A federal budget proposal is putting one of the nation’s top cybersecurity agencies on the chopping block, raising alarms about the U.S. government’s readiness to defend against escalating digital threats. The administration’s fiscal 2027 budget blueprint would reduce funding for the Cybersecurity and Infrastructure Security Agency (CISA), continuing a trend of cuts that could reshape…
Category: Government & Policy
AI, Global Security News, Government & Policy
Missile Alert Phishing Exploits Iran-US-Israel Conflict for Microsoft Logins
New Phishing scam uses fake missile alerts and the ongoing conflict involving Iran to target users with QR codes and fake government emails to steal Microsoft passwords.
AI, Global Security News, Government & Policy, Risk Management
US tech sector lost jobs in March, stalling growth
The US tech sector lost 15,000 jobs in March even though the overall US economy saw 178,000 jobs gained across all sectors, according to data from multiple sources, including the US Department of Labor. CompTIA, which analyzed the Friday jobs data released by Labor Department’s Bureau of Labor Statistics (BLS), pegged the unemployment rate for…
AI, Exploits, Global Security News, Government & Policy, Network Security, privacy, Risk Management
Authentication is broken: Here’s how security leaders can actually fix it
Authentication keeps breaking where it matters most: On regulated front lines such as healthcare, government, aerospace and travel. The core issue is not a lack of innovation. Instead, it is a brittle and fragmented ecosystem of cards, readers, middleware and software that rarely work together under real-world pressure. Even today’s “passwordless” solutions can be undermined…
AI, Cybersecurity, Global Security News, Government & Policy, malware, Network Security, Russia
Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab
An elusive hacker who went by the handle “UNKN” and ran the early Russian ransomware groups GandCrab and REvil now has a name and a face. Authorities in Germany say 31-year-old Russian Daniil Maksimovich Shchukin headed both cybercrime gangs and helped carry out at least 130 acts of computer sabotage and extortion against victims across…
AI, Exploits, Global Security News, Government & Policy, malware, Network Security
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 91
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape Infiniti Stealer: a new macOS infostealer using ClickFix and Python/Nuitka Converging Interests: Analysis of Threat Clusters Targeting a Southeast Asian Government RoadK1ll: A WebSocket Based Pivoting Implant axios Compromised: npm Supply Chain Attack via Dependency Injection …
AI, china, Cybersecurity, Data Breaches, Europe, Exploits, Global Security News, Government & Policy, malware, Network Security, privacy, Risk Management, Russia, Venture
Security Affairs newsletter Round 571 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. Qilin ransomware group claims the hack of German political party Die Linke U.S. CISA adds a…
AI, Compliance, Global Security News, Government & Policy, Network Security
Introducing the Landing Zone Accelerator on AWS Universal Configuration and LZA Compliance Workbook
November 20, 2025: Date this information was first published. We’re pleased to announce the availability of the latest sample security baseline from Landing Zone Accelerator on AWS (LZA)—the Universal Configuration. Developed from years of field experience with highly regulated customers including governments across the world, and in consultation with AWS Partners and industry experts, the…
AI, Apps, china, Cybersecurity, Exploits, Global Security News, Government & Policy, Network Security, Risk Management
U.S. CISA adds a flaw in TrueConf Client to its Known Exploited Vulnerabilities catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in TrueConf Client to its Known Exploited Vulnerabilities catalog The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a flaw in TrueConf Client, tracked as CVE-2026-3502 (CVSS score of 7.8), to its Known Exploited Vulnerabilities (KEV) catalog. TrueConf is a videoconferencing platform often used in secure, offline…
AI, china, Europe, Global Security News, Government & Policy
China-Linked TA416 Targets European Governments with PlugX and OAuth-Based Phishing
A China-aligned threat actor has set its sights on European government and diplomatic organizations since mid-2025, following a two-year period of minimal targeting in the region. The campaign has been attributed to TA416, a cluster of activity that overlaps with DarkPeony, RedDelta, Red Lich, SmugX, UNC6384, and Vertigo Panda. “This TA416 activity included multiple
AI, china, Cybersecurity, Funding, Global Security News, Government & Policy, Network Security
Trump budget proposal would cut hundreds of millions more from CISA
President Donald Trump’s fiscal 2027 budget would slash the Cybersecurity and Infrastructure Security Agency’s total by $707 million, according to a summary released Friday, which would deeply chop down an agency that already took a big hit in Trump’s first year. Another budget document suggests a smaller — but still substantial — hit of $361…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management
High-Severity Vulnerabilities, Supply Chain Breaches, and AI Threats Redefine Cybersecurity This Week
Major Threats & Vulnerabilities High-Severity Flaws A newly disclosed Cisco IMC vulnerability (CVSS 9.8) allows unauthenticated attackers to gain full administrative access to UCS servers. Cisco has issued patches, and while no active exploitation has been observed, immediate updates are strongly advised. In another critical discovery, a GIGABYTE Control Center flaw enables remote code execution…
AI, Data Breaches, Europe, Exploits, Global Security News, Government & Policy, Network Security, Risk Management
TeamPCP Supply Chain Campaign: Update 006 – CERT-EU Confirms European Commission Cloud Breach, Sportradar Details Emerge, and Mandiant Quantifies Campaign at 1,000+ SaaS Environments, (Fri, Apr 3rd)
This is the sixth update to the TeamPCP supply chain campaign threat intelligence report, “When the Security Scanner Became the Weapon” (v3.0, March 25, 2026). Update 005 covered developments through April 1, including the first confirmed victim disclosure (Mercor AI), Wiz’s post-compromise cloud enumeration findings, DPRK attribution of the axios compromise, and LiteLLM’s release resumption after Mandiant’s forensic audit.…
AI, Apps, Compliance, Cybersecurity, Europe, Global Security News, Government & Policy, Network Security, Risk Management, Venture
March 2026 Leadership Moves: Google Cloud Partner Chief Departs & More
As the first quarter of 2026 comes to a close, organizations around the channel have made significant moves to their leadership teams. Key figures have been appointed, promoted, or departed from their positions to make way for new faces. Take a look around at some of the signature moves that enterprises have made as they…
AI, Global Security News, Government & Policy
What Is Digitization vs Digitalization vs Digital Transformation?
