Hyland, a provider of enterprise content management (ECM) solutions, is launching the Hyland Global Partner Network. This partner program is a reimagined program designed to help partners confidently build the next generation of the agentic enterprise, underpinned by Hyland’s content intelligence, industry-specific AI, and enterprise-grade governance. Why Hyland is unifying its partner base under new…
Category: AI
AI, Cybersecurity, Global Security News, Network Security
ChannelCon 2026 Agenda Centers on Practical Strategies for ITSPs
The Global Technology Industry Association (GTIA) has announced the agenda for ChannelCon 2026, with programming focused on AI, cybersecurity, sales, leadership, workforce transformation, and partner ecosystem growth. The event, themed “The Channel Effect,” will take place Aug. 3-5 at the Marriott Marquis San Diego Marina. Registration is open and free for GTIA members. GTIA said…
AI, Cloud Security, Cybersecurity, Endpoint, Global Security News
New SonicWall Channel Chief Leans on Partner Experience
SonicWall’s new SVP of global channels and alliances, Jonathan Berger, is stepping into the channel chief role with a perspective many vendor executives do not have: he has spent years on the partner side of the table. Berger, who joined SonicWall after years with Virtual Graffiti and BlueAlly, said that background is already influencing how…
AI, Cybersecurity, Exploits, Global Security News, malware, Network Security, Risk Management
29 Arrests, Nine Crime Groups Dismantled: Another Blow to Illegal Streaming
International Operation KRATOS led by Europol dismantled illegal streaming networks, leading to 29 arrests and nine crime groups taken down. An international law enforcement operation, codenamed Operation KRATOS and involving 13 countries (Belgium, Bulgaria, Croatia, France, Greece, Ireland, Italy, the Netherlands, Poland, Romania, Spain, the UK, and the US), spent seven months quietly dismantling the…
AI, china, Cloud Security, Cybersecurity, Europe, Exploits, Global Security News, Risk Management
Beware the ‘son of Mythos,’ security experts warn
LONDON — Enterprise security teams were urged by security experts at Infosecurity Europe to brace for impact as both Anthrophic and OpenAI expand access to their frontier AI models for vulnerability discovery. Anthropic, in particular, is significantly expanding Project Glasswing, its scheme to provide select organizations with access to Claude Mythos, an AI-powered vulnerability discovery tool…
AI, Global Security News, Risk Management
The modern-day business can learn a lot about risk from this year’s mega events
Every year brings its share of global events, but 2026 is proving to be a banner year for mega-scale entertainment. The year got off to a roaring start with the Winter Olympics, and now anticipation is building for the fast-approaching FIFA World Cup. But amid the buzz, have you ever paused to consider the staggering…
AI, Global Security News
Microsoft’s Coreutils for Windows, (Thu, Jun 4th)
I’ve been using the GnuWin32 CoreUtils for Windows for many years now (it gives you many *nix core commands on Windows). Microsoft has just released their coreutils version for Windows. You can install them with a winget command (winget install Microsoft.Coreutils) or with the installer released on GitHub. It takes just a few clicks: It installs…
AI, Global Security News, Government & Policy
DoJ Disrupts Southeast Asia Crypto Fraud Networks, Freezes $3.8 Million in Assets
The U.S. Department of Justice (DoJ) on Wednesday announced the results of a sweeping action undertaken by government authorities and private sector companies to combat cyber-enabled and cryptocurrency fraud targeting Americans. The “Disruption Week” operation began May 18, 2026, leading to the takedown of millions of social media, email, and internet access accounts used by…
AI, Compliance, Cybersecurity, Global Security News
Spotless compliance evidence can still hide a broken control
In this interview with Help Net Security, Marc Rubbinaccio, Head of Cybersecurity and Compliance at Secureframe, explains where security teams go wrong when preparing for CMMC and FedRAMP 20x. The conversation covers how organizations check the 110 requirements but miss the 320 assessment objectives beneath them, why spotless SOC 2 evidence can hide a broken…
AI, Global Security News, Network Security
Product showcase: Trend Micro Mobile Security detects scams in messages, QR codes, and websites
Trend Micro Mobile Security for iOS protects devices from potentially harmful websites while browsing, blocks ads and personal information trackers, helps users avoid unsafe Wi-Fi networks, and monitors data usage. The app is available for both iOS and Android devices. Getting Started After installing the app from the App Store, I created an account to…
AI, Apps, Global Security News
ETSI sets security requirements for AI data centers and cloud platforms
ETSI has published TS 104 033, a technical specification that defines security requirements for AI computing platforms. The specification establishes a security framework for platforms used to host AI applications in data center and edge computing environments, covering security functions, platform components, interfaces, and services designed to protect AI models, datasets, training processes, and inference…
AI, Global Security News
AI saves workers a day a week, but they don’t know what to do with it
A report released Wednesday by Boston Consulting Group (BCG) indicates that many organizations are having difficulty converting efficiency gains that are AI-driven into any sort of measurable value. The fourth edition of the consultancy’s annual Global AI at Work Survey reveals 42% of frontline employees who use AI on a regular basis save upwards of…
AI, Global Security News
Meta Keeps Delaying the Release of Its New AI Model to Developers
The shifting timeline is a setback for Meta’s ability to monetize its massive investments in building frontier AI models.
