the keys to your account until those tokens are revoked.
London Councils Hit by Serious Exclusive Cyber Incidents
At least three London boroughs are battling a serious cyber incident that’s disrupted services and shown how ageing council IT can turn targeted attacks into city-wide crises. As teams scramble to contain the breach and keep vital functions running, this episode highlights a worrying UK trend: fewer incidents, but far greater damage.
RomCom: Exclusive Warning on Dangerous SocGholish Malware
Exclusive warning: attackers are now pairing the SocGholish social-engineering loader with the RomCom malware family to deliver Mythic Agent via convincing fake update prompts, turning routine installs into persistent backdoors. Read on to see how this clever combo exploits trusted software and everyday habits—and what you can do to stop it.
FBI Reveals Stunning Rise in Costly AI Phishing Scams
Imagine a voicemail that sounds exactly like your daughter begging for help — only its a scam. The FBI warns cheap AI tools are fueling a surge of hyper‑personalized phishing scams that have already cost victims hundreds of millions and can fool individuals, businesses, and banks alike.
Smishing Triad Impersonation Campaigns: Exclusive Threat
Think that bank-looking text is really from your provider? Smishing Triad attackers now pair believable sender IDs with lookalike Egyptian domains, SIM farms and hijacked devices to harvest credentials and bypass 2FA—one click can mean compromise.