In today’s digital landscape, the terms “digitization,” “digitalization,” and “digital transformation” are often used interchangeably, leading to confusion about their distinct meanings and business implications. While these three concepts are interconnected, each represents a unique approach to leveraging technology to drive organizational change and growth. Understanding the nuances between them is crucial for companies seeking…
AI, Apps, Global Security News, Government & Policy
Why AI lies, cheats and steals
You can’t trust AI. Even an information-obsessed, tech-savvy person such as yourself might be forgiven for believing that AI chatbots are on a smooth path of improvement with each passing month. But when it comes to their trustworthiness, that belief is dead wrong. New research by the UK government-backed Centre for Long-Term Resilience (CLTR) found…
AI, APAC, Apps, Compliance, Endpoint, Global Security News, Government & Policy, Network Security, privacy, Risk Management
Microsoft 365 explained: Office 365, rebranded and expanded
Microsoft 365 arrived to much fanfare at its launch in July 2017, with Microsoft CEO Satya Nadella promising a “fundamental departure” in how the company thinks about product creation. Nearly nine years later, Microsoft 365 has become Microsoft’s core brand for workplace productivity software, having largely replaced the Office 365 branding long associated with the…
AI, Compliance, Funding, Global Security News, Government & Policy, Risk Management
House Dems decry confirmed ICE usage of Paragon spyware
Immigration and Customs Enforcement has confirmed it is using Paragon spyware, prompting outrage Thursday from a trio of House Democrats. In response to a letter from the lawmakers inquiring about Paragon’s use, acting ICE Director Todd Lyons wrote that he had authorized the use of “cutting-edge technological tools” to help the Homeland Security Investigations division…
AI, Apps, Cybersecurity, Global Security News, Government & Policy, Network Security, Risk Management
Four security principles for agentic AI systems
Agentic AI represents a qualitative shift in how software operates. Traditional software executes deterministic instructions. Generative AI responds to human prompts with output that humans review and use at their discretion. Agentic AI differs from both. Agents connect to software tools and APIs and uses large language models (LLMs) as reasoning engines to plan and…
AI, Apps, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management
Claude Code Leak Exposes AI Supply Chain Threats
A leak involving Anthropic’s Claude Code has drawn attention from the cybersecurity and developer communities, exposing internal components of the AI coding agent and introducing potential risks for organizations. “The significance of this leak is in what the code reveals about AI agent architecture. The leak exposed approximately 512,000 lines of TypeScript across roughly 1,900…
AI, APAC, Data Breaches, Global Security News, Government & Policy
Medtech giant Stryker says it’s back up after Iranian cyberattack
Medtech company Stryker says it’s back to being “fully operational,” three weeks after it became the most prominent victim to date of Iranian hackers, who said they attacked the Michigan-based company in retaliation over the conflict with the United States and Israel. A March 11 wiper attack from the pro-Palestinian, Iranian government-connected group Handala damaged…
AI, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management
Hasbro Cyberattack: Timeline, Impact, and Industry Implications
Hasbro, the Rhode Island-based toy and game company that owns brands like Monopoly, Play-Doh, Peppa Pig, and Transformers, said in late March 2026 that someone had broken into its network without permission. On March 28, the intrusion was found, and Hasbro had to take parts of its systems offline while investigators and cybersecurity experts worked…
AI, Global Security News, Government & Policy, malware, Russia
Threat actor UAC-0255 impersonate CERT-UA to spread AGEWHEEZE malware via phishing
Threat actors impersonated CERT-UA to send phishing emails with AGEWHEEZE malware, tricking victims into installing a fake “security tool.” A threat actor, tracked as UAC-0255, impersonated CERT-UA in a phishing campaign, sending emails to about 1 million users. The messages urged victims to download a password-protected archive from Files.fm and install a fake “specialized software,”…
AI, Apps, Cybersecurity, Exploits, Global Security News, Government & Policy, Network Security, Risk Management
Cybersecurity in the age of instant software
AI is rapidly changing how software is written, deployed, and used. Trends point to a future where AIs can write custom software quickly and easily: “instant software.” Taken to an extreme, it might become easier for a user to have an AI write an application on demand — a spreadsheet, for example — and delete…
AI, Apps, china, Exploits, Global Security News, Government & Policy, malware, Network Security
TrueConf zero-day vulnerability exploited to target government networks
Suspected China-nexus attackers have leveraged a zero-day vulnerability (CVE-2026-3502) in the TrueConf client application to distribute malware within government networks in Southeast Asia, Check Point researchers discovered. Malicious client update attack chain (Source: Check Point) Trusted update mechanism turned into attack vector TrueConf is a videoconferencing platform designed to run on private local networks (LANs)…
AI, Apps, Cybersecurity, Exploits, Global Security News, Government & Policy, privacy, Risk Management
Italian spyware vendor creates Fake WhatsApp app, targeting 200 users
WhatsApp blocked a fake app by Italian firm SIO/Asigint that targeted 200 users with spyware, urging them to reinstall the official app. WhatsApp has recently uncovered a malicious fake version of its app that targeted roughly 200 users, most of whom are in Italy. The platform confirmed that the unofficial client contained spyware and was…
AI, Apps, Compliance, Cybersecurity, Global Security News, Government & Policy, Risk Management
News Alert: TAC Security surpasses 10,000 customers, scaling global VM and AppSec platform
NEW YORK, Apr. 1, 2026, CyberNewswire—TAC Infosec, a global leader in cybersecurity (NSE: TAC), with presence across 100+ countries, announced a historic milestone by crossing 10,000 clients – 6,500+ of TAC Security and 3,500+ of CyberScope, since April 2024, delivering on its commitment to shareholders to achieve this by 2026. While building trusted access to…