AI, Apps, Cybersecurity, Endpoint, Exploits, Global Security News, Risk Management
Hole in GitHub’s browser-based VSCode editor could lead to stolen token
A vulnerability in GitHub’s browser-based VSCode editor could lead to the theft of a developer’s token under certain circumstances, says a researcher. The issue, revealed this week in a blog by Ammar Askar, has apparently been already addressed by GitHub owner Microsoft. But it raises a questions about both DevOps security, and about the researcher’s…
AI, Global Security News, Network Security
Enterprise Spotlight: Rethinking cloud strategy in the age of AI
Cloud computing has reached a crossroads. The high cost and data sensitivity of AI workloads are raising the appeal of private clouds, even as neoclouds and sovereign clouds shake up the cloud provider landscape. New cyberthreats, shifting compute requirements, and management complexity are adding to cloud complications. Download the June 2026 issue of the Enterprise…
AI, Global Security News
SoftBank CEO’s Bad Bets Left Him in Despair. An AI Spree Has Him Back on Top.
Masayoshi Son said that his Tokyo-based technology conglomerate would unleash at least $52 billion of investment in French data centers.
AI, Global Security News
You do surprise me.exe: An unexpected executable in Hola Browser
Following a certification test, Sophos X-Ops found an unexpected guest had hitched a ride Categories: Threat Research Tags: Crypto mining, Supply chain
AI, Cybersecurity, Global Security News, Network Security
Smashing Security podcast #470: This AI security flaw might be impossible to fix
A website called “UK visa portal” has been quietly collecting passport scans, selfies, and personal data from thousands of travellers who thought they were applying through official channels. They weren’t. And when a journalist tried to warn the company, it was lawyers who responded. Meanwhile, a paper from Cornell suggests that prompt injection – the…
AI, Global Security News
Acer addresses critical zero-day vulnerabilities in Wave 7 routers
The first vulnerability, CVE-2026-49200, is a broken access control flaw that allows unauthenticated attackers to access plaintext credentials from log archives, potentially leading to unauthorized system access.
AI, Europe, Global Security News, Network Security
European authorities crack down on illegal streaming networks
Authorities in Europe arrested 29 alleged cybercriminals and took down more than 27,000 illegal streaming URLs that pirated major sporting events, films and TV programming, Europol said Wednesday. The continent-wide collaboration, led by Bulgaria and the European Union’s police agency, allowed authorities to dismantle nine organized crime groups supporting the illicit streaming networks, officials said.…
AI, Exploits, Global Security News
Cisco Cloud Control AI defense suite aims to counter Mythos-level threats
Cisco’s new Cloud Control suite enables businesses to create AI agents designed to monitor systems and block potential exploitation attempts.
AI, Endpoint, Global Security News, malware
Attackers Use AI to Automate EDR Evasion Testing
Python scripts were used to test malware against endpoint detection and response agents from Sophos, CrowdStrike, and Windows Defender.
AI, Global Security News
The U.S. sanctions Nobitex crypto exchange used by ransomware
The U.S. Treasury’s Office of Foreign Assets Control (OFAC) has announced sanctions against Nobitex, Iran’s largest cryptocurrency exchange, for facilitating payments related to terrorist activities. […]
AI, Global Security News
Trump executive order on AI calls for voluntary 30-day review period
Trump AI order proposes a 30-day voluntary review of frontier models before public release.
