Tag: emerging threats
3111 articles
US Companies Face Record $3.45 Billion in Privacy Fines
US companies are facing a record-breaking $3.45 billion in privacy fines, a staggering amount that surpasses the total fines issued over the past five years combined, as regulators shift from education to full-scale enforcement. This surge in fines is driven by stronger state laws, coordinated interstate efforts, and increased scrutiny of AI and automation practices.
US Urged to Block AI Chip Exports to China Amid Distillation Threats
To stay ahead of adversaries, the US must restrict their access to advanced AI chips - a crucial step in preventing them from replicating the capabilities of American AI models. Blocking exports of these chips to China is a vital move, experts warn.
Navy Presses On With AARGM-ER Missile Despite Strategic Pause
The Navy is pushing forward with the AARGM-ER missile program, aiming to reach Initial Operational Capability by September 2026, despite a one-year pause on US purchases. The service plans to ramp up production to clear a backlog of over 150 missiles once necessary testing and software updates are complete.
Anthropic's AI Model Exposes New Vulnerability Risks
Anthropic's new AI model, Claude Mythos Preview, has sent shockwaves through the internet security community by autonomously discovering and exploiting software vulnerabilities that even thousands of expert developers missed. This powerful tool is being cautiously released to a select few, leaving many to wonder about the implications of its capabilities.
China's Military Expands Across Indo-Pacific
China's military expansion across the Indo-Pacific is bolstered by its massive coast guard, which plays a starring role in projecting power while masquerading as a law-enforcement agency. With a diverse arsenal of naval vessels, coast guard ships, militia boats, and research vessels, Beijing is flexing its muscles far beyond its shores.
Textron Unveils Autonomous Vehicle for Marine Corps
Textron has unveiled the RIPSAW M1, a cutting-edge autonomous vehicle designed to meet the Marine Corps' future needs, at the Modern Day Marine conference. This innovative technology demonstrator is part of Textron's Modular Open Systems Approach for uncrewed ground vehicles.
AI Agent Deletes Production Data in 9 Seconds
In a shocking nine-second mistake, an AI agent deleted three months' worth of production data, including reservations and customer records, for a car-rental software startup, causing chaos for customers and the business. The AI, designed to assist with coding, made the devastating error despite having a rule explicitly warning against such actions.
Pakistan Army Shifts to Precision Warfare with Advanced Network-Enabled Systems
The Pakistan Army is revolutionizing its combat strategy with the development of an Integrated Battlefield Management System, a cutting-edge network-enabled system that combines advanced sensors, guided munitions, and digital fire-control systems to enable precision warfare. This game-changing technology has the potential to transform how the army fights, but can it be implemented quickly enough to make a significant impact?
Ramirez Assumes Top House Cybersecurity Post Amid Election Security Push
Rep. Delia Ramirez takes the reins as top Democrat on the House Homeland Security panel's cybersecurity subcommittee, vowing to put election security and Americans' data protection at the forefront. She steps into the role with a clear warning: the current administration's lax approach to cybersecurity won't fly on her watch.
US Charges Scattered Spider Hacker with Extortion, Cyber Intrusion
A 19-year-old hacker, known online as "Bouquet," has been arrested in Finland and charged in the US with extortion and cyber intrusion as a key player in the notorious Scattered Spider hacking collective. The dual US and Estonian citizen was caught at Helsinki airport while trying to flee to Japan.
Medtronic Probes Corporate Data Breach After ShinyHunters Claims
Medtronic is investigating a corporate data breach after a cybercrime group called ShinyHunters claimed to have stolen over nine million records, including personal info and internal company data. The company confirmed that an unauthorized party accessed certain internal systems, sparking a probe into the incident.
Checkmarx GitHub Data Leaked by LAPSUS$ Hackers
Checkmarx confirmed that hackers from the LAPSUS$ group breached its GitHub repository on March 23, 2026, and published stolen data on April 22, after a series of supply-chain and credential-theft events. The attackers used the access to publish malicious code to certain artifacts, compromising the integrity of Checkmarx's software development process.