AI, Data Breaches, Europe, Global Security News, Government & Policy, Network Security, Politics, privacy, Venture
Apple — 50 years in fifteen minutes
It felt churlish to let Apple’s 50th birthday pass without adding to the hagiographic choir, so what follows is an unapologetically selective tour through some of the moments that shaped one of the most influential companies of the modern era. These were the inflection points where Apple didn’t just ship products, it distorted reality in its direction. For…
AI, Global Security News, Government & Policy
Cyberattacks Intensify Pressure on Latin American Governments
Cyber threats across Latin America are increasingly targeting government systems, from disruptive attacks in Puerto Rico to a surge of probes against Colombia’s health sector.
AI, china, Europe, Global Security News, Government & Policy, malware, Russia
European-Chinese geopolitical issues drive renewed cyberespionage campaign
A Chinese cyberespionage group has shifted its gaze back to Europe after years of focusing on other parts of the world, Proofpoint research published Wednesday found. The surge began in mid-2025, with a bevy of issues bubbling up between China and Europe, the company said. Proofpoint labels the government-linked group TA416, but other companies track…
AI, Apps, Data Breaches, Exploits, Global Security News, Government & Policy, privacy
TeamPCP Supply Chain Campaign: Update 005 – First Confirmed Victim Disclosure, Post-Compromise Cloud Enumeration Documented, and Axios Attribution Narrows, (Wed, Apr 1st)
This is the fifth update to the TeamPCP supply chain campaign threat intelligence report, “When the Security Scanner Became the Weapon” (v3.0, March 25, 2026). Update 004 covered developments through March 30, including the Databricks investigation, dual ransomware operations, and AstraZeneca data release. This update consolidates two days of intelligence through April 1, 2026. HIGH: Mercor AI…
AI, Apps, Cybersecurity, Global Security News, Government & Policy, malware, Network Security, Russia
UAC-0255 Attack Detection: Threat Actors Impersonate CERT-UA to Infect Ukrainian Public and Private Sector Organizations With AGEWHEEZE RAT
Phishing remains one of the most effective tools in the cybercriminal arsenal, especially when threat actors abuse the credibility of trusted institutions and familiar digital services to increase victim interaction. In late March 2026, CERT-UA revealed a phishing campaign tracked as UAC-0255 in which attackers impersonated the agency and attempted to infect organizations across Ukraine’s…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Global Security News, Government & Policy, malware, Network Security, Risk Management
Major Cyber Attacks in March 2026: OAuth Phishing, SVG Smuggling, Magecart, and More
March 2026 brought a wave of cyber attacks that reflected how quickly modern threats can move from subtle early signals to serious business impact. ANY.RUN analysts identified and explored several major threats this month, exposing phishing campaigns, stealthy malware, payment-skimming activity, and resilient botnet infrastructure affecting organizations across industries. From Microsoft 365 token abuse and…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Global Security News, Government & Policy, malware, Network Security, Risk Management
Major Cyber Attacks in March 2026: OAuth Phishing, SVG Smuggling, Magecart, and More
March 2026 brought a wave of cyber attacks that reflected how quickly modern threats can move from subtle early signals to serious business impact. ANY.RUN analysts identified and explored several major threats this month, exposing phishing campaigns, stealthy malware, payment-skimming activity, and resilient botnet infrastructure affecting organizations across industries. From Microsoft 365 token abuse and…
AI, china, Endpoint, Global Security News, Government & Policy, Network Security, privacy, Risk Management, Russia
Free VPNs leak your data while claiming privacy
Most free Android VPNs track users, request dangerous permissions, and connect to risky servers, privacy comes at a hidden cost. Free VPN apps are some of the most popular downloads on Android, promising privacy at no cost. But the reality is far from what they advertise. Most users tap “install” without a second thought, unaware…
AI, Europe, Global Security News, Government & Policy, Network Security, Risk Management
Microsoft facing CMA probe of its business software portfolio
The regulatory body which last year accused Microsoft of inflating its office software’s license prices when it was run on rival cloud platforms to make those platforms less appealing, said Tuesday it will conduct a further investigation into the company’s entire business software ecosystem. The probe by the UK’s Competition and Markets Authority (CMA), scheduled…
AI, Apps, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Government & Policy, malware, Network Security
The Invisible Breach: How AI Agents Became the Most Dangerous Attack Surface of 2025–2026
The Attack That Requires No Click In June 2025, Microsoft patched a critical vulnerability in Microsoft 365 Copilot — one that its discoverers at Aim Security described as something that had never been seen before. A threat actor needed only to send a carefully crafted email to any employee within a target organization. No link.…
AI, Global Security News, Government & Policy, Risk Management
Report: Many Orgs Still Rely on Traditional OS Deployment Workflows
Recently, Recast surveyed IT professionals to attempt to understand where organizations stand with ConfigMgr, Intune, and OS Deployment. With Microsoft Deployment Toolkit (MDT) retiring in January 2026, cloud-only isn’t enough for the industry, and SysAdmins are actively seeking tools to make their jobs easier. Recast says replacement planning for MDT is crucial in 2026 IT…
AI, Global Security News, Government & Policy, Network Security, Risk Management
Crypto industry may be running out of time to prepare for quantum attacks
Google’s latest research suggests the cryptocurrency industry may have less time than expected to prepare for quantum computing. In a whitepaper, Google examines risks to elliptic curve cryptography, the system securing most blockchain networks. The researchers revisit earlier assumptions about how difficult it would be for a quantum computer to break these protections, concluding that…
