Latest Analysis
Cybersecurity intelligence, threat analysis, and national security reporting.
India's CERT-In Mandates Swift Patching for Exposed Flaws
CERT-In is urging organizations to act fast to contain cyber threats, setting a tight 12-hour deadline to patch known vulnerabilities in critical, internet-facing systems. This swift response aims to combat the accelerating threat of AI-driven cyber-attacks.
CERT-In Tightens Patching Rules Amid AI-Assisted Cyber Attacks
CERT-In is ramping up its patching rules to combat the growing threat of AI-assisted cyber attacks, warning that these attacks can rapidly identify and exploit vulnerabilities. To stay ahead, organisations must now patch internet-facing and critical system flaws within 12 hours, where possible.
Iranian Hackers Deploy AI-Backed MiniFast Backdoor via Phishing and SEO Poisoning
Iranian hackers have escalated their cyber attacks, leveraging AI-powered tools to craft malware and targeting key sectors like aviation, defense, and telecommunications across the US, Europe, and the Middle East. Their sophisticated tactics, including phishing and SEO poisoning, have allowed them to spy on organizations with alarming speed and efficiency.
Iran-Linked Hackers Target US Aviation with Sophisticated Phishing and SEO Poisoning
Meet Nimbus Manticore, an Iran-linked hacking group that's back with a vengeance, using clever phishing and SEO poisoning tactics to target the US aviation industry in a series of sophisticated attacks. Their latest campaign, which ran from February to April 2026, marked a significant expansion into aviation, defense, and telecommunications.
CISA Mandates Patching of Exploited Drupal Vulnerability
The US Cybersecurity and Infrastructure Security Agency has issued a directive requiring federal agencies to patch a critical Drupal vulnerability, known as CVE-2026-9082, by May 27 to prevent devastating SQL injection attacks. This highly critical flaw allows hackers to exploit PostgreSQL-powered Drupal sites and gain unauthorized access to sensitive information.
Microsoft Warns of Domain Controller Lookup Failures on Windows Server 2016
If you've installed the KB5087537 update on your Windows Server 2016 system, be aware that domain controller lookup may fail if your server hostname is exactly 15 characters long. This issue affects only those with 15-character hostnames, so check yours to see if you're impacted.
7-Eleven Data Breach Compromises 185,000 People's Personal Info
A recent 7-Eleven data breach has put the personal info of 185,000 people at risk, exposing sensitive details like names, addresses, birthdays, and phone numbers. The breach, which occurred on April 8, 2026, is still shrouded in mystery, with 7-Eleven only confirming that certain systems storing franchisee documents were compromised.
KnowledgeDeliver LMS Flaw Exploited to Deploy Malware
A security flaw in the KnowledgeDeliver LMS, known as CVE-2026-5426, was exploited by a threat actor to inject malicious code and infect users visiting the site. This vulnerability was caused by a predictable secret in the system's web.config file, allowing attackers to execute remote code.
Pentagon Taps Perennial Autonomy for $500M Counter-Drone Contract
The Pentagon has taken a major stand against the growing threat of drones, awarding a $500 million contract to Perennial Autonomy for cutting-edge, AI-powered counter-drone systems. This game-changing deal is part of the US military's broader Drone Dominance initiative to stay ahead of the curve in modern warfare.
USAF Deploys Upgraded ULTRA Surveillance Drones to Middle East
The US Air Force has taken a major leap forward with its ULTRA Surveillance Drones, successfully completing a 60-hour flight at 25,000 feet and 100 knots - now, a turbocharged variant is set for operational testing in the Middle East. This next phase will see the drone put through its paces in a real-world setting within US Central Command's area of responsibility.
HAVELSAN Expands Global Reach with Hürjet Simulator Export to Spain
HAVELSAN is breaking new ground with its export of the Hürjet simulator to Spain, marking a significant reversal of a long-standing trend. The Turkish company will deliver its cutting-edge Flight Simulation and Mission Planning System, along with a Full Mission and Flight Training Simulator, to support the Hürjet program for both the Turkish Air Force and Spain.
China's 'Bohai Sea Monster' Emerges with Apparent Combat Capabilities
Newly surfaced images of China's mysterious Bohai Sea Monster reveal a surprising detail: four turboprop engines, each driving a three-bladed propeller, hinting at a more complex role and extended range than initially thought. This game-changing feature has analysts reevaluating the capabilities of this enigmatic craft.
