Tag: emerging threats
3121 articles
Flaws in EV Charger Security Expose Cities to Denial-of-Service Attacks
A security researcher recently demonstrated how easily electric vehicle chargers can be hacked, leaving cities vulnerable to denial-of-service attacks with just a few clicks. In a stunning Black Hat Asia presentation, he showed how typing a simple charger ID into a custom-built script could instantly render a charging port useless.
China Builds Covert Hacker Networks with Compromised Routers
China-nexus cyber actors have dramatically changed their game, ditching solo operations for massive networks of hacked devices - and it's a threat you need to know about. A joint advisory from top cyber agencies worldwide warns of this new tactic, urging vigilance in the face of large-scale cyber attacks.
Navy Overhauls Refueling Tactics Amid Iranian Attacks
When Iranian missile and drone attacks disrupted traditional refueling operations, the US Navy was forced to rethink its logistics strategy, shifting from fixed port hubs to a more agile approach using commercially chartered tankers to fuel ships at sea. This pivot, dubbed a move from port hubs to "tanker treadmills," has been a game-changer for keeping naval vessels operational in the region.
US Military Embraces Autonomous Weapons for Future Warfare
The US military is betting big on autonomous weapons, with Joint Chiefs Chairman Gen. Dan Caine declaring they'll be a crucial part of future warfare, driving innovation in areas like drones and command-and-control systems. Gen. Caine is pushing for a cultural shift within the Pentagon to fully harness the power of AI and autonomous technology.
Surveillance campaigns exploit telecom vulnerabilities with commercial tools
Researchers have uncovered a shocking truth: telecom vulnerabilities are being exploited by covert surveillance campaigns using commercial tools, putting global telecommunications security at risk. This alarming trend allows unknown parties to track targets undetected, highlighting a pressing need for tighter regulations.
US Navy Bolsters Drone Defenses with Hellfire Missiles
The US Navy is ramping up its drone defense capabilities by arming its defenses with Longbow Hellfire missiles, a move driven by recent operational experiences that highlighted the need for enhanced protection. This upgrade is part of a rapid fielding effort to bolster the defenses of its most advanced carrier strike groups.
New Malware ZionSiphon Targets Water Plants, Falls Flat
A new piece of malware called ZionSiphon, reportedly targeting Israeli water facilities, has been found to be surprisingly inept, with experts describing it as broken and showing little understanding of its supposed targets. The malware's code includes strings referencing the Israeli water sector and politically charged messaging, but its overall incompetence has downplayed initial alarm.
Army Explores Apache Helicopters as Counter-Drone Solution
A single idea from a seasoned warrant officer is revolutionizing the Army's approach to counter-drone warfare - and it all started with a bold proposal to repurpose Apache helicopters as drone hunters. This innovative concept has sparked a program of experimentation, Operation Flyswatter, which aims to provide a more economical and effective solution to combating unmanned aerial systems.
Hackers Exploit Cisco Firewalls with Persistent Backdoor
A custom implant called Firestarter can infiltrate Cisco network security devices, evading patches and routine reboots by manipulating device boot configuration to restore itself. Only a hard reboot, physically disconnecting the device from its power supply, can clear the persistence mechanism from memory.
US Targets Iran's Small Boats in Escalating Strait of Hormuz Conflict
President Donald Trump has ordered the US Navy to take drastic action against Iranian small boats laying mines in the Strait of Hormuz, vowing to shoot and kill any vessels involved. The US is also ramping up demining efforts in the strategic waterway, tripling its operations to ensure safe passage.
Vercel Breach Exposes Wider Fallout in Developer Ecosystem
A recent Vercel breach has sent shockwaves through the developer ecosystem, with threat intel revealing a sophisticated attack that distributed malware to hunt for valuable tokens and keys. The incident has had far-reaching consequences, impacting multiple downstream environments and a small number of accounts.
Pentagon Overhauls Counter-Drone Strategy After Ukraine-Style Exercise
The Pentagon has overhauled its counter-drone strategy after conducting a Ukraine-style exercise, dubbed Operation Clear Horizon, which simulated the "spiderweb" drone attacks used by Ukrainian forces against Russia. This hands-on test helped shape the military's priorities for countering the growing threat of drones.