AI, Exploits, Global Security News, Government & Policy, malware, Risk Management
5-month-old F5 BIG-IP DoS bug becomes critical RCE exploited in the wild
A vulnerability misclassified five months ago as a denial-of-service issue in F5 BIG-IP Access Policy Manager (APM) turned out to be a critical pre-authentication remote code execution flaw that is now under active exploitation. Hackers are using it to deploy a persistent malware program that runs with root privileges. The CVE-2025-53521 vulnerability was first disclosed…
AI, Apps, Europe, Global Security News, Government & Policy, privacy, Russia
Euro-Office billed as Europe’s sovereign alternative to Microsoft Office
A group of European technology firms has launched a new open-source office suite aimed at offering a sovereign alternative to Microsoft Office. Euro-Office consists of four core applications — a document editor, spreadsheet program, presentation tool, and PDF editor — and is built on the open-source OnlyOffice suite. It supports Microsoft Office file formats DOCX,…
AI, Apps, Cybersecurity, Global Security News, Government & Policy
VRP 2025 Year in Review
Posted by Dirk Göhmann, Tony Mendez, and the Vulnerability Rewards Program Team 2025 marked a special year in the history of vulnerability rewards and bug bounty programs at Google: our 15th anniversary 🎉🎉🎉! Originally started in 2010, our vulnerability reward program (VRP) has seen constant additions and expansions over the past decade and a half,…
AI, Apps, Exploits, Global Security News, Government & Policy
TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government Networks
A high-severity security flaw in the TrueConf client video conferencing software has been exploited in the wild as a zero-day as part of a campaign targeting government entities in Southeast Asia dubbed TrueChaos. The vulnerability in question is CVE-2026-3502 (CVSS score: 7.8), a lack of integrity check when fetching application update code, allowing an attacker…
AI, Apps, china, Compliance, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, privacy, Risk Management
California to bar AI vendors that can’t prove bias safeguards
AI vendors selling to the California state government must prove they have safeguards against algorithmic bias, civil rights violations, and illegal content, or risk being barred from state contracts, under an executive order signed by Governor Gavin Newsom. The order directs the Department of General Services and the California Department of Technology to develop new…
AI, Data Breaches, Global Security News, Government & Policy
Dutch Ministry of Finance takes treasury systems offline amid cyber incident investigation
The Dutch Ministry of Finance took treasury banking portal offline after a cyberattack; core tax systems were not affected. The Dutch Ministry of Finance took parts of its infrastructure offline, including the treasury banking portal, after detecting a cyberattack two weeks earlier. The Dutch Ministry of Finance disclosed a cyberattack detected on March 19 after…
AI, Compliance, Cybersecurity, Global Security News, Government & Policy, privacy, Risk Management
CCTV Crackdown: India Moves to Block Chinese Surveillance Cameras
India is preparing for a major shift in its surveillance ecosystem as the government tightens rules around internet-connected CCTV cameras. The move is primarily aimed at addressing rising concerns over national security and data privacy risks linked to foreign-made devices. Authorities have found that several widely used CCTV systems may not be as secure as…
AI, Apps, Compliance, Cybersecurity, Funding, Global Security News, Government & Policy, Risk Management, Venture
6 key takeaways from RSA Conference 2026
Writing a conference preview is an act of professional speculation. You read the agenda, map the schedule session density, and make your personal best call about where the intellectual energy will concentrate. From my perspective going in, RSA Conference 2026 outlined a defining tension for CISOs today: how to enable AI adoption fast enough to…
AI, Cybersecurity, Exploits, Global Security News, Government & Policy
CISA orders feds to patch actively exploited Citrix flaw by Thursday
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch their Citrix NetScaler appliances against an actively exploited vulnerability by Thursday. […]
AI, china, Data Breaches, Endpoint, Europe, Exploits, Global Security News, Government & Policy, malware, Network Security
China-Linked groups target Southeast Asian government with advanced malware in 2025
China-linked groups hit a Southeast Asian government in 2025, deploying multiple malware families in a sophisticated cyber campaign. In 2025, three China-linked threat clusters targeted a Southeast Asian government in a complex, well-funded cyber operation. Threat actors deployed numerous malware types, including HIUPAN, PUBLOAD, EggStremeFuel/Loader, MASOL RAT, PoshRAT, TrackBak Stealer, Hypnosis Loader, and FluffyGh0st, showing…
AI, Global Security News, Government & Policy, Politics, Risk Management
War-Driven Outages Put MSP Data Center Strategies at Risk
Data centers are no longer insulated from geopolitical conflict, and MSPs are starting to feel the impact. Recent attacks tied to escalating tensions between Iran, the U.S., and Israel have disrupted cloud infrastructure in the Middle East, forcing hyperscalers to shift workloads and exposing new risks to uptime, supply chains, and service agreements. For managed…
AI, Europe, Exploits, Global Security News, Government & Policy, malware, Network Security, Russia
Russia-linked APT TA446 uses DarkSword exploit to target iPhone users in phishing wave
Russia-linked TA446 is using the DarkSword iOS exploit kit in targeted phishing campaigns to compromise iPhone users. Russia-linked APT group TA446 (aka SEABORGIUM, ColdRiver, Callisto, and Star Blizzard) is using the DarkSword exploit kit in targeted spear-phishing campaigns against iOS devices. The attacks rely on malicious emails to compromise iPhones, highlighting a growing threat from…
AI, china, Global Security News, Government & Policy, malware
Three China-Linked Clusters Target Southeast Asian Government in 2025 Cyber Campaign