Europe's Drone Defense Gap Exposes Critical Infrastructure Risks
Europe's critical infrastructure is left vulnerable due to a lack of clear governance and rules of engagement, despite having the technology to defend against drone threats. The absence of ownership and jurisdictional clarity hinders the deployment of drone defense systems where they're needed most.
Pakistan Air Force Targets UCAV Development with Baykar's Kızılelma
The Pakistan Air Force is taking a giant leap in aerospace innovation with its focus on developing unmanned combat aerial vehicles, as seen in its engagement with Baykar's cutting-edge Kızılelma technology. This move reflects a shared vision with Türkiye to pioneer next-generation defence technologies.
Dutch Authorities Disrupt Russian Cyber Operations, Seize 800 Servers
In a major blow to Russian cybercrime, Dutch authorities seized over 800 servers and arrested two individuals in a daring raid that cracked down on illicit online operations. The suspects, a 57-year-old Amsterdam resident and a 39-year-old from The Hague, were charged with violating sanctions law by aiding EU-sanctioned entities.
Damaged KC-135 Tanker Spotted at RAF Mildenhall Amid Post-War Repairs
A KC-135 tanker, bearing scars of a intense battle, has been spotted at RAF Mildenhall, its damaged airframe a testament to the high stakes of war, with makeshift repairs and a missing refueling boom telling a story of their own. Aviation photographer Andrew McKelvey captured striking images of the battered jet, revealing a patchwork of temporary fixes and shrapnel damage.
PLA Unveils Upgraded Bangalore Torpedo
Meet the GBP113A, a game-changing upgrade to the century-old Bangalore torpedo, now with a rigid-flexible combination design that lets it curve, snake, and blast its way into previously hard-to-reach areas. This innovative device delivers the same powerful punch as its predecessor, but with added maneuverability and flexibility.
SaaS Providers Face Trust Crisis After Canvas Breach
A massive breach of the Canvas learning management system has left 275 million users reeling, compromising student records and disrupting learning at over 8,800 institutions worldwide. The shocking incident has sparked a trust crisis for SaaS providers, raising urgent questions about security and data protection.
Japan, Philippines to Launch Intelligence Sharing Talks
The Philippines and Japan are about to take their strategic partnership to the next level with talks on intelligence sharing, as President Ferdinand Marcos Jr. meets with Prime Minister Takaichi Sanae in a landmark state visit. This historic summit is set to strengthen security ties and pave the way for a groundbreaking General Security of Military Information Agreement (GSOMIA).
Anthropic Readies Restricted AI Model for Public Rollout
Anthropic is on the cusp of unveiling its game-changing Mythos model, a frontier AI that's poised to revolutionize code reasoning and autonomy with capabilities that far surpass its predecessors. This powerful tool could redefine the cyber landscape, giving a significant edge to those who harness its potential.
Philippines Pursues Strategic Hedging Between US Alliance and China Engagement
As President Ferdinand Marcos Jr. bluntly put it, the Philippines is poised for a significant overhaul of its international relationships, walking a delicate tightrope between asserting sovereignty in the West Philippine Sea and balancing economic ties with China and security ties with the US. The country's foreign policy is set for a major restructuring in 2026.
Australia's Defence Strategy Lags in Information War Arena
Australia is losing ground in a different kind of battle – one of perception and understanding – where adversaries are manipulating what people believe to be true, eroding public trust and turning domestic audiences into a vulnerability in times of crisis. By shaping perceptions through information, our nation risks being left behind in the information war arena.
Linux Flaws Expose Critical Infrastructure to Root Command Execution
GitHub confirmed that a compromised employee device, infected by a poisoned Nx Console VS Code extension, led to the theft of around 3,800 internal repositories, sparking swift action to contain the breach and protect sensitive data. The incident highlights the vulnerability of even the most secure systems to supply chain attacks.
FBI Warns of Kali365 Phishing Service Targeting Microsoft 365 Accounts
Beware of Kali365, a sneaky phishing service that's hijacking Microsoft 365 accounts by exploiting a legitimate authentication flow - and it's happening fast, with the platform emerging as recently as April 2026. This clever trick uses a short code to trick victims into handing over control of their accounts.