Tag: emerging threats
3044 articles
US Special Ops Head Warns on AI Battlefield Integration
The head of US Special Ops, Adm. Frank Bradley, is urging caution when it comes to integrating AI into combat operations, emphasizing the need for a reality check to ensure the technology is used effectively and safely. He acknowledges AI's potential to boost efficiency, but notes that true AI on the battlefield is still a future possibility.
Australia, India Confront Online Youth Radicalisation
As online gaming and social media continue to shape young minds, Australia and India are taking bold steps to combat the growing threat of online youth radicalisation - with Australia investing A$74 million in a Counter Terrorism Online Centre and India passing the Promotion and Regulation of Online Gaming Act. Their differing approaches offer a unique opportunity to compare and learn from each other's strategies to safeguard young people.
Cyber Confidence Erodes as Readiness Paradox Grows
Most organizations claim they're confident in their ability to tackle cyberwarfare and AI-driven threats, but their actions tell a different story - with many admitting to lacking the budget and resources to back up their boasts. This alarming gap between confidence and capability is what we call the Cyber Readiness Paradox.
Drones Adopt 3D Mapping to Navigate GPS-Denied Zones
As adversaries ramp up electronic warfare against GPS signals, drones are turning to 3D mapping to stay on course, even in zones where GPS is denied. This game-changing tech helps drones determine their exact position, ensuring they can navigate with precision, no matter what.
Linux Rootkits Persist in Updated Forms
A single misstep with an over-privileged or poorly designed agent can quickly spiral into a serious incident, making the UK National Cyber Security Centre's warning feel alarmingly relevant. This urgency was underscored at Pwn2Own Berlin, where researchers exploited 47 zero-day flaws, raking in over $1.2 million in rewards.
Crypto Drainers Evolve Into Sophisticated Service Platforms
Meet the modern Drainer-as-a-Service model, where affiliates supply victims through phishing links and fake websites, while the service handles the technical heavy lifting, including signatures, approvals, and token transfers, with operators taking a 20% commission from successful scams. This sophisticated platform is a far cry from ad-hoc phishing, with a business model that's both lucrative and alarmingly efficient.
Attackers Expose Plaintext Passwords of 46k Myspace Users
A shocking data breach has exposed the plaintext passwords of 46,000 Myspace users, putting their online security at risk. This alarming leak, linked to a 2021 security incident, also reveals email addresses and other sensitive credentials.
Vulnerability Exploitation Surpasses Credentials as Top Breach Entry Point
The latest Verizon Data Breach Investigations Report reveals a significant shift in how breaches occur: vulnerability exploitation now accounts for 31% of breaches, surpassing stolen credentials as the top entry point for hackers. Ransomware remains a major threat, involved in nearly half of all breaches.
Law Enforcement Disrupts First VPN Service Tied to Ransomware Attacks
In a major cybercrime crackdown, law enforcement agencies have dismantled a notorious VPN service used by ransomware attackers, seizing 33 servers and taking its domains offline in a coordinated operation across 27 countries. The takedown of First VPN, a so-called "no-logs" provider, has dealt a significant blow to threat actors behind ransomware and data theft campaigns.
Vulnerable Code Proliferates as AI Exploits Rise in Supply Chains
The alarming truth is that 75% of organizations are knowingly shipping vulnerable code, despite the risks, with the window from disclosure to exploit shrinking dramatically from 840 days in 2018 to just under two days today. This trend is expected to accelerate, with exploits potentially available in as little as one minute by 2028.
Microsoft Discloses Actively Exploited Defender Vulnerabilities
Microsoft warns of two critical vulnerabilities in its Defender software, one of which is being actively exploited by attackers to gain elevated privileges, and the other causing denial-of-service issues. These flaws, tracked as CVE-2026-41091 and CVE-2026-45498, highlight the need for urgent patching to prevent system compromise.
Linux Flaw Exposes SSH Keys, Password Hashes
A critical nine-year-old flaw in the Linux kernel, known as CVE-2026-46333, allows everyday users to access highly sensitive data, including SSH private keys and system password hashes, on popular Linux distributions. Fortunately, patches and updates are available to fix this vulnerability.
