Our nation has entered a new fraud arms race fueled by AI. With billions of dollars in fraud losses mounting in both the private and public sectors, it’s clear the old ways of deterring fraud aren’t working. That’s why we need a new playbook that starts with understanding how fraudsters operate, evolving our defenses, and…
AI, Global Security News
OPSWAT adds predictive AI engine to MetaDefender for pre-execution threat detection
OPSWAT has announced OPSWAT Predictive Alin AI, its first proprietary AI-based threat detection engine for the MetaDefender Platform. This AI-based innovation introduces a new category of capability within the MetaDefender Platform, a high-confidence predictive layer that works alongside existing detection and prevention engines to assess malicious intent before execution, driving greater efficiency across the platform.…
Global Security News, malware
New macOS Malware notnullOSX Targets Crypto Wallets Over $10K
macOS Malware notnullOSX targets crypto wallets over $10K, using fake apps, Terminal tricks, and backdoors to steal funds and sensitive data.
AI, Compliance, Cybersecurity, Data Breaches, Europe, Exploits, Global Security News, Government & Policy, malware, Network Security, Politics, Risk Management
How Phishing Is Targeting Germany’s Economy: Active Threats from Finance to Manufacturing
Germany’s economy is a precision machine: finance fuels it, manufacturing builds it, telecom connects it, IT optimizes it, and healthcare sustains it. The country sits at the crossroads of industrial power and digital transformation, making it irresistibly attractive to attackers. In this article, we explore real-world attacks targeting five critical German industries, analyzed by ANY.RUN’s analysts using Interactive…
AI, Cybersecurity, Exploits, Global Security News
Acrobat Reader zero-day exploited in the wild for many months
Unknown attackers have exploited a zero-day Adobe Acrobat Reader vulnerability since November 2025 and possibly even earlier, security researcher Haifei Li has discovered. PDF files carry the exploit Haifei Li is one of the creators of EXPMON, a sandbox-based cybersecurity system for detecting advanced file-based exploits. It does so by analyzing suspicious files submitted through…
AI, Global Security News
The Hidden Security Risks of Shadow AI in Enterprises
As AI tools become more accessible, employees are adopting them without formal approval from IT and security teams. While these tools may boost productivity, automate tasks, or fill gaps in existing workflows, they also operate outside the visibility of security teams, bypassing controls and creating new blind spots in what is known as shadow AI. While similar to…
AI, Cloud Security, Global Security News, Risk Management
Intruder expands cloud security with agentless container image scanning
Intruder has announced the release of Container Image Scanning, a new upgrade to its cloud security capabilities that automatically scans container images for vulnerabilities, granting customers actionable insight into container risk without deploying and maintaining scanning agents across their estates. Leveraging existing integrations with major cloud providers, Intruder supports Amazon Web Services Elastic Container Registry,…
Global Security News
Atomic Stealer MacOS ClickFix Attack Bypasses Apple Security Warnings
macOS 26.4 update introduced security warnings into Terminal to prevent ClickFix attacks, so attackers have shifted to Script Editor instead
AI, Exploits, Global Security News
Adobe Reader Zero-Day Exploited via Malicious PDFs Since December 2025
Threat actors have been exploiting a previously unknown zero-day vulnerability in Adobe Reader using maliciously crafted PDF documents since at least December 2025. The finding, detailed by EXPMON’s Haifei Li, has been described as a highly-sophisticated PDF exploit. The artifact (“Invoice540.pdf”) first appeared on the VirusTotal platform on November 28, 2025. A second
AI, Global Security News
Middle East Hack-for-Hire Operation Traced to South Asian Cyber Espionage Group
A spear-phishing campaign which spread across the Middle East between 2023 and 2024 has now been linked to Bitter APT group
AI, Global Security News, Government & Policy
Bitter-Linked Hack-for-Hire Campaign Targets Journalists Across MENA Region
An apparent hack-for-hire campaign likely orchestrated by a threat actor with suspected ties to the Indian government targeted journalists, activists, and government officials across the Middle East and North Africa (MENA), according to findings from Access Now, Lookout, and SMEX. Two of the targets included prominent Egyptian journalists and government critics, Mostafa
AI, Data Breaches, Europe, Global Security News
Eurail says December data breach impacts 300,000 individuals