AI, Global Security News, Network Security
Anthropic Gives Claude Partners New Hub, Services Tiers
Anthropic announced two major additions to its Claude Partner Network on Wednesday: a tiered Services Track and a new Claude Partner Hub, both designed to help enterprises identify qualified partners to deploy and manage Claude-powered AI systems. The move builds on the Claude Partner Network, launched in March, which Anthropic backed with a $100 million…
AI, Cybersecurity, Funding, Global Security News, Government & Policy, Network Security
DHS Secretary Markwayne Mullin pinpoints optimal CISA staffing levels
Department of Homeland Security Secretary Markwayne Mullin told Congress Wednesday that the Cybersecurity and Infrastructure Security Agency would ideally have 2,800 personnel, up from approximately 2,200 now and down from 3,400 before the second Trump administration began. President Donald Trump has pushed to dramatically reduce personnel numbers at the agency, something that has drawn criticism…
AI, Endpoint, Global Security News, Network Security
Cyber espionage campaign targeted stock exchange executive’s Outlook account
Attackers spent five months silently stealing emails from a stock exchange executive’s Outlook account in a suspected espionage operation. A threat actor quietly sat inside a senior executive’s Outlook account at a major global stock exchange for roughly 150 days, from October 2025 to March 2026. Broadcom’s Symantec and Carbon Black threat-hunting team investigated the…
AI, Compliance, Global Security News, Network Security, Risk Management
SEON Launches AI Fraud Tools with New MCP Server
Fraud prevention startup SEON has launched its new MCP server, along with two new platform capabilities, Network Detection and AI Chart Builder, further connecting its existing automation and business intelligence features. Alongside these features, the company has introduced an AI Playbook for Risk and Compliance Teams, providing customers with a practical starting point to quickly…
AI, Cybersecurity, Global Security News
Google DoubleClick Abused in New Malspam Campaign to Deliver DesckVB RAT
Cybersecurity researchers have flagged a new malspam campaign that makes use of Google’s DoubleClick domain as a way to evade detection and ultimately deliver a remote access trojan (RAT) named DesckVB RAT. “Before the victim ever reaches attacker-controlled infrastructure, the lure routes through DoubleClick, a legitimate Google-owned domain that many security tools are less likely…
AI, Apps, Cloud Security, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
Cloud Security Alliance Report Highlights Growing Patch Gap Risks
Despite years of investment in vulnerability scanning and shift-left security practices, known vulnerabilities continue to drive production security incidents, according to the Cloud Security Alliance’s 2026 State of Modern Application & AI Security Report. As AI accelerates both vulnerability discovery and exploit development, organizations are facing increasing pressure to reduce exposure windows before attackers can…
AI, Global Security News
79% of companies say they’re ready to detect AI bots, 23% actually are
Here’s how we can close the AI bot detection gap in a way that works.
AI, APAC, Cybersecurity, Europe, Global Security News, Government & Policy
Eu sets out plans to reduce reliance on US cloud providers
The European Union has now published a set of measures aimed at boosting Europe’s tech industry to help reduce reliance on US and Chinese suppliers for AI, cloud, and semiconductors. The proposals include rules to restrict the use of US hyperscalers for certain public sector procurement purposes, but stop short of banning them outright. “Technological…
AI, Exploits, Global Security News
Microsoft responds to security challenges facing code, AI agents, and models
Microsoft has introduced a series of security tools and capabilities focused on AI-driven vulnerability discovery, AI agents, and AI models. The updates include a multi-agent vulnerability discovery system, new controls for managing and securing AI agents, data protection capabilities, and tools designed to identify potentially vulnerable or compromised AI models before deployment. MDASH targets exploitable…
AI, Apps, Cybersecurity, Global Security News
Top AI Pentesting Tools for Cloud-Native Applications
Compare AI pentesting tools for cloud-native applications and see why Aikido is the best overall option for teams that want deeper coverage, lower noise, and efficiency. What a good answer looks like A good answer for AI pentesting tools for cloud-native applications should name tools, but it should also explain how to choose. The real…
AI, Exploits, Global Security News, Government & Policy, malware, Network Security, Russia
Russia’s FSB Says Foreign Spies Infected Officials’ Phones With Malware
Russia’s FSB claims foreign intelligence planted malware on senior officials’ phones to intercept calls and activate cameras. No technical evidence, no country named. On June 2, 2026, Russia’s Federal Security Service (FSB) published a statement claiming it had uncovered and documented a large-scale foreign intelligence operation targeting the mobile devices of senior Russian officials. The…
AI, china, Europe, Global Security News, malware
China-Linked TA4922 Hackers Target UK, Europe With New SilentRunLoader Malware
Proofpoint says TA4922, a suspected China aligned cybercrime group, is targeting UK and European organisations with tax, payroll and benefits themed malware campaigns.
