Latest Analysis
Cybersecurity intelligence, threat analysis, and national security reporting.
Microsoft Disrupts Malware-Signing Service Used by Ransomware Gangs
Microsoft cracked down on a notorious malware-signing service used by ransomware gangs, disrupting the operations of Fox Tempest, a financially motivated group that generated millions of dollars in profits by selling trust to cybercriminals. The group had created over 1,000 code-signing certificates and hundreds of Azure tenants to support its industrial-scale scheme.
AI Adoption Exposes Identity Security Blind Spots
As organizations rapidly adopt AI, they're unwittingly creating a surge in non-human identities - like AI agents and machine identities - that are outpacing their ability to manage and secure them, leaving them vulnerable to new security risks. This blind spot is exposing companies to excessive privileges, unmanaged access, and orphaned accounts, threatening their security, compliance, and operations.
Europe Bolsters Defenses Against AI-Powered Cyberattacks
The European Commission is proactively bolstering its defenses against AI-powered cyberattacks, with Vice President Henna Virkkunen pledging to ramp up preparedness and unveil a list of concrete actions in the coming weeks. The commission is considering activating the EU Cybersecurity Reserve to stay ahead of emerging threats.
Discord Deploys End-to-End Encryption on Voice, Video Calls
Big news for Discord users: the platform has just rolled out end-to-end encryption for all voice and video calls by default, giving you an extra layer of security and peace of mind when chatting with friends or colleagues. This major update is powered by the innovative DAVE protocol, designed to keep your conversations private and secure.
FBI Warns of $388 Million Lost to Crypto ATM Scams
The FBI's Internet Crime Complaint Center received over 13,400 complaints about crypto ATM scams in 2025, with victims losing a staggering $388 million - a 58% jump in losses from the previous year. This alarming trend is part of a broader surge in cybercrime, with over 1 million complaints filed and nearly $21 billion in losses reported last year.
Microsoft Abuses Self-Service Password Reset in Azure Data Theft Attacks
Microsoft warns that hackers are using clever social engineering tactics and exploiting self-service password reset features to drain sensitive data from high-value Azure assets. By tricking users into approving multi-factor authentication prompts, attackers can gain access to production Microsoft 365 and Azure environments.
7-Eleven Breach Exposes Franchisee Data to Cyber Risk
A recent 7-Eleven data breach has put franchisee information at risk, with sensitive documents accessed by an unauthorized party, potentially exposing names, addresses, and other personal data. Fortunately, customers who used their credit cards to make purchases can breathe a sigh of relief, as their payment info appears to be safe.
Cyberwar Expands to Orbit as Satellites Become New Front
The lines between space and cyber are blurring, and the threat landscape for satellites and other space systems is evolving at a breakneck pace. As space systems become increasingly intertwined with cyberspace, eroding norms are leaving them vulnerable to attacks, as seen in the Russians' 2022 cyberattack on a US commercial satellite system, Viasat, at the start of their invasion of Ukraine.
Drupal Warns of Highly Critical Vulnerability Requiring Immediate Patch
Drupal is warning of a highly critical vulnerability that requires immediate attention, urging site operators to clear their calendars for a crucial patch rollout on Wednesday, May 20, between 1700 and 2100 UTC. Exploits could be developed within hours or days, making swift action essential to protect your site.
CISA Exposes Security Lapse with Open GitHub Repository
The US's leading cyber-defense agency, CISA, made a shocking security blunder by leaving a GitHub repository open, exposing sensitive passwords, keys, and tokens with alarmingly obvious filenames. This careless mistake raises serious concerns about the agency's ability to protect itself and the nation from cyber threats.
OpenClaw Flaw Enables Hackers to Hijack AI Agents
A newly discovered flaw in OpenClaw, dubbed the Claw Chain, allows hackers to hijack AI agents and use their privileges to gain persistent control of an environment. By exploiting this vulnerability, attackers can escalate privileges, access sensitive data, and maintain a foothold within the system.
Trapdoor Android Ad Fraud Scheme Exposes 455 Malicious Apps
Meet Trapdoor, a massive Android ad fraud scheme that used 455 malicious apps to generate a staggering 659 million daily bid requests, fueling a self-sustaining machine that turned innocent installs into big bucks. This complex operation was uncovered by HUMAN's Satori Threat Intelligence and Research Team, shedding light on a pipeline for multi-stage fraud.