Eurail B.V., a European travel operator that provides digital passes covering 33 national railways, says attackers stole the personal information of over 300,000 individuals in a December 2025 data breach. […]
Global Security News, malware, Network Security, Risk Management
Advenica’s File Scanner Kiosk scans USB media for malware
Advenica announced the File Scanner Kiosk, a system that scans USB media for malware and helps businesses reduce infection risk. With the reliance on external media for file transfers, organisations face increased vulnerability to malware. The File Scanner Kiosk addresses this challenge by providing an automated, reliable, and efficient way to scan USB media for…
AI, Global Security News
Governance Gaps Emerge as AI Agents Drive 76% Increase in NHIs
SANS Institute reveals that AI agents are behind a 76% surge in non-human identities
AI, china, Cybersecurity, Data Breaches, Global Security News, Government & Policy, Risk Management
The alleged breach of China’s National Supercomputing Center can have serious geopolitical consequences
A hacker allegedly stole 10+ PB of sensitive military and aerospace data from China’s National Supercomputing Center, risking national security. A massive alleged breach has hit China’s National Supercomputing Center (NSCC) in Tianjin. A hacker claims to have exfiltrated over 10 petabytes of highly sensitive data, including military, aerospace, and missile-related information. The facility supports…
Exploits, Global Security News
Hackers exploiting Acrobat Reader zero-day flaw since December
Attackers have been exploiting a zero-day vulnerability in Adobe Reader using maliciously crafted PDF documents since at least December. […]
AI, Global Security News, privacy
WhatsApp brings long-awaited privacy control over who can contact you
After years of waiting, WhatsApp is set to roll out a username feature that will allow people to connect and communicate without sharing their phone numbers. This means more privacy and better control over phone number visibility by choosing a unique username. WhatsApp username feature (Source: WABetaInfo) The feature will become available to a limited…
AI, Apps, Cybersecurity, Data Breaches, Exploits, Global Security News, Risk Management
Patch windows collapse as time-to-exploit accelerates
The gap between vulnerability disclosure and exploitation is drastically decreasing, putting security teams’ patching practices on notice. According to Rapid7’s latest Cyber Threat Landscape Report, confirmed exploitation of newly disclosed high- and critical-severity vulnerabilities (CVSS 7-10) increased 105% year to 146 in 2025, up from 71 in 2024. Moreover, the median time from vulnerability publication…
AI, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Network Security, privacy, Risk Management
Weak at the seams
Before I ever held a security title, I was a software engineer implementing vertically integrated automation systems for industrial manufacturing, warehouse-scale conveyor networks, robotic material handling, physical infrastructure controlled by software on increasingly connected networks. I learned early that tightly coupled systems produce tightly coupled failures. When a single software fault could halt a distribution…
AI, Global Security News
Meta’s Muse Spark takes AI a step closer to personal superintelligence
Meta Superintelligence Labs has introduced Muse Spark, a natively multimodal reasoning model with support for tool use, visual chain of thought, and multi-agent orchestration. The release includes a Contemplating mode, which is rolling out gradually and orchestrates multiple agents that reason in parallel. Prompt: Can you turn this into a sudoku game that I can…
Global Security News
Google Warns of New Threat Group Targeting BPOs and Helpdesks
Google’s threat intel team warns UNC6783, a new extortion group possibly linked to the “Raccoon” persona, is targeting BPOs and enterprises
Data Breaches, Global Security News, Network Security
Hackers steal $3.6 million from crypto ATM giant Bitcoin Depot
Bitcoin Depot, which operates one of the largest Bitcoin ATM networks, says attackers stole $3.665 million worth of Bitcoin from its crypto wallets after breaching its systems last month. […]
AI, Apps, Global Security News
The top priority for Adobe’s next CEO? Prepping for the ‘age of agents’
Adobe’s Shantanu Narayen announced plans to step down as CEO last month after 18 years leading software vendor through several periods of tech change from the arrival of the cloud, mobile computing, and the early days of artificial intelligence. For whomever is tapped next for the top job — the search is expected to…
AI, Europe, Exploits, Global Security News, malware, Network Security, Risk Management
Internet-Exposed ICS Devices Raise Alarm for Critical Sectors