AI, Europe, Global Security News
Infosecurity Europe: Vulnerability Management Innovator Konvu Wins Cyber Startup Award
Inaugural Infosecurity Europe Cyber Startup Award Winner Impresses Panel with Ability Help Prioritize Vulnerabilities in AI era
AI, Cybersecurity, Global Security News
Corporate OSINT for Defensive Exposure Management: Mapping Public Attack Surface Before Adversaries Do
In this post, I will discuss about corporate OSINT for defensive exposure management and reveal mapping public attack surface before adversaries do. Modern attack surface management is no longer limited to ports, banners, and internet-facing servers. For many organizations, the most useful information available to an adversary is not a vulnerable service at all. It…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Government & Policy, Network Security, Risk Management
Trump Signs Executive Order Creating Voluntary AI Security Review Framework
President Trump has introduced a new executive order aimed at strengthening oversight of advanced AI models without imposing new regulations on tech companies. The order establishes a voluntary framework that allows developers of powerful AI models to share systems with the federal government for security reviews before public release. “The United States continues to lead…
AI, Apps, Cybersecurity, Funding, Global Security News
Coralogix Lands $200M to Scale AI-Era Observability Platform
Coralogix, a data and AI observability platform provider, has raised $200 million in Series F funding. The round was led by Advent and CPPIB, with participation from Greenfield and Brighton Park Capital, bringing total funding in Coralogix to $550M. Coralogix raises new Series F funding According to the company, the Series F builds on the…
AI, Cybersecurity, Global Security News
One-Click GitHub Dev Attack Lets Attackers Steal Full GitHub OAuth Tokens
Cybersecurity researchers have disclosed a one-click attack via Microsoft Visual Studio Code (VS Code) that makes it possible to steal a user’s GitHub token. “Just by clicking a link, it’s possible for an attacker to steal a GitHub token that can read and write to your repos, including private ones,” security researcher Ammar Askar said.…
AI, Compliance, Europe, Global Security News
EQT Taps Google Cloud to Scale AI Across Portfolio
Google Cloud just teamed up with EQT to roll out AI across its portfolio companies. On its own, that’s not especially surprising. Big cloud provider, big private equity firm, lots of AI – all of this tracks. What’s more intriguing here is the scale and how this actually plays out. EQT isn’t just one company;…
AI, Exploits, Global Security News, Network Security
Autonomous AI-driven worm can reason its way through corporate networks
Researchers at the University of Toronto, the Vector Institute, and the University of Cambridge have built and tested a proof-of-concept AI-driven worm that does not operate on a fixed list of exploits. Instead, it analyzes each target it encounters, reasons about how to attack it, and creates a strategy on the fly, all with the…
AI, Global Security News, malware
Malware campaign targeting Minecraft users infects over 116,000 systems
A Malware-as-a-Service (MaaS) operation named WeedHack is targeting Minecraft users and allows threat actors to gain remote access to victims’ screens, webcams, and files through a web-based dashboard, McAfee researchers found. Minecraft, developed by Mojang Studios and released in 2011, is one of the best-selling video games of all time, with more than 350 million…
AI, Global Security News
Extending Zero Trust Across the Agentic AI Workflow
Cisco Secure Access extends SSE and identity controls to agentic AI, helping organizations govern agent actions across models, MCP tools, APIs, and web.
AI, Compliance, Exploits, Global Security News, Network Security, Risk Management
Microsoft wants to put AI agents on a short leash
As enterprises race to adopt AI agents across software development workflows, Microsoft is rolling out new controls aimed at keeping the transformation from becoming a security headache. At its annual developer conference, Microsoft Build, the company unveiled a set of initiatives, including a brand new runtime containment offering, Microsoft Execution Container (MXC), for agentic AI…
AI, Compliance, Exploits, Global Security News, Network Security, Risk Management
Microsoft wants to put AI agents on a short leash
As enterprises race to adopt AI agents across software development workflows, Microsoft is rolling out new controls aimed at keeping the transformation from becoming a security headache. At its annual developer conference, Microsoft Build, the company unveiled a set of initiatives, including a brand new runtime containment offering, Microsoft Execution Container (MXC), for agentic AI…
AI, Compliance, Exploits, Global Security News, Network Security, Risk Management
Microsoft wants to put AI agents on a short leash
As enterprises race to adopt AI agents across software development workflows, Microsoft is rolling out new controls aimed at keeping the transformation from becoming a security headache. At its annual developer conference, Microsoft Build, the company unveiled a set of initiatives, including a brand new runtime containment offering, Microsoft Execution Container (MXC), for agentic AI…
AI, Data Breaches, Exploits, Global Security News, Network Security
Beyond the Zero-Day: See Your Network Like an Attacker | Webinar with HD Moore
Assume the breach. Zero-days keep shipping, AI is writing exploits faster than anyone patches, and “patch everything in time” stopped working years ago. Stop betting the org on winning that race. You don’t control which bug lands. You control what it can reach once it does. That is a question about the shape of your…
AI, Global Security News
Alcasec, “Robin Hood of Spanish Hackers,” Jailed for 31 Months Over Data Theft
Alcasec, the “Robin Hood of Spanish Hackers,” is jailed for 31 months after admitting to stealing and selling Spanish citizens’ banking data.
