Tag: emerging threats
3126 articles
CISOs Face New Era of AI-Driven Threats
The old security measures are no longer enough - a 'passed' audit only tells you where you've been, not where you are now, in a threat landscape rapidly changed by AI-driven attacks. Advanced AI tools can now discover and exploit weaknesses at unprecedented speeds and scales, outpacing traditional security methods.
Wi-Fi Encryption Flaws Expose Enterprises to AirSnitch Attacks
Enterprises are in grave danger of being hacked through their Wi-Fi networks, as newly discovered AirSnitch attacks can bypass WPA2 and WPA3-Enterprise encryption, exposing sensitive credentials and backend systems to both insider and remote threats. This critical vulnerability undermines the very foundations of wireless network security.
China Fuels Iran's Conflict with Dual-Use Tech Transfers
China has reportedly supplied Iran with a commercial reconnaissance satellite, giving Tehran the capability to strike US military facilities in the Middle East with precision. This move has escalated tensions in the region, with Chinese companies Earth Eye Co and Emposat allegedly involved in the transfer.
AI Reshapes Cybersecurity With Renewed Focus on Fundamentals
Artificial intelligence is revolutionizing cybersecurity by refocusing efforts on timeless fundamentals, empowering agencies to make informed decisions with the help of established frameworks like the NIST Cybersecurity Framework. By layering new AI-related risks over existing ones, Cheri Pascoe, Director of the National Cybersecurity Center of Excellence at NIST, highlights the need for a strategic approach to tackle these emerging threats.
ICE Taps Graphite Spyware for Operations
US Immigration and Customs Enforcement (ICE) has confirmed it uses spyware from Israeli company Graphite, raising questions about the scope and implications of this partnership. The admission is a significant revelation, but many details remain unclear.
Phishing Attacks Exploit Email Blind Spots with Silent Subject Lines
Phishing attacks are on the rise, with a 13.9% surge in January and February, followed by a 7% increase in March, and cybercriminals are getting sneaky by using empty subject lines to bypass email defenses and pique human curiosity. By ditching the subject line, attackers are exploiting a blind spot that can trick both automated filters and human instincts.
npm Ecosystem Targets New Supply-Chain Attack to Steal Auth Tokens
Researchers have uncovered a sneaky supply-chain worm that can hijack auth tokens and spread malware through the npm ecosystem, putting countless packages at risk. This stealthy threat can inject itself into every package it can publish, creating a ripple effect of compromised code.
UK Judges Uphold Police Use of Live Facial Recognition in London
The High Court has ruled that the Metropolitan Police Service can continue using live facial recognition in London, confirming that the technology is lawful and effective in keeping the public safe. This decision is a major win for the MPS, which has been using LFR to tackle crime and protect Londoners.
France's ID Agency Probes Breach Claiming 19M Records Stolen
A massive data breach at France's ID agency may have exposed a staggering 19 million records, putting the personal info of nearly a third of the country's population at risk. The breach, detected on April 15, involves the theft of sensitive data, including login IDs, names, email addresses, and dates of birth.
Cross-App Permissions Expose Hidden Risks in AI-Driven SaaS Environments
Imagine a single security slip-up exposing 1.5 million API tokens and 35,000 email addresses, leaving AI agents and their users vulnerable to hijacking and misuse. The recent Moltbook breach reveals the hidden risks of cross-app permissions in AI-driven SaaS environments.
Google Deploys AI Security Agents to Counter Emerging Threats
Google is ramping up its cybersecurity game by deploying AI-powered security agents that can detect and fix threats at lightning-fast speeds, with human oversight to ensure these digital defenders stay on track. By leveraging its full AI stack, Google aims to stay ahead of emerging threats and revolutionize its defense strategy.
Lotus Wiper Malware Disrupts Venezuelan Energy Sector
Cybersecurity researchers uncovered a highly destructive malware, known as Lotus Wiper, that was used to disrupt Venezuela's energy sector in a targeted attack. This powerful data wiper was deployed in a series of devastating attacks at the end of 2025 and beginning of 2026.
Former Ransomware Negotiator Pleads Guilty to Aiding BlackCat Cyber Gang
A former ransomware negotiator turned rogue, Angelo Martino has pleaded guilty to aiding the notorious BlackCat cyber gang, betraying his employer and the industry he was meant to serve. By secretly collaborating with BlackCat, Martino launched devastating ransomware attacks, causing harm to innocent victims and lining his own pockets.