Exposed ICS devices and insecure protocols like Modbus increase risks to critical infrastructure, enabling disruption, data access, and potential sabotage. Malware targeting industrial control systems (ICS) poses a serious risk to critical infrastructure, with threats like Stuxnet, Industroyer, Triton, Havex, and BlackEnergy already demonstrating the ability to disrupt operations, cause outages, and even inflict physical…
AI, Global Security News
Microsoft suspends dev accounts for high-profile open source projects
Microsoft has suspended developer accounts used to maintain multiple high-profile open-source projects without proper notification and no way to quickly reinstate them, effectively blocking them from publishing new software builds and security patches for Windows users. […]
AI, Global Security News, Risk Management
AI agent intent is a starting point, not a security strategy
In this Help Net Security video, Itamar Apelblat, CEO of Token Security, walks through findings from the company’s research, which shows that 65% of agentic chatbots have never been used yet still hold live access credentials. He explains why organizations treat AI agents more like quick experiments than governed identities, and why that creates risks…
AI, Global Security News
Asqav: Open-source SDK for AI agent governance
AI agents are executing consequential tasks autonomously, often across multiple systems and with little record of what they did or why. Asqav, a Python SDK released under the MIT license, addresses that gap by attaching a cryptographic signature to each agent action and linking entries into a hash chain. The signing algorithm is ML-DSA-65, standardized…
AI, Global Security News
Phishers sneak through using GitHub and Jira’s own mail delivery infrastructure
Attackers are abusing the notification systems of SaaS platforms like GitHub and Jira to send phishing and spam emails, Cisco Talos researchers are warning. “Because the emails are dispatched from the platform’s own infrastructure, they satisfy all standard authentication requirements (SPF, DKIM, and DMARC), effectively neutralizing the primary gatekeepers of modern email security,” they note.…
AI, Global Security News, Government & Policy, Risk Management
Prompt injection tags along as GenAI enters daily government use
Routine use of GenAI has moved into daily operations in state and territorial government environments, placing new security risks within common workflows. A Center for Internet Security (CIS) report, Prompt Injections: The Inherent Threat to Generative AI, identifies prompt injection as a persistent concern tied to that adoption. Adoption expands exposure Use of AI tools…
AI, Global Security News
Video: SotaTek US CEO on AI Infrastructure Mistakes MSPs Must Fix
In this Channel Insider Partner POV episode, Katie Bavoso sits down with MK Tong, CEO of SotaTek USA, to break down why infrastructure—not AI models—is the real bottleneck for enterprise success. As AI workloads grow more complex, many organizations are rushing deployments without rethinking their infrastructure strategy. Tong shares where companies go wrong, how infrastructure…
AI, Global Security News
iTWire TV: TrendAI’s ANZ Field CISO on why Australian enterprises can’t wait to be “100% ready” for AI
GUEST INTERVIEW: Trend Micro has been around for nearly four decades. Now it’s got a new enterprise identity, TrendAI, and a new mandate: help organisations adopt AI without blowing themselves up in the process.
AI, china, Global Security News, Russia
Inside the Race to Protect Submarine Cables From Sabotage
The U.S. and allies are turning to tech, patrols and new routes to defend crucial underwater data infrastructure against Russia and China.
Global Security News
ISC Stormcast For Thursday, April 9th, 2026 https://isc.sans.edu/podcastdetail/9886, (Thu, Apr 9th)
(c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
AI, Global Security News
VIDEO INTERVIEW: TrendAI’s ANZ Field CISO on why Australian enterprises can’t wait to be “100% ready” for AI
GUEST INTERVIEW: Trend Micro has been around for nearly 4 decades. Now it’s got a new enterprise identity, TrendAI, and a new mandate: help organisations adopt AI without blowing themselves up in the process.
AI, Compliance, Cybersecurity, Europe, Global Security News, Network Security, privacy
Questions raised about how LinkedIn uses the petabytes of data it collects
Through LinkedIn’s more than one billion business users, the Microsoft unit has access to a vast array of personally-identifiable information, including data that could identify religious and political positions. What is less clear is what LinkedIn does with all of that data. A small European company that sells a browser extension to leverage different aspects…
AI, Global Security News
At David Sacks’s Behest, White House Barrels Forward on Industry-Friendly AI Policy
In the runup to the midterms, the Trump administration is planning to emphasize AI’s economic benefits , but some allies are warning of political blowback.