Three threat activity clusters aligned with China have targeted a government organization in Southeast Asia as part of what has been described as a “complex and well-resourced operation.” The campaigns have led to the deployment of various malware families, including HIUPAN (aka USBFect, MISTCLOAK, or U2DiskWatch), PUBLOAD, EggStremeFuel (aka RawCookie), EggStremeLoader (aka Gorem RAT), MASOL
AI, Cybersecurity, Data Breaches, Global Security News, Government & Policy
Don’t count on government guidance after a smart home breach
People are filling their homes with internet-connected cameras, speakers, locks, and routers. When one of those devices is compromised, the next steps are often unclear. Researchers reviewing government cybersecurity advice in 11 countries found that most guidance focuses on prevention, leaving households with limited support after a breach. The analysis covers Australia, Austria, Canada, Finland,…
AI, Exploits, Global Security News, Government & Policy, malware, Network Security
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 90
Security Affairs Malware newsletter includes a collection of the best articles and research on malware in the international landscape New Malware Targets Users of Cobra DocGuard Software Government of Iran Cyber Actors Deploy Telegram C2 to Push Malware to Identified Targets Trivy Supply Chain Attack Expands to Compromised Docker Images VoidStealer: Debugging Chrome to Steal…
AI, Apps, china, Cybersecurity, Data Breaches, Europe, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management, Russia
Security Affairs newsletter Round 569 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. ShinyHunters claims the hack of the European Commission Iran-linked group Handala hacked FBI Director Kash Patel’s…
AI, Cybersecurity, Global Security News, Government & Policy
From Paper to Digital: The Benefits of Making Taxes Digital (MTD)
In this post, I will talk about the benefits of making taxes digital (MTD). A lot of things have expanded from being solely on physical paper to being in digital format. Books are an example. Now, the income tax process in the UK, for certain individuals and businesses. With Making Tax Digital (MTD), the government is…
AI, Data Breaches, Europe, Global Security News, Government & Policy, malware, Risk Management
Iran-linked group Handala hacked FBI Director Kash Patel’s personal email account
Iran-linked group Handala claims it hacked FBI Director Kash Patel’s personal email, leaking files. The FBI says no government data was exposed. Iran-linked hacking group Handala claims it breached FBI Director Kash Patel’s personal Gmail account and shared alleged data, including photos and files. The FBI confirmed it is aware of the incident and has…
AI, Apps, Cybersecurity, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management
RSAC 2026: No easy fixes for expanding AI attack surface, but a coordinated response is emerging
SAN FRANCISCO — Forty-four thousand cybersecurity practitioners converged on Moscone Center this week with an urgent question: how do you secure a network when everything — the technology, the threats, the tools — is changing faster than anyone can govern it? Related: Feds pull back on collaboration Microsoft’s Vasu Jakkal set the scale on day…
AI, Data Breaches, Global Security News, Government & Policy, Network Security, Risk Management
Iranian hackers, Handala, claim to compromise FBI Director Kash Patel’s personal data
Iranian hackers claimed Friday to have compromised the personal data of FBI Director Kash Patel, and the bureau confirmed that it knew of the targeting of Patel’s personal email. The government-connected hacking group, Handala, previously claimed credit for hacking medical device maker Stryker, a boast that threat researchers considered credible. “All personal and confidential email…
AI, APAC, Apps, Compliance, Cybersecurity, Endpoint, Exploits, Global Security News, Government & Policy, Network Security, Risk Management, Russia
Security leaders say the next two years are going to be ‘insane’
SAN FRANCISCO — Every RSA Conference has its buzzwords. Cloud. Ransomware. Zero trust. Plastered across the 87-acre Moscone Center complex on every booth, banner and bar. This year was AI, with vendors pitching AI-powered solutions to every security problem imaginable. But 2026 stood out for a different reason: Industry leaders spent the conference warning about…
Global Security News, Government & Policy
UK Cracks Down on Chinese Crypto Marketplace for Funding Southeast Asia Scam Hubs
The UK government has sanctioned Xinbi, described as “the second-largest illicit online marketplace ever”
AI, Compliance, Cybersecurity, Global Security News, Government & Policy, Risk Management
AI regulations are already out of date — IT leaders need to think ahead
Most AI regulations passed in the last few years are already irrelevant, but enterprises should think ahead with rudimentary governance plans for quicker compliance, said legal experts in two panel discussions at Nvidia’s GTC trade show last week. Current AI regulations target frontier models, high-risk models, and transparency. They typically focus on LLMs and the…
AI, Apps, Compliance, Global Security News, Government & Policy, Risk Management
Anthropic wins reprieve against US DoD ban, buying time for contractors to assess AI supply chains
The Pentagon’s attempt to brand Anthropic a supply chain risk was “likely both contrary to law and arbitrary and capricious,” a US federal judge wrote in a ruling halting a ban on use of Anthropic’s products in defense contracts. In granting Anthropic a preliminary injunction against the ban, US District Judge Rita Lin of the…
AI, Apps, china, Exploits, Global Security News, Government & Policy, malware, Network Security
China-linked Red Menshen APT deploys stealthy BPFDoor implants in telecom networks
China-linked Red Menshen APT group used stealthy BPFDoor implants in telecom networks to spy on government targets. Rapid7 Labs uncovered a China-linked threat group known as Red Menshen has been running a long-term espionage campaign by infiltrating telecom networks, mainly in the Middle East and Asia. Active since at least 2021, the group uses highly…
AI, Global Security News, Government & Policy
Anthropic Wins Injunction in Court Battle With Trump Administration
A federal judge said the government’s ‘measures appear designed to punish Anthropic’ in a standoff over military use of A.I.