AI, Global Security News
Alcasec, “Robin Hood of Spanish Hackers,” Jailed for 31 Months Over Data Theft
Alcasec, the “Robin Hood of Spanish Hackers,” is jailed for 31 months after admitting to stealing and selling Spanish citizens’ banking data.
AI, APAC, Global Security News
After a quick 1.1M sales, MacBook Neo set to reshape the PC industry
Apple’s MacBook Neo appears to be a triumph of strategic disruption that has already cast shock waves across the industry — and that energy is still playing out. Approximately 55,000 MacBook Neo computers have been sold every day since it was introduced in March, according to IDC data (as first noted by TechCrunch). In fact, it looks as if Apple sold 1.1…
AI, Apps, Endpoint, Global Security News, privacy
RTX Spark may split the AI PC market into mainstream laptops and premium workstations
Nvidia’s RTX Spark could give PC makers a new high-end category, built around machines that run more demanding AI workloads locally rather than in the cloud. The chipmaker and Microsoft said RTX Spark Windows PCs will be built for personal AI agents and heavier local AI workloads, from AI development to engineering and content creation.…
AI, Global Security News, Risk Management
Only 11% of production agents pass the AI agent security bar
Enterprise teams are running AI agents that write code, drive browsers, answer customer calls, manage cloud infrastructure, and query data warehouses with standing credentials. A new independent assessment of 100 production agents finds that nearly all of them carry the conditions for a single hostile document to take them over. The AI Risk Quadrant (AIRQ)…
AI, Global Security News
Trump Signs Order Inviting Voluntary Review of Frontier AI Models
Trump’s executive order invites voluntary pre-release review of frontier AI models
AI, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management
U.S. CISA adds Android and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Android and Linux Kernel flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: CVE-2022-0492 (CVSS score of 7.0) Linux Kernel Improper Authentication…
AI, Compliance, Cybersecurity, Exploits, Global Security News, malware, Network Security, Risk Management
Release Notes: Decision-Ready SOC Reporting, Elastic Security Integration, and 1400+ Threat Coverage Updates
Security leaders are under growing pressure to reduce the time between threat detection and response without adding more complexity to already overloaded SOC workflows. ANY.RUN’s May updates help teams act on security risks more efficiently, improve consistency across investigations, and maintain stronger protection as attacker tactics continue to evolve. Discover the updates your team can…
AI, Cybersecurity, Exploits, Global Security News
Unpatched Windows Search URI Vulnerability Lets Attackers Steal NTLMv2 Hashes
Cybersecurity researchers have disclosed details of an unpatched issue that could be exploited to disclose a user’s NTLMv2 hash to the attacker. Like in the case of CVE-2026-33829, which impacted the Windows Snipping Tool’s ms-screensketch: URI handler, the newly flagged issue resides in the search: URI handler, per Huntress. CVE-2026-33829 refers to a spoofing vulnerability…
AI, Global Security News
Global Stock Exchange Hit by Monthslong Email Campaign
A threat actor got a near-continuous view into an influential finance executive’s email inbox, thanks to clever use of legitimate, native Windows tools.
AI, Global Security News
Global Stock Exchange Hit by Monthslong Email Campaign
A threat actor got a near-continuous view into an influential finance executive’s email inbox, thanks to clever use of legitimate, native Windows tools.
AI, Cybersecurity, Data Breaches, Global Security News, Risk Management
AI may finally unlock the cyber budgets CISOs have wanted for years
For nearly two decades, cybersecurity leaders have faced the same reality: No matter how catastrophic the latest breach, ransomware attack, or nation-state intrusion, security spending often struggled against competition with every other business priority. AI may finally be changing that equation. The rapid emergence of frontier AI systems capable of autonomous cyber operations — combined…
AI, Global Security News
Market-Research Firm AlphaSense Clinches $7.5 Billion Valuation in New Funding Round
Firm raises $350 million from investors including Accenture and JPMorgan’s asset-management unit.