Global Security News, malware, Russia
Russia’s Forest Blizzard Nabs Rafts of Logins Via SOHO Routers
Heard of fileless malware? How about malwareless cyber espionage? Russia’s APT28 is spying on global organizations by modifying just one DNS setting in vulnerable routers.
AI, Global Security News
Number Usage in Passwords: Take Two, (Thu, Apr 9th)
In a previous diary [1], we looked to see how numbers were used within passwords submitted to honeypots. One of the items of interest was how dates, and more specifically years, were represented within the data and how that changed over time. It is often seen that years and seasons are used in passwords, especially…
AI, Compliance, Cybersecurity, Europe, Global Security News, Network Security, privacy
Questions raised about how LinkedIn uses the petabytes of data it collects
Through LinkedIn’s more than one billion business users, the Microsoft unit has access to a vast array of personally-identifiable information, including data that could identify religious and political positions. What is less clear is what LinkedIn does with all of that data. A small European company that sells a browser extension to leverage different aspects…
Global Security News
Adobe Reader zero-day vulnerability in active exploitation
Categories: Threat Research Tags: advisory, vulnerability, Adobe Reader
AI, Global Security News, Network Security
We let OpenClaw loose on an internal network. Here’s what it found
Following our article on the challenges posed by agentic AI, we gave OpenClaw access to one of our legacy networks Categories: Threat Research Tags: OpenClaw, LLM, AI, penetration testing, Red Team, CISO, Sophos X-Ops
AI, Exploits, Global Security News
The vulnerability flood is here. Here’s what it means – and how to prepare
We can’t control the pace of AI-driven vulnerability discovery, but we can control how fast we respond. Categories: Sophos Insights Tags: LLM, AI, Exploit, vulnerability, Active Adversary, Pacific Rim
Global Security News, Government & Policy
U.S. Public Sector Under Siege: Threat Intelligence for Q1 2026
The first quarter of 2026 has reinforced a hard truth: U.S. government agencies and educational institutions are operating in the most hostile cyber threat environment ever recorded.
AI, Global Security News, Network Security
We let OpenClaw loose on an internal network. Here’s what it found
Following our article on the challenges posed by agentic AI, we gave OpenClaw access to one of our legacy networks Categories: Threat Research Tags: OpenClaw, LLM, AI, penetration testing, Red Team, CISO, Sophos X-Ops
Global Security News
Court Denies Anthropic Request to End Defense Department Punishment
The company is involved in two separate legal actions related to being blacklisted by the Pentagon.
AI, Cybersecurity, Global Security News, privacy
Smashing Security podcast #462: LinkedIn is spying on you, and you agreed to nothing
LinkedIn has been secretly scanning your browser for over 6,000 installed extensions — on every single click you make. It can tell if you’re job hunting, what religion you are, and whether you have ADHD. And none of this is mentioned anywhere in their privacy policy. Meanwhile, California’s crypto millionaires are learning that no amount…
AI, Global Security News
iTWire TV: HPE’s April Neoh on AI Bias, Trust, and Why the Scales Still Aren’t Balanced
GUEST INTERVIEW: April has spent roughly 20 years in tech. She’s watched the suits get replaced by suits wearing sneakers. She’s seen decisions go from months-long deliberation cycles to minimum viable products shipped at pace. And now, as Account Executive for High Performance Computing and AI at Hewlett Packard Enterprise, she’s watching AI reshape the…
AI, Compliance, Cybersecurity, Global Security News, Government & Policy, Network Security, privacy, Russia
LinkedIn is spying on you, and you agreed to nothing
LinkedIn has been secretly scanning your browser for over 6,000 installed extensions — on every single click you make. It can tell if you’re job hunting, what religion you are, and whether you have ADHD. And none of this is mentioned anywhere in their privacy policy. Meanwhile, California’s crypto millionaires are learning that no amount…
AI, Cybersecurity, Global Security News, Risk Management
Urban Driving Car Accident Factors and Common Risks in Charlotte