AI, Apps, Compliance, Data Security, Global Security News, Government & Policy, Network Security, Risk Management
RSAC 2026: AI Security Tools Aim to Cut Response Time
Security vendors at RSAC 2026 are zeroing in on one core problem: investigation speed. Across the show floor, new AI-powered tools promise to cut threat response times from hours to seconds while helping overwhelmed security teams keep pace with rising alert volumes. From autonomous investigation agents to platforms designed to secure enterprise AI systems, this…
AI, china, Global Security News, Government & Policy, Network Security
China-Linked Red Menshen Uses Stealthy BPFDoor Implants to Spy via Telecom Networks
A long-term and ongoing campaign attributed to a China-nexus threat actor has embedded itself in telecom networks to conduct espionage against government networks. The strategic positioning activity, which involves implanting and maintaining stealthy access mechanisms within critical environments, has been attributed to Red Menshen, a threat cluster that’s also tracked as Earth Bluecrow,
AI, china, Cybersecurity, Global Security News, Government & Policy, Network Security, privacy
Former NSA chiefs worry American offensive edge in cybersecurity is slipping
SAN FRANCISCO — Four former National Security Agency directors shared varying concerns about a lack of earnest and widespread response to growing threats in cyberspace during a discussion at the RSAC 2026 Conference on Tuesday. Accelerating threats posed by artificial intelligence, China and cybercriminals at large are testing the country’s resolve and determination to foster…
Global Security News, Government & Policy, Network Security
Rapid7 Labs Identifies State-Sponsored Sleeper Cells Embedded in Global Telecommunications Networks
GUEST RESEARCH: Research reveals long-term espionage access inside telecommunications infrastructure with implications for government communications and critical systems
Global Security News, Government & Policy
Intermediaries Driving Global Spyware Market Expansion
Third-party resellers and brokers foil transparency efforts and allow spyware to spread despite government restrictions, a study finds.
AI, APAC, Compliance, Cybersecurity, Exploits, Global Security News, Government & Policy, Risk Management
What IT leaders need to know about AI-fueled death fraud
Death is always an unpleasant topic, typically ignored until it is fully upon us. But for IT leaders, fraudsters who use fake death documents generated by AI to steal data and commit a wide range of other crimes are simply too dangerous to ignore. There are two different forms of these death frauds: tricking an…
AI, Compliance, Cybersecurity, Data Breaches, Global Security News, Government & Policy, malware, Risk Management
ANY.RUN Recognized for Innovations and Market Leadership at Global InfoSec Awards 2026
ANY.RUN has been recognized at Global InfoSec Awards 2026 by Cyber Defense Magazine (CDM), the industry’s leading electronic information security magazine. We’re especially proud and grateful that our impact for the industry has been acknowledged in two categories at once: Innovative Malware Analysis for Sandbox Market Leader Threat Intelligence This dual recognition reflects the approach to cybersecurity we prioritize: supporting the full SOC…
AI, Compliance, Cybersecurity, Data Breaches, Global Security News, Government & Policy, malware, Risk Management
ANY.RUN Recognized for Innovations and Market Leadership at Global InfoSec Awards 2026
ANY.RUN has been recognized at Global InfoSec Awards 2026 by Cyber Defense Magazine (CDM), the industry’s leading electronic information security magazine. The award ceremony took place during RSAC 2026 conference. We’re especially proud and grateful that our impact for the industry has been acknowledged in two categories at once: Innovative Malware Analysis for Sandbox Market Leader Threat Intelligence This dual…
AI, Compliance, Data Breaches, Global Security News, Government & Policy, Network Security, Risk Management
What the UK Cyber Security & Resilience Bill Means for Security Practitioners
The UK Cyber Security & Resilience Bill is progressing through Parliament Royal Assent expected later in 2026. The UK’s Cyber Security and Resilience Bill is working its way through Parliament, and if you haven’t started paying serious attention yet, now is the time. Introduced to the House of Commons in November 2025, the Bill represents…
Cybersecurity, Global Security News, Government & Policy
At RSAC, the EU Leads While US Officials Are Sidelined
While US government sits out this year, EU officials are on the ground in San Francisco leading the conversations on today’s top cybersecurity challenges.