Cisco Exposes New Zero-Auth Vulnerability in Secure Workload Platform
Cisco has uncovered a critical zero-auth vulnerability in its Secure Workload platform, allowing attackers to access sensitive information and make configuration changes with alarming ease and admin-level privileges. This severe flaw, scoring a perfect 10.0 on the CVSS scale, demands immediate attention to prevent exploitation.
Identity Exposures Form Highways for Cyber Attacks
A single compromised identity can become a superhighway for cyber attacks, giving hackers access to nearly every critical workload a business relies on - as seen in a recent incident where a cached AWS access key on one Windows machine put 98% of the company's cloud environment at risk. Identity has become the ultimate attack path, carrying with it a multitude of permissions just waiting to be exploited.
Microsoft Bolsters AI Safety with RAMPART and Clarity Tools
Microsoft is taking a major leap forward in AI safety with the launch of RAMPART, an open-source tool that automates red-teaming for agentic AI applications, helping to prevent real-world attacks like prompt injection. By integrating RAMPART into its CI/CD pipelines, Microsoft is turning AI safety from a philosophy into a practical engineering discipline.
Linux Flaw Enables Root Command Execution on Major Distros
A newly discovered Linux flaw, tracked as CVE-2026-46333, allows hackers to easily gain root access on major distributions, putting countless systems at risk. This nine-year-old vulnerability, just recently exposed, is a wake-up call for Linux users everywhere.
Grafana Breach Exposed by TanStack Supply Chain Attack
Grafana Labs revealed that a supply chain attack led to an unauthorized download of its codebase, exposing a vulnerability that allowed attackers to gain access to its GitHub repositories through a missed workflow token. The breach was detected on May 11, with the company swiftly rotating tokens, but unfortunately, one was overlooked.
Microsoft Disrupts Zero-Day Attacks with Defender Patch Rollout
Microsoft is taking swift action to protect its users from zero-day attacks with an emergency patch rollout for its Defender software, ensuring that even the most vulnerable systems are safeguarded. The update addresses two critical vulnerabilities that were being actively exploited by hackers.
GitHub Breach Exposes 3,800 Repos to TanStack Supply-Chain Attack
A single malicious Visual Studio Code extension, Nx Console version 18.95.0, was enough to spark a GitHub breach that exposed 3,800 internal repositories to a TanStack supply-chain attack. The poisoned extension was live on marketplaces for just 54 minutes, but long enough to steal credentials from a developer's machine.
Inactive User Account Enables Hackers to Control City's Water System
A simple mistake of leaving a former employee's user account active allowed hackers to take control of a city's water system, highlighting the importance of promptly disabling access for departed staff. This "zombie" account proved to be the vulnerable entry point that attackers exploited to wreak havoc on municipal operations.
GitHub Breach Exposes 3,800 Repositories via Malicious VS Code Extension
GitHub's security chief confirms that customer data remains safe, with no evidence of impact outside of GitHub's internal repositories. The breach originated from a poisoned VS Code extension installed on a compromised employee device, allowing attackers to steal credentials.
Turkey Advances Naval Hürjet for MUGEM Aircraft Carrier
Türkiye is taking a major leap forward with its indigenous aircraft carrier, MUGEM, by developing a carrier-capable version of the Hürjet, a high-performance jet that will need to withstand the intense demands of naval landings. Turkish Aerospace Industries has officially kicked off the Naval Hürjet programme, marking a significant milestone in the country's naval aviation ambitions.
US Military Seeks Replacement for Aging C-146 Special Ops Transport Plane
The US Military is on the hunt for a next-generation transport plane to replace its aging C-146 Wolfhound, as the current fleet faces sustainment and range limitations despite being battle-proven. A successor is needed to keep special ops missions flying high.
US Navy Deploys Laser-Armed Destroyers
The US Navy is taking a giant leap into the future of warfare with nine cutting-edge destroyers equipped with powerful laser weapons, poised to revolutionize the battlefield. Currently, two of these laser-armed destroyers, USS Spruance and USS John Finn, are on combat deployments in the Indian Ocean, supporting ongoing operations.