In this post, I will talk about urban driving car accident factors and common risks in Charlotte. In Charlotte, daily driving patterns often involve busy intersections, stop and go traffic, and constant lane changes that increase the chances of unexpected collisions. From rear end crashes near Uptown to side impact accidents at crowded intersections, these…
AI, Global Security News
HPE’s April Neoh on AI Bias, Trust, and Why the Scales Still Aren’t Balanced
GUEST INTERVIEW: April has spent roughly 20 years in tech. She’s watched the suits get replaced by suits wearing sneakers. She’s seen decisions go from months-long deliberation cycles to minimum viable products shipped at pace. And now, as Account Executive for High Performance Computing and AI at Hewlett Packard Enterprise, she’s watching AI reshape the…
AI, Global Security News
Hackers use pixel-large SVG trick to hide credit card stealer
A massive campaign impacting nearly 100 online stores using the Magento e-commerce platform hides credit card-stealing code in a pixel-sized Scalable Vector Graphics (SVG) image. […]
AI, Global Security News
Google: New UNC6783 hackers steal corporate Zendesk support tickets
A threat actor tracked as UNC6783 is compromising business process outsourcing (BPO) providers to gain access to high-value companies across multiple sectors. […]
AI, Cybersecurity, Endpoint, Exploits, Global Security News, Network Security, Risk Management
U.S. CISA adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Ivanti EPMM to its Known Exploited Vulnerabilities catalog The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a flaw in Ivanti EPMM, tracked as CVE-2026-1340 (CVSS score of 9.8), to its Known Exploited Vulnerabilities (KEV) catalog. The critical vulnerability is a code injection in Ivanti Endpoint Manager Mobile…
AI, Global Security News
iTWire TV: SAP’s Thomas Pfiester – Your AI Won’t Work If Your Data Is a Mess
SAP is betting big on something it calls “agentic transformation.” The idea is simple, even if the execution is anything but: a future where human workers and AI agents coexist across every business process.
AI, Data Breaches, Europe, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management, Russia
Russia-linked APT28 uses PRISMEX to infiltrate Ukraine and allied infrastructure with advanced tactics
APT28 targets Ukraine and allies with PRISMEX malware, using stealthy techniques for espionage and command-and-control. Russia-linked group APT28 (aka UAC-0001, aka Fancy Bear, Pawn Storm, Sofacy Group, Sednit, BlueDelta, and STRONTIUM) is running a spear-phishing campaign against Ukraine and its allies, deploying a new malware suite called PRISMEX. Active since September 2025, the campaign uses advanced stealth techniques like steganography and…
AI, Global Security News
Threat Actors Get Crafty With Emojis to Escape Detection
When 🤖 means “bot available,” 🧰 signifies “toolkit,” or 💰💰💰 translates to “big ransom,” bad actors can evade filters and keep it all on the down-low.
AI, Global Security News
ABBYY and Tecala Partner to Bring AI Agent–Driven Document Processing to Market
New joint solution aims to move enterprises beyond OCR and RPA toward fully orchestrated, end-to-end document workflows
Exploits, Global Security News
BlueHammer: Windows zero-day exploit leaked
A buggy but functional proof-of-concept (PoC) exploit for an unpatched Windows local privilege escalation vulnerability dubbed BlueHammer has been published on GitHub by someone who goes by the handle Chaotic Eclipse and Nightmare Eclipse. Several security researchers have fixed the bugs in the exploit and made it work on patched Windows 10, 11, and Windows…
Global Security News
AI-Led Remediation Crisis Prompts HackerOne to Pause Bug Bounties
Discovery used to be the bottleneck for open source bugs, but with automated discovery, remediation’s the bottleneck, which bounties don’t fund.
AI, Global Security News, malware
New macOS stealer campaign uses Script Editor in ClickFix attack
A new campaign delivering the Atomic Stealer malware to macOS users abuses the Script Editor in a variation of the ClickFix attack that tricked users into executing commands in Terminal. […]
AI, Global Security News
Boomi Named a Leader in IDC MarketScape for Worldwide API Management 2026
Boomi, the data activation company, has announced it has been named a Leader in the IDC MarketScape for Worldwide API Management 2026 Assessment, which evaluates vendors based on their capabilities and strategies for delivering API managementsolutions (APIM) in an increasingly AI-driven, hybrid enterprise landscape.