AI, china, Global Security News, Government & Policy
Google moves post-quantum encryption timeline up to 2029
Google is accelerating its timeline for migrating its products to quantum resistant encryption to 2029, the latest sign that tech leaders are worried that they haven’t been aggressive enough in planning for a post-quantum future. In a blog posted Wednesday, vice president of security engineering Heather Adkins and senior staff cryptology engineer Sophie Schmieg said…
AI, Apps, china, Compliance, Cybersecurity, Europe, Global Security News, Government & Policy, Network Security, Politics, privacy, Risk Management
MY YAKE: A decade of cyber collaboration, built under Obama, is now hostage to a political grudge
SAN FRANCISCO — I was in the room at Stanford in February 2015 when President Obama used the bully pulpit to launch what became a decade of hard-won public-private collaboration in cybersecurity. It didn’t take much to tear it asunder. At RSAC 2026 this week, that decade of work is suddenly on the line —…
Global Security News, Government & Policy
Infotrust Acquires Catalyst Cyber To Accelerate Federal Gov Expansion
Infotrust Ltd has agreed to acquire 100% of Canberra‑based Catalyst Cyber Pty Ltd in a performance‑linked transaction valued at approximately $5 million, securing immediate access to high‑barrier federal government cyber security markets and strengthening Infotrust’s position as a sovereign Australian cyber security provider.
AI, Apps, Compliance, Cybersecurity, Europe, Global Security News, Government & Policy, malware, Network Security, Risk Management
Kamasers Analysis: A Multi-Vector DDoS Botnet Targeting Organizations Worldwide
DDoS attacks are no longer only an infrastructure problem. They can quickly turn into a business issue, affecting uptime, customer experience, and operational stability. Kamasers is a strong example of this new reality, with broad attack capabilities and resilient command-and-control mechanisms that allow it to remain active under pressure. Let’s explore the Kamasers botnet through…
AI, Apps, Compliance, Cybersecurity, Europe, Global Security News, Government & Policy, malware, Network Security, Risk Management
Kamasers Analysis: A Multi-Vector DDoS Botnet Targeting Organizations Worldwide
DDoS attacks are no longer only an infrastructure problem. They can quickly turn into a business issue, affecting uptime, customer experience, and operational stability. Kamasers is a strong example of this new reality, with broad attack capabilities and resilient command-and-control mechanisms that allow it to remain active under pressure. Let’s explore the Kamasers botnet through…
AI, Compliance, Cybersecurity, Europe, Global Security News, Government & Policy, Network Security, Risk Management
6 key trends reshaping the IAM market
The identity and access management (IAM) market has shifted its focus from traditional “login and MFA” mechanisms toward treating identity as a security control plane. Buyers are prioritizing phishing-resistant authentication, including passkeys, and the management of non-human identities, according to an array of experts quizzed on developments in the market by CSO. “Workforce access is…
AI, china, Cybersecurity, Exploits, Global Security News, Government & Policy, Risk Management, Russia
DarkSword’s GitHub leak threatens to turn elite iPhone hacking into a tool for the masses
Leaked iOS spyware has some cybersecurity professionals raising urgent alarms about potential mass iPhone compromises, a development that pairs ominously with the recent discovery of two sophisticated iOS exploit kits. At the same time, some other experts say Apple’s defensive features for iPhones remain elite. But several factors have created unprecedented circumstances: the public accessibility…
AI, Apps, china, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Government & Policy, Network Security, Risk Management, Russia
Critics call FCC router rule a ‘big swing’ that could create more supply chain uncertainty
The Federal Communications Commission’s move to ban foreign-made routers touches on a real threat, but critics say the agency rule is overly broad, practically unworkable and doesn’t meaningfully address weaknesses in router security that have led to major breaches on American governments and businesses. Under the Secure Equipment Act and Secure Networks Act, the FCC…
AI, Global Security News, Government & Policy, Network Security
Palantir Will No Longer Profit Off of New Yorkers’ Health Data
A controversial multimillion-dollar deal between New York City’s public hospital system and military contractor Palantir, first reported by The Intercept, is coming to an end, according to recent testimony before the city council. Related Palantir Gets Millions of Dollars From New York City’s Public Hospitals The Intercept reported in February that the New York City…
AI, Cybersecurity, Global Security News, Government & Policy, Politics, Risk Management
Treasury asks whether terrorism risk insurance program should bolster cyber coverage
The Treasury Department is soliciting public feedback on whether it should change a terrorism risk insurance program to address cyber-related losses. In a Federal Register notice set for publication Wednesday, Treasury seeks comment from the public for a mandatory report it must deliver to Congress this summer on the effectiveness of the terrorism risk insurance…
AI, Cybersecurity, Data Breaches, Global Security News, Government & Policy, Network Security
QualDerm Partners December 2025 data breach impacts over 3 Million people
Over 3.1M people affected as QualDerm Partners suffered a December 2025 breach, exposing personal, medical, and health insurance data. Over 3.1 million people are affected by a December 2025 data breach at QualDerm Partners, where hackers stole personal, medical, and health insurance information from the company’s internal systems. QualDerm Partners is a U.S.-based healthcare management…
AI, Compliance, Endpoint, Exploits, Global Security News, Government & Policy, Risk Management
HP launches TPM Guard to help defeat physical TPM attacks
