Tag: emerging threats
3103 articles
NCSC Warns of Impending AI-Driven Patch Surge
Get ready for a surge of software updates, warns the National Cyber Security Centre's CTO, as AI-driven patching is set to uncover and fix long-standing vulnerabilities across your tech stack. Prioritise your external attack surfaces and prepare for a "patch wave" to stay ahead of the threat.
Karakurt Ransomware Operative Sentenced for Extortion Role
Meet Deniss Zolotarjovs, a Latvian national who helped his ransomware gang extort dozens of companies - and even a government entity with a crippled 911 system - by leveraging stolen sensitive data, including children's health information. He's now facing 8.5 years in prison for his role in the Karakurt extortion operation.
NHS Moves to Close-Source GitHub Repos Citing AI Security Risks
The NHS is taking steps to boost security by moving its public GitHub repositories to private access by May 11, amid concerns that AI-powered code analysis could be exploited to uncover sensitive information. This temporary measure aims to prevent unintended disclosure of source code and other critical details.
ScarCruft Expands Malware Arsenal with Multi-Platform BirdCall Backdoor
ScarCruft hackers have launched a sneaky attack on a popular video game platform, infecting both Windows and Android users with a new backdoor called BirdCall. The multi-platform threat has been targeting ethnic Koreans in China since late 2024, allowing hackers to gain unauthorized access.
North Korean Hackers Infiltrate Android Games to Spy on Defectors
Security researchers at Eset stumbled upon a sneaky plot by North Korean hackers, who infiltrated popular Android games to spy on defectors by hiding a backdoor called BirdCall in the apps. The malicious code was cleverly disguised in game files available for download on a regional gaming platform's official website.
ScarCruft hackers deploy BirdCall malware via gaming platform.
North Korean hackers APT37, also known as ScarCruft, have cleverly expanded their BirdCall malware to target Android devices, adapting their Windows backdoor to spy on mobile users. They even used a popular gaming platform to sneak the malware onto unsuspecting devices.
Microsoft's GitHub troubles expose neglect
Microsoft's recent GitHub troubles have raised red flags about the platform's reliability, sparking concerns among developers, educators, and organisations that rely on it. This comes at a time when Microsoft is pushing users towards paid services and aggressively integrating AI offerings.
Trellix Breach Exposes Source Code to Threat Actors
Trellix has confirmed a breach of its internal development assets, revealing that threat actors gained unauthorized access to a portion of its source code repository. The company is working with experts to investigate and has found no evidence that its source code has been exploited so far.
Microsoft Exposes Large-Scale Phishing Campaign Targeting 35,000 Users Worldwide
A massive phishing campaign targeting over 35,000 users worldwide has been uncovered, using sophisticated email templates that convincingly masquerade as legitimate internal communications. The highly convincing lures successfully hit organizations across 26 countries, with a staggering 92% of targets based in the US.
Weaver E-cology Flaw Exploited Through Debug API Endpoint
A critical bug in Weaver E-cology, known as CVE-2026-22679, is being actively exploited - allowing hackers to take full control of your system with a CVSS score of 9.8. This severe vulnerability lets attackers execute commands without needing login credentials, putting your entire system at risk.
Instructure Data Breach Exposes Sensitive Information
A massive data breach at Instructure has potentially exposed the sensitive information of 275 million individuals, making it one of the largest breaches in recent weeks. The incident, which was disclosed on May 1, is still under investigation, with the company working closely with experts to contain the damage and keep users informed.
Cyber Resilience Becomes Imperative for GEOINT Firms
In today's digital landscape, cyber resilience has become a top priority for GEOINT firms, enabling them to operate seamlessly even when security controls fail. With their vast global reach and complex orbital infrastructure, these firms face a massive attack surface that spans satellites, ground stations, and cloud platforms.
US Government Faces Crucial Overhaul Beyond Restoration
The US government's damage runs far deeper than a simple fix, with over 200,000 federal jobs eliminated and critical programs gutted - a daunting reality that demands more than just a Band-Aid solution. Former Transportation Secretary Pete Buttigieg warns that piecing together the fragments won't be enough to restore the country to its former state.