Sweden Picks Naval Group's FDI Frigates to Bolster Naval Capabilities
Sweden is set to supercharge its naval capabilities with four cutting-edge FDI frigates from France's Naval Group, a decision announced by Prime Minister Ulf Kristersson as the clear winner in meeting the country's stringent requirements. This game-changing deal follows the Swedish Navy and Defense Materiel Administration's recommendation to partner with Naval Group for its most significant surface combatant programme to date.
AFSOC to Deploy Skyraider II with Rapid Breakdown Capability
Get ready for a game-changer: the Air Force Special Operations Command is set to take the Skyraider II's rapid breakdown capability out of the hangar and into the real world, with an operational test planned for later this year. This innovative tech has already proven itself in controlled environments, and now it's time to see it in action.
US Approves $4.2B Military Helicopter Sale for South Korea
The US has greenlit a $4.2 billion military helicopter sale to South Korea, including 24 cutting-edge Lockheed Martin MH-60R Seahawk helicopters to boost the Republic of Korea Navy's maritime capabilities. This deal builds on the country's existing fleet, which has been successfully operating a similar batch of 12 Seahawks since 2020.
Microsoft Disrupts Malware Signing Service Used by Ransomware Groups
Microsoft cracked down on a sophisticated malware signing service run by a group called Fox Tempest, which helped ransomware gangs disguise their malicious programs as legitimate software. This service was like a master forgery operation, creating counterfeit digital signatures that even experts struggled to spot.
Italy Secures $1.6B Deal for Airbus A330 Tanker Fleet
Italy is set to boost its military capabilities with a game-changing $1.6 billion deal with Airbus for six A330 multi-role tanker transport aircraft, a contract that's been years in the making. The 10-year agreement marks a major milestone in the country's defense modernization efforts.
Vulnerabilities Dwindle to Manageable Number in Supply Chain Risk Landscape
The good news on supply chain risk: out of 1,200 high-priority vulnerabilities in 2025, only 58 proved both highly exposed and easily exploitable, making them a manageable threat. By focusing on these urgent few, organizations can tackle their most immediate and impactful risks.
Air Force Special Ops Command to Test OA-1K Skyraider II's Rapid Deployability
The Air Force Special Ops Command is pushing the boundaries of rapid deployability with the OA-1K Skyraider II, a game-changing aircraft designed to tackle everything from counter-terrorism to full-on conflict. Dubbed the "Swiss Army knife of airborne capability," this modular marvel can be rapidly reconfigured to meet the most pressing needs on the battlefield.
AI Models Force Government to Rethink Cybersecurity Risks
The government's approach to cybersecurity is at a critical reflection point, thanks to advanced AI models like Anthropic's Mythos, which present both risks and opportunities for agencies handling sensitive information. Collaboration between the government and vendors is crucial to navigate this new landscape.
US Air Force Weighs Supercruising Bomber as B-52 Replacement Option
The US Air Force is exploring a game-changing supercruising bomber as a potential replacement for the B-52, with a $15 billion engine replacement program set to reach initial operational capability by 2033. This move comes as the service weighs its options for the future of its heavy bomber fleet.
US Military's Golden Dome Costs Under Scrutiny
The US military's ambitious Golden Dome missile defense system has sparked a heated debate over its hefty price tag, with the Congressional Budget Office estimating a staggering $1.2 trillion cost that Space Force Gen. Michael Guetlein has publicly disputed. Gen. Guetlein argues that the estimate is inflated, setting off a battle over the program's true cost.
Malware Campaign Compromises Hundreds of npm Packages
A new, highly aggressive malware campaign, linked to the notorious TeamPCP group, has infected hundreds of npm packages, putting countless environments at risk of exposure. If you're concerned about potential damage, take immediate action to rotate secrets, remove persistence artifacts, and review recent publish activity.
Indonesia Turns to Turkey for Defense Revamp with UCAV Deal
Indonesia is taking a major leap in modernizing its air power with a game-changing deal with Turkey's Baykar for 12 cutting-edge Bayraktar Kızılelma uncrewed combat aerial vehicles, plus local production and maintenance facilities. This strategic partnership marks a significant shift in Jakarta's defense procurement strategy.