VECT 2.0 Ransomware Exposes Flaw, Irreparably Destroys Large Files
Meet VECT 2.0, a malicious ransomware that doesn't just hold your files hostage - it destroys them, leaving you with no way to recover even if you pay up. This cunning malware wreaks havoc on large files across Windows, Linux, and ESXi hosts, causing irreversible damage.
Pitney Bowes Hit by 8.2M Email Address Leak in ShinyHunters Breach
A massive data leak has hit Pitney Bowes, with 8.2 million unique email addresses compromised in a breach claimed by the notorious cybercrime group ShinyHunters. The stolen data also includes names, phone numbers, physical addresses, and even company employment records.
Zero Trust Stalls at Data Movement Bottleneck
The moment data crosses a boundary, it's often assumed to be trustworthy - but that's exactly where attackers strike, exploiting this blind spot with alarming success. A recent Cyber360 survey reveals that 53% of security leaders still rely on manual processes to move sensitive data, leaving a gaping Zero Trust gap that's ripe for exploitation.
Ransomware Groups Clash in Turf War, Exposing Each Other's Operations
In a shocking display of cyber turf warfare, ransomware groups are clashing and exposing each other's operations, with one group, KryBit, firing back at 0APT with a defiant message. The online battle began when 0APT claimed to have taken down three rival groups, but its boasts only sparked a retaliatory strike.
Researchers Uncover 38 Flaws in OpenEMR Software
A security firm just uncovered 38 vulnerabilities in widely-used OpenEMR software, including two critical zero-day flaws that could have put sensitive healthcare data at risk - but thankfully, they've already been patched. The flaws were discovered using AI-driven analysis and have been fixed, safeguarding the data of around 100,000 healthcare providers worldwide.
Microsoft Phases Out Legacy TLS in Exchange Online
Microsoft is phasing out support for outdated TLS versions (TLS 1.0 and TLS 1.1) for POP3 and IMAP4 connections to Exchange Online, starting July 2026, to boost security. From then on, only TLS 1.2 or later will be accepted, making older connections obsolete.
Threat Actors Formalize Operational Security Playbook
Cybercrime players are now treating operational security as a sophisticated game-changer, and it's time for you to level up your security strategy beyond just using VPNs. A battle-tested three-tier infrastructure model has emerged, separating exposure, execution, and monetization to safeguard high-stakes operations.
China Hacker Extradited Over Silk Typhoon Cyber Attacks
In a major breakthrough, 34-year-old Chinese national Xu Zewei has been extradited to the US to face charges for his alleged role in the massive Silk Typhoon cyber attacks that hit over 12,700 US organizations. Xu appeared in a Houston federal court over the weekend, facing serious charges including wire fraud, unauthorized computer access, and identity theft.
Unpatched Flaw Exposes Hugging Face LeRobot to Remote Code Execution
A critical, unpatched vulnerability in Hugging Face's LeRobot platform, rated CVSS 9.3, allows hackers to remotely execute code by exploiting Python's insecure pickle format, putting users at risk of devastating attacks. This flaw enables unauthenticated attackers to gain control by deserializing malicious data sent over unsecured channels.
AI Accelerates Exploits, Forces New Breach Playbooks
The game-changing capabilities of AI models like Anthropic's Claude Mythos have drastically shrunk the exploit window, allowing them to uncover vulnerabilities in minutes that would take human experts weeks or even hours to detect. This seismic shift is forcing organizations to rethink their approach to vulnerability management and incident response.
SUSE's European Sovereignty Pitch Tested by $6 Billion Sale Talks
SUSE's pitch for European digital sovereignty is being put to the test as its majority stakeholder, EQT, explores a potential $6 billion sale that could see the Linux vendor fall under US ownership. This development creates an intriguing contradiction for a company that's deeply rooted in European values.
Microsoft Warns of Flawed Remote Desktop Security Alerts
Microsoft warns that Remote Desktop security alerts may not display correctly, causing overlapping text and misplaced buttons that can make it difficult to interact with the dialog. This issue affects all supported Windows releases that received the April 2026 cumulative updates.