India Bolsters Nuclear Deterrent with Third SSBN Submarine
Meet INS Aridhaman, India's game-changing submarine that boasts double the missile capacity of its predecessors, thanks to its eight vertical launch tubes, revolutionizing the country's sea-based nuclear deterrent capabilities. This upgraded vessel displaces 7,000 tonnes submerged and can carry powerful K-4 missiles with a range of 3,500 km or 24 K-15 missiles with a range of 750 km.
Israel Bolsters Aerial Refueling with KC-46 Tanker Delivery Imminent
Israel is on the cusp of a major aerial refueling boost with the imminent delivery of its first KC-46A Pegasus tanker, dubbed Gideon, which has just completed its maiden flight in the US. The aircraft is expected to land in Israel in approximately one month.
Australia's Northern Economies Require Security-Focused Boost
With a severe shortage of workers in the Northern Territory, where only 7% of employers feel adequately staffed, the region is crying out for a security-focused boost to attract and retain the 14,000 extra workers it desperately needs over the next five years. Labour shortages are already crippling key industries like mining, construction, and hospitality, with flow-on effects that threaten the region's economic growth.
US Launches Project Freedom to Secure Strait of Hormuz Shipping Lane
The US has launched Project Freedom, a defensive operation aimed at safeguarding commercial ships passing through the Strait of Hormuz, with a robust defense system featuring advanced destroyers, aircraft, and 15,000 service members. This multi-layered effort will provide a secure umbrella for vessels and US forces, ensuring safe passage through this critical shipping lane.
US Helicopters Disrupt Iranian Boat Threat in Strait of Hormuz
In a bold move to safeguard global shipping, US helicopters swiftly neutralized a threat from six Iranian boats in the Strait of Hormuz, showcasing the country's formidable military capabilities. This decisive action is part of Project Freedom, a robust defense initiative launched to ensure safe passage through the critical waterway.
Pentagon Pursues Autonomous Drones with Self-Organizing Capabilities
The Pentagon is revolutionizing drone warfare with a bold $54 billion proposal to develop autonomous drones that can self-organize, aiming to drastically reduce the 150-strong teams currently needed to operate just one Predator combat air patrol. This game-changing tech could shatter personnel constraints and unlock new possibilities for modern military operations.
Linux Vulnerability 'Copy Fail' Exposes High-Severity Risk
A newly discovered Linux vulnerability, dubbed "Copy Fail," poses a high-severity risk, allowing authenticated local users to gain root access and take total control of a system. This alarming flaw, tracked as CVE-2026-31431, has already moved from discovery to exploitation in the wild.
Polymarket Exposes Vulnerabilities in Event Verification Process
Polymarket's event verification process has exposed a glaring vulnerability, highlighting the risks of tying prediction market outcomes to fragile and easily manipulated sources of information. This weakness has even led to alarming threats against journalists, underscoring the urgent need for a more robust verification system.
OpenAI Bolsters Cyber Defenses for Government Agencies
OpenAI is stepping up its game to protect government agencies from cyber threats by expanding its Trusted Access for Cyber program to federal, state, and local defenders. This move aims to bolster cyber defenses and keep sensitive information safe.
Nation-State Hackers Target Small Defense Firms' Network Gaps
Small defense firms are leaving themselves exposed to nation-state hackers, who exploited over 14 zero-day vulnerabilities in edge devices like routers and firewalls in 2025 to gain a foothold in the US defense industrial base. These stealthy cyber espionage groups are investing heavily in reconnaissance and pre-positioning operations to infiltrate and linger in their targets' networks.
Grinex Shutdown Won't Curb Russian Sanctions Evasion
The shutdown of Grinex, a Kyrgyzstan-registered cryptocurrency exchange, highlights the cat-and-mouse game of sanctions evasion, where experts warn that the ecosystem's fragmentation will only make it harder to track illicit activity. As Kaitlin Martin, a senior intelligence analyst at Chainalysis, notes, a fractured ecosystem makes it increasingly difficult to target evasive maneuvers.