AI, Global Security News
Market-Research Firm AlphaSense Clinches $7.5 Billion Valuation in New Funding Round
Firm raises $350 million from investors including Accenture and JPMorgan’s asset-management unit.
AI, Cybersecurity, Data Breaches, Global Security News, Risk Management
AI may finally unlock the cyber budgets CISOs have wanted for years
For nearly two decades, cybersecurity leaders have faced the same reality: No matter how catastrophic the latest breach, ransomware attack, or nation-state intrusion, security spending often struggled against competition with every other business priority. AI may finally be changing that equation. The rapid emergence of frontier AI systems capable of autonomous cyber operations — combined…
AI, Cybersecurity, Data Breaches, Global Security News, Risk Management
AI may finally unlock the cyber budgets CISOs have wanted for years
For nearly two decades, cybersecurity leaders have faced the same reality: No matter how catastrophic the latest breach, ransomware attack, or nation-state intrusion, security spending often struggled against competition with every other business priority. AI may finally be changing that equation. The rapid emergence of frontier AI systems capable of autonomous cyber operations — combined…
AI, Global Security News
A retro-geeky Android home screen remix
One of the best parts about using Android is the good old-fashioned geeky fun that comes with finding new ways to improve your digital environment — and improve your day-to-day efficiency. That capability manifests itself in all sorts of interesting freedoms that (cough, cough) other mobile platforms don’t trust their users enough to allow —…
AI, Apps, Cybersecurity, Exploits, Global Security News, Government & Policy
Google Patches Actively Exploited Android Flaw Affecting Millions of Devices
Google fixed 124 Android flaws, including CVE-2025-48595, an actively exploited privilege escalation bug linked to targeted attacks. Google has released its June 2026 Android security updates, fixing 124 vulnerabilities across the mobile operating system. One flaw, tracked as CVE-2025-48595 (CVSS score of 8.4) stands out from the rest because it is already being exploited in…
AI, Global Security News
Infosecurity Europe: Patch Responsibility Remains Up for Grabs as AI Unearths Decades of Flaws
The emergence of AI models capable to autonomously find and fix vulnerabilities at scale is having a significant impact on patching management, experts say
AI, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
Lessons from the Canvas cyberattack
Canvas cyberattack: Who, what, when, how? What and when? Over May 6 and 7, 2026, Canvas learning management system (LMS) users were served up a defaced web page in place of the expected login page. The altered web page displayed a warning by the ShinyHunters criminal hacker and extortion group advising of the Instructure compromise.…
AI, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
Lessons from the Canvas cyberattack
Canvas cyberattack: Who, what, when, how? What and when? Over May 6 and 7, 2026, Canvas learning management system (LMS) users were served up a defaced web page in place of the expected login page. The altered web page displayed a warning by the ShinyHunters criminal hacker and extortion group advising of the Instructure compromise.…
AI, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
Lessons from the Canvas cyberattack
Canvas cyberattack: Who, what, when, how? What and when? Over May 6 and 7, 2026, Canvas learning management system (LMS) users were served up a defaced web page in place of the expected login page. The altered web page displayed a warning by the ShinyHunters criminal hacker and extortion group advising of the Instructure compromise.…
AI, Global Security News
New Android feature promises to spot deepfake scam calls
Android is introducing fake call detection to help protect users from impersonation scams. The feature can detect and flag suspected spoofed calls when both parties use Phone by Google on Android 12 or later. It will roll out globally this month, starting with Pixel devices. Story of two calls from “Mom” (Source: Google) “Fake call…
AI, APAC, Cybersecurity, Exploits, Global Security News
New HTTP/2 Bomb Vulnerability Allows Remote DoS on NGINX, Apache, IIS, Envoy & Cloudflare
Cybersecurity researchers have discovered a remote denial-of-service exploit that affects major web servers, including NGINX, Apache HTTPD, Microsoft IIS, Envoy, and Cloudflare Pingora. The vulnerability has been codenamed HTTP/2 Bomb by Calif. “The vulnerable behavior exists in each server’s default HTTP/2 configuration,” the company said, adding it was discovered by OpenAI Codex by chaining
AI, Apps, Global Security News
Microsoft Scout agent opens a new category of always-on Autopilots
Workplace AI assistants have mostly waited for a prompt before doing anything. A user asks, the tool answers, and the exchange ends there. Microsoft is putting a different kind of agent inside its Office applications, one designed to keep operating in the background once a person stops paying attention. The company introduced Microsoft Scout, calling…
AI, Cybersecurity, Global Security News, Government & Policy
Anthropic expands Project Glasswing to 150 organizations in more than 15 countries