Microsoft Graph API Change Disrupts Universal Print Sharing
Microsoft revealed that a recent code change to the Microsoft Graph API caused a ripple effect, introducing a critical error that disrupted Universal Print sharing and left many users in a frustrating limbo. The error sparked a chain reaction, exposing a long-standing issue that prevented share operations from completing as expected.
Researchers Expose ProxySmart Software Behind Global SIM Farms
Meet ProxySmart, a sneaky software powering "SIM Farm as a Service" operations worldwide, with a massive footprint of 94 phone farms across 17 countries and 19 US states. Its creators, a Belarus-based vendor, have made it easy for operators to run mobile proxy infrastructure at commercial scale.
Harvester Malware Exploits Microsoft Graph API for Stealthy Linux Attacks
Meet Harvester, a stealthy espionage group believed to be state-backed, that's been secretly targeting telecommunications, government, and IT organizations in South Asia since 2021. Their latest trick? A Linux-capable GoGra backdoor that uses Microsoft Graph API for covert communications.
Terrarium Sandbox Flaw Enables Code Execution, Container Escape
A critical flaw in Terrarium's sandbox, rated 9.3 on the CVSS scale, allows attackers to break free from container constraints and execute code with root privileges. This alarming vulnerability, tracked as CVE-2026-5752, stems from a JavaScript prototype chain traversal that lets sandboxed code run amok on the host Node.js process.
Mustang Panda Expands LOTUSLITE Malware to Target India, Korea
Meet the evolved LOTUSLITE backdoor, now wielding dynamic DNS-based command-and-control over HTTPS, enabling its operators to remotely access and manipulate targeted systems for espionage purposes. This sophisticated malware supports remote shell access, file operations, and session management, a potent toolkit for data collection and access persistence.
Microsoft Disrupts ASP.NET Flaw Allowing SYSTEM Privilege Escalation
Microsoft has patched a critical ASP.NET Core vulnerability, CVE-2026-40372, that allowed unauthenticated attackers to forge authentication cookies and gain SYSTEM privileges on affected devices. This fix addresses a flaw in the ASP.NET Core Data Protection cryptographic APIs that could be exploited for privilege escalation.
UK Faces Rising Nation-State Cyber Threats Amid Tech Advances
The UK is bracing for a perfect storm of cyber threats, with the National Cyber Security Centre warning of a tumultuous decade ahead, driven by rapid technological change and rising geopolitical tensions. Nation-state threats from China, Russia, and Iran are already targeting UK firms, with 204 significant incidents recorded in the last review.
Unpatched SharePoint Servers Exposed to Ongoing Spoofing Attacks
Over 1,300 Microsoft SharePoint servers are still vulnerable to a spoofing attack, despite a security update being available since last week, leaving them exposed to ongoing exploitation by hackers. This comes after Microsoft warned that the CVE-2026-32201 vulnerability was exploited as a zero-day, and attackers are continuing to abuse it in widespread campaigns.
Mozilla Sees AI-Powered Bug Detection as Game-Changer for Security
Mozilla's CTO, Bobby Holley, exclaims that AI-powered bug detection is a game-changer for security, giving defenders a decisive edge. This innovative technology, tested on Firefox releases, has already uncovered hundreds of vulnerabilities, outpacing traditional automated fuzzers and human researchers.
US Navy Bolsters Air Defense with Patriot PAC-3 Missiles
The US Navy is taking a major leap forward in air defense with a new contract awarded to Lockheed Martin, integrating the advanced Patriot PAC-3 Missile Segment Enhancement (MSE) with the Aegis Combat System. This game-changing move, backed by a $1.73 billion budget, will equip the Navy with 405 cutting-edge PAC-3 MSE missiles.
Lawmakers Weigh Terrorism Labels for Hospital Ransomware Attacks
Lawmakers are considering slapping terrorism labels on ransomware attacks targeting hospitals, a move that could lead to severe penalties for those responsible, as Rep. Michael Guest says there should be no penalties too severe for individuals that target the healthcare system. This tough stance comes as experts and officials discuss ways to deter the growing threat of hospital ransomware attacks.