The Trusted Platform Module (TPM), developed by the Trusted Computing Group (TCG), is a mandatory security component in any computer running Windows 11. It stores sensitive information such as encryption keys in a separate, secure chip, passing it to the CPU as required. However, there’s a problem. If an attacker can get physical access to…
AI, Compliance, Endpoint, Exploits, Global Security News, Government & Policy, Risk Management
HP launches TPM Guard to help defeat physical TPM attacks
The Trusted Platform Module (TPM), developed by the Trusted Computing Group (TCG), is a mandatory security component in any computer running Windows 11. It stores sensitive information such as encryption keys in a separate, secure chip, passing it to the CPU as required. However, there’s a problem. If an attacker can get physical access to…
AI, Global Security News, Government & Policy, Risk Management
RSA ID Plus Sovereign Deployment delivers full-stack identity for high-risk environments
RSA has unveiled RSA ID Plus Sovereign Deployment, a high-assurance identity solution built for organizations requiring continuous availability, data sovereignty, and resilience against advanced threats. RSA ID Plus Sovereign Deployment is the next evolution in RSA ID Plus, the identity and access management (IAM) security platform featuring complete multi-factor authentication (MFA), SSO, and access capabilities.…
AI, Cybersecurity, Global Security News, Government & Policy, Network Security, Venture
Experts insist Trump administration’s cyber strategy is already paying off
SAN FRANCISCO — The Trump administration’s two-week old cyber strategy that aims to promote more proactive, offensive actions while bolstering federal networks and critical infrastructure, is a significant shift that’s already materializing in meaningful ways, a group of experts said Monday at the RSAC 2026 Conference. Despite the federal government’s absence from the industry’s largest…
AI, Global Security News, Government & Policy
State officials, election experts question California sheriff’s seizure of ballots
A California county sheriff and Republican contender for the state’s gubernatorial race has seized 650,000 physical ballots from Riverside County, saying they were part of an investigation into election fraud tied to redistricting wars. State officials and election security experts say that the underlying allegations are spurious and local law enforcement do not have the…
AI, Data Breaches, Global Security News, Government & Policy, malware, Russia
FBI: Iranian hackers targeting opponents with Telegram malware
Iranian government-connected groups are deploying malware via the Telegram messaging app, taking aim at dissidents and other opponents of Tehran around the world, the FBI said in an alert Friday. The FBI said attackers linked to the Ministry of Intelligence and Security are behind the campaign, which stretches back to 2023. The bureau is escalating…
AI, Cybersecurity, Exploits, Global Security News, Government & Policy
An AI-powered phishing campaign has compromised hundreds of organizations
A phishing campaign tied to AI cloud-hosting service Railway has given hackers access to the Microsoft cloud accounts for hundreds of businesses, according to researchers at Huntress. Rich Mozeleski, product manager for Huntress’ identity team, told CyberScoop the campaign is currently tied to a smaller actor and approximately a dozen IP addresses, but has managed…
AI, Global Security News, Government & Policy
Attackers Hide Infostealer in Copyright Infringement Notices
A phishing campaign targeting healthcare, government, hospitality, and education sectors in various countries uses several evasion techniques to avoid detection.
AI, Apps, Exploits, Global Security News, Government & Policy, Russia
Russian hackers go after high-value targets through Signal
Russian intelligence-linked hackers are targeting commercial messaging platforms, with Signal a primary focus, the FBI and CISA warn. The campaign is aimed at individuals of intelligence interest, including government personnel, journalists, and others with access to sensitive communications. It is believed that the campaign has compromised thousands of commercial messaging applications accounts. People who use…
AI, Apps, Endpoint, Global Security News, Government & Policy, Network Security, Risk Management
Why US companies must be ready for quantum by 2030: A practical roadmap
Last year, I asked a room of infrastructure, identity and application leaders a simple question: “Where in our environment do we rely on RSA or elliptic curve cryptography?” The first answers were the usual suspects: TLS on the edge, our VPN and the certificates on laptops. Then we pulled up a dependency map and the…
Exploits, Global Security News, Government & Policy
CISA orders feds to patch DarkSword iOS flaws exploited attacks
CISA ordered U.S. government agencies to patch three iOS vulnerabilities targeted in cryptocurrency theft and cyberespionage attacks using the DarkSword exploit kit. […]
AI, Apps, Exploits, Global Security News, Government & Policy, malware, Risk Management, Russia
Russia-linked actors target WhatsApp and Signal in phishing campaign
Russia-linked actors target WhatsApp and Signal accounts of officials and journalists via phishing, gaining access to messages and contacts. Threat actors linked to Russian Intelligence Services are running phishing campaigns to hijack high-value accounts on messaging apps like WhatsApp and Signal, the FBI warns. “The FBI has identified cyber actors associated with Russian Intelligence Services targeting…
AI, Cybersecurity, Data Breaches, Europe, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management
U.S. CISA adds Apple, Laravel Livewire and Craft CMS flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Apple, Laravel Livewire and Craft CMS flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Apple, Laravel Livewire and Craft CMS flaws to its Known Exploited Vulnerabilities (KEV) catalog. Below are the flaws added to the catalog: CVE-2025-31277 (CVSS score of 8.8)…
AI, Apps, china, Cybersecurity, Data Breaches, Exploits, Global Security News, Government & Policy, malware, Network Security, Russia
Security Affairs newsletter Round 568 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. WorldLeaks ransomware group breached the City of Los Angels PolyShell flaw exposes Magento and Adobe Commerce…