Anthropic is expanding Project Glasswing, its cybersecurity initiative built around the Claude Mythos Preview model, by adding about 150 organizations following several weeks of work with its initial group of partners, security firms, open-source maintainers, and government agencies. Organizations joining the program must meet security requirements before gaining access, Anthropic noted. The expansion brings the…
AI, Global Security News
Infosecurity Europe: AI-Powered Cybercrime Tools Surge on Dark Web
Halcyon’s Cynthia Kaiser lifts the lid on the dark web market for AI cybercrime tools
AI, Global Security News
Critical Start expands MDR capabilities with multi-agent AI system
Critical Start has released SOC AI, a production-proven multi-agent framework powering its AI-led Managed Detection and Response (MDR). SOC AI coordinates ten specialized agents across the full alert investigation and response lifecycle, covering detection, triage, response, threat hunting, and continuous improvement. Each agent operates with a discrete function, a defined scope, and a complete audit…
AI, Cybersecurity, Exploits, Global Security News, Risk Management
MazeBolt brings AI-generated attack simulation to DDoS security testing
MazeBolt has announced the launch of RADAR VectorAI, a new MazeBolt module that creates AI-generated DDoS attacks. As AI outpaces human response, enterprises need to have access to validated DDoS vulnerability data about both known and AI-generated attack vectors. Mythos has raised awareness of the cybersecurity risks created by AI. But while Mythos makes it…
AI, Apps, Global Security News, Risk Management
Netskope adds AI asset discovery and AISecOps agent to AI security portfolio
Netskope has announced Netskope One AI Command Center, bringing together AI discovery, risk intelligence, and autonomous response capabilities in a single platform. As the latest expansion of the Netskope One AI Security suite, it helps security teams understand what AI is running in their environments, determine which risks require action, and accelerate response efforts. Among…
AI, Cybersecurity, Global Security News, malware
Weedhack Attacks Minecraft Users, CountLoader Hits 86K, Miners Spread via Pirated Content
Cybersecurity researchers have flagged a new campaign targeting Minecraft players via YouTube to spread malware capable of gaining control of victims’ systems. The Minecraft-focused malware-as-a-service (MaaS) campaign has been codenamed Weedhack by McAfee Labs, stating the activity has been active since January 2026 and impersonates Minecraft clients and mods to infect users. In all, 3820
AI, Global Security News, Network Security
Enterprise Spotlight: Rethinking cloud strategy in the age of AI
Cloud computing has reached a crossroads. The high cost and data sensitivity of AI workloads are raising the appeal of private clouds, even as neoclouds and sovereign clouds shake up the cloud provider landscape. New cyberthreats, shifting compute requirements, and management complexity are adding to cloud complications. Download the June 2026 issue of the Enterprise…
AI, Global Security News
A small Slovenian team handles 6,000 cyber incidents a year
Online fraud complaints, ransomware cases, and phishing tips reach Slovenia’s national cyber response center in steady volume, and a team of around a dozen analysts sorts through them. Gorazd Božič, who manages SI-CERT at the public agency ARNES, described that work in an interview conducted in person at the Span Cyber Security Arena conference. He…
AI, Apps, Exploits, Global Security News, Network Security, Risk Management
Why an HP Poly VoIP Phones Bug Could Become an Enterprise Foothold
Rapid7 details a critical unauthenticated overflow in HP Poly VoIP phones that can lead to root RCE, with patches available for affected models. Rapid7’s latest disclosure on CVE-2026-0826 should get serious attention from anyone running HP Poly VoIP phones in an enterprise setting. It’s a critical unauthenticated stack-based buffer overflow that can give a remote…
AI, Global Security News
Agent Threat Rules: Open detection rule format for AI agent security threats
AI agents run inside coding assistants, MCP servers, and multi-agent frameworks, and the access that makes them useful also opens paths to prompt injection, tool poisoning, and credential theft. Public CVE feeds carry agent-execution flaws that reach production faster than the tooling built to catch them. Agent Threat Rules, or ATR, is an open detection…
AI, Global Security News
What CISOs need to do about post-quantum migration in the next 24 months
In this Help Net Security video, Garfield Jones, SVP Global Strategy and Research, QuSecure, lays out what CISOs should do over the next 24 months. A recent Google paper moved the expected arrival of a cryptographically relevant quantum computer from 2035 to 2029, leaving organizations about two and a half years to prepare. Such a…
AI, Cybersecurity, Data Breaches, Global Security News, Government & Policy, Risk Management
Welcoming the Philippine Government to Have I Been Pwned
Today, we welcome the 46th government onboarded to Have I Been Pwned’s free gov service: the Philippines. The Philippines’ National CERT, working with the Department of Information and Communications Technology, now has access to monitor official government domains against the data in HIBP. This gives their Cyber Threat Intel and Monitoring Section the ability to…
AI, Global Security News
America’s Data Center Build-Out Is Falling Way Behind Schedule
Google, which is raising a fresh $80 billion, has a strategy for getting around the biggest bottleneck.