Iran's IRGC Consolidates Power, Shuns US Talks
Behind the scenes, a powerful force is driving Iran's tough stance - and it's not what you might think. A new generation of hardline commanders has taken the reins within the IRGC, making diplomatic efforts like Pakistan's mediation a tough nut to crack.
Pentagon's Golden Dome Project Advances Amid Skepticism
The Pentagon's Golden Dome project is gaining momentum, with Gen. Michael Guetlein assuring the public that progress is being made, contracts are being awarded, and milestones are being met on schedule and on budget. The project aims to turn a high-profile national security concept into tangible reality.
US Misjudged Iran, Paving Way for Decades of Conflict
In 1977, President Jimmy Carter hailed Iran as an "island of stability" - a label that proved drastically off the mark just months later when mass demonstrations erupted, fueled by deep-seated economic and social divisions. His glowing praise of Shah Mohammad Reza Pahlavi's leadership had ominously overlooked the warning signs of a revolution brewing.
Frontier AI Exposes Gaps in Traditional Security Programs
Imagine having the power to replicate a full year’s worth of manual penetration testing in just three weeks - that's the reality with frontier AI, which has exposed significant gaps in traditional security programs. Palo Alto Networks and Unit 42 have revealed that advanced models like Anthropic Mythos can autonomously identify software vulnerabilities and adapt to defensive controls in near-real-time.
FBI Extracts Signal Messages from iPhone Push Notification Records
In a surprising forensic discovery, the FBI was able to extract Signal messages from an iPhone's notification database, even after the app was deleted, by exploiting a loophole that stores message previews on the lock screen. This finding raises significant concerns about iPhone users' message security.
Cloudsmith Bolsters Software Supply-Chain Security with $72M Raise
Cloudsmith just secured $72 million to supercharge its artifact management platform and take software supply-chain security to the next level. With a strong artifact management layer in place, companies can enjoy the added benefit of a secure software supply chain.
US Charges Chinese Nationals in Myanmar Scam Compounds
The US has charged two Chinese nationals, Jiang Wen Jie and Huang Xingshang, with running forced-labor scam compounds in Myanmar that targeted Americans to the tune of at least $7.2 billion in 2025. Authorities have also seized over 503 domains used to perpetrate the fraud, dealing a significant blow to the scam operations.
Scammers Exploit Trust in Remote Job Interviews
Boris Vujičić thought he had landed a legit remote job interview, but the scammers behind it expertly gained his trust, convincing him to let his guard down long enough to hack into his laptop. A fake LinkedIn recruiter, a professional website, and a convincing Zoom call with a person named Zam Villalon were all part of their clever scheme.
AMA Warns Congress of AI Chatbot Data Risks in Mental Health
The American Medical Association is urging Congress to set safeguards for AI chatbots offering mental health guidance, warning of potential risks if these tools aren't designed and deployed responsibly. Well-designed AI tools, however, can bring significant benefits to mental healthcare.
Germany Revives ISP Data Retention Mandate Amid Privacy Concerns
Germany's government is pushing for a new law that would require internet service providers to store customer connection data for three months to help combat online crimes, sparking concerns about privacy. The proposed mandate, justified as a way to keep the digital space safe from criminals, has been approved by the national cabinet and now awaits parliamentary approval.
China-Linked Hackers Exploit Global Infrastructure in Covert Network Attacks
Be on high alert: China-linked hackers are secretly building global covert networks using compromised routers and devices, putting anyone who's a target at risk of devastating cyber attacks and data theft. This sinister plot, revealed by a joint advisory from 16 government agencies worldwide, has far-reaching implications for organizations and individuals alike.
Chinese Hackers Exploit IoT Devices to Obscure Nation-State Attacks
Chinese hackers are sneaking nation-state attacks under the radar by hijacking everyday IoT devices, such as home routers and smart cameras, to hide their digital footprints. This stealthy tactic allows them to evade accountability and strike from the shadows.