AI, Compliance, Cybersecurity, Data Breaches, Global Security News, Network Security, Risk Management
Anthropic grants Project Glasswing access to 150 more companies, with a focus on critical infrastructure
Anthropic on Tuesday announced that it was adding 150 more companies to its Project Glasswing AI-based vulnerability hunting initiative, with a particular focus on critical infrastructure companies including those involved in “power, water, healthcare, communications and hardware.” Analysts and security vendors agreed that the move is a positive step, noting that the more companies involved…
AI, Global Security News
$3.6 Million an Hour—and Other Ways to Measure Elon Musk’s Fortune
Millions of houses, thousands of jets, every NFL and NBA team: Imagine the things a trillionaire could buy.
AI, Global Security News
Kyvos Exec: Semantic Layers are Critical for Enterprise AI
As enterprises move from AI experimentation to production deployments, questions around data consistency, governance, and scalability are becoming increasingly important. Many organizations have invested heavily in modern data platforms, yet AI systems still struggle to deliver reliable outcomes when business context is fragmented across tools and datasets. Pratik Jain, Senior Director of Technology at Kyvos…
AI, Apps, Cybersecurity, Exploits, Global Security News, Government & Policy, Risk Management
Two-year old Oracle WebLogic Server vulnerability is being exploited
US federal government departments have been given until Thursday to patch a two-year old high severity vulnerability in Oracle WebLogic Server that could allow an unauthenticated attacker to access critical data. The vulnerability, CVE-2024-21182, was added Monday to the Cybersecurity and Infrastructure Security Agency’s (CISA) Known Exploited Vulnerabilities (KEV) catalog, giving federal Oracle admins a…
AI, Global Security News
OpenAI upgrades GPT-5.5, as it plans to retire legacy ChatGPT models
OpenAI says it’s rolling out a new update that improves the existing GPT-5.5 Instant model, and this move comes ahead of the scheduled retirement of multiple legacy models, including o3. […]
AI, Cybersecurity, Global Security News
ENISA NIS360 2026 report shows uneven cybersecurity improvements across EU critical sectors
The report assesses the cybersecurity landscape against the NIS2 directive, highlighting a growing gap between the evolving threat landscape and the pace of defensive improvements.
AI, Apps, Exploits, Global Security News
Russian hackers exploit WinRAR vulnerability for data theft
The exploitation chain begins with a weaponized HTML Application payload called GammaPhish, which retrieves intermediate Visual Basic Script (VBScript) downloaders known as GammaLoad, according to Sekoia.
AI, Global Security News
Most organizations that miss 24-hour patch window report breaches
Study points out that AI has shattered the model of patching on a two- to four-week schedule.
AI, Exploits, Global Security News
Google releases June Android security patches addressing 124 vulnerabilities, including 1 zero-day
The actively exploited vulnerability, identified as CVE-2025-48595, is a high-severity flaw in the Android Framework that allows local attackers to gain code execution and escalate privileges on devices running Android 14 or later.
AI, Global Security News, malware
Over 116,000 Mincraft systems infected in WeedHack malware campaign
A large-scale malware campaign dubbed WeedHack is targeting Minecraft players and has infected more than 116,000 systems since January. […]
AI, Exploits, Global Security News, Government & Policy
SideCopy group targets Afghanistan’s Ministry of Finance with Xeno RAT
The campaign commences with a spear-phishing email containing a ZIP archive with a malicious LNK file written in Pashto, designed to exploit the familiarity of the language within the Afghan government.
AI, Cybersecurity, Global Security News
Zoom CISO: AI as Security Enabler, Not Role-Replacer
As Zoom’s CISO, Sandra McLeod, discusses the challenges of securing a global communication platform, the promise of AI-driven security workflows, and advice for aspiring cybersecurity leaders.
AI, Global Security News
Sectigo launches AI-powered server for certificate lifecycle management
The MCP Server for Sectigo Certificate Manager acts as a secure intermediary between AI agents, such as Microsoft Copilot and Claude, and Sectigo’s certificate management platform.