Global Security News
D-Link A/NZ Launches DUF-E01 14-in-1 Thunderbolt 4 Docking Station
New premium docking station delivers 8K DisplayPort, 4K HDMI, 40Gbps Thunderbolt 4 and up to 60W laptop charging engineered for professionals who demand more from their desk setup
AI, Apps, Cybersecurity, Global Security News, Risk Management
A framework for securely collecting forensic artifacts into S3 buckets
When customers experience a security incident, they need to acquire forensic artifacts to identify root cause, extract indicators of compromise (IoCs), and validate remediation efforts. NIST 800-86, Guide to Integrating Forensic Techniques into Incident Response, defines digital forensics as a process comprised of four basic phases: collection, examination, analysis, and reporting. This blog post focuses…
AI, Global Security News, privacy
ExpressVPN launches ExpressAI, an AI platform built for true privacy
ExpressAI is independently audited by Cure53, and is built on confidential computing to ensure user messages can’t be accessed or viewed by anyone
AI, Endpoint, Exploits, Global Security News, Government & Policy
CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday
CISA has given U.S. government agencies four days to secure their systems against a critical-severity vulnerability in Ivanti Endpoint Manager Mobile (EPMM) that has been exploited in attacks since January. […]
AI, APAC, Apps, Cybersecurity, Europe, Global Security News, Government & Policy, Network Security, Risk Management
Arelion employs NETSCOUT Arbor DDoS protection products
Arelion operates the world’s best-connected IP fiber backbone, providing high-capacity transit services to a variety of the globe’s leading ISPs as well as many large enterprises. They provide an award-winning customer experience to clients in 129 countries worldwide, and their global Internet services connect more than 700 cloud, security, and content providers with low-latency transit.…
AI, Cybersecurity, Global Security News, Network Security
6 Winter 2026 G2 Leader Badges prove this DDoS protection stands out
NETSCOUT’s Arbor Threat Mitigation System (TMS) was honored with five badges, while Arbor Sightline earned one badge on G2 for the winter 2026 quarter. These badges span multiple categories. Arbor TMS was awarded badges in the following categories for winter 2026: Leader – Enterprise DDoS Protection Momentum Leader – DDoS Protection Regional Leader (Asia) – DDoS Protection Leader –…
AI, Cybersecurity, Endpoint, Global Security News, Network Security, Risk Management
NWN Launches AI Cyber Suite, Expands Security Partnerships
AI-powered technology solutions provider NWN has announced the launch of NWN Cybersecurity, an AI-enabled managed security operations suite. NWN Experience Management Platform gains advanced integrations with Palo Alto, Cisco, and Arctic Wolf The new suite introduces new managed services, delivers new platform integrations through NWN’s patented Experience Management Platform (EMP), and expands strategic partnerships with…
AI, Cybersecurity, Global Security News, malware
New Chaos Variant Targets Misconfigured Cloud Deployments, Adds SOCKS Proxy
Cybersecurity researchers have flagged a new variant ofmalware called Chaosthat’scapable of hitting misconfigured cloud deployments, marking an expansion of the botnet’s targeting infrastructure. “Chaos malware is increasingly targeting misconfigured cloud deployments, expanding beyond its traditional focus on routers and edge devices,” Darktrace said in a new report.
AI, Global Security News
“Responsible” Use of AI in Education is a Range, Turnitin Finds in First Learning Integrity Insights Report
Turnitin’s report shows a consistent percentage of “traditional” plagiarism, even in the age of AI
AI, Data Security, Global Security News, Risk Management
Trellix strengthens data security for the GenAI era
Trellix announced enhanced data security capabilities and a strategic framework designed to help organizations confidently adopt generative AI while protecting sensitive data from exposure and loss. “The rapid adoption of AI tools across the enterprise is creating new and often invisible data risks,” said Alex Au Yeung, CPO, Trellix. “Trellix brings together policy, visibility, and…
AI, APAC, Global Security News, Government & Policy, Network Security, Risk Management
How botnet-driven DDoS attacks evolved in 2H 2025
The second half of 2025 marked a pivotal shift in the world of distributed denial-of-service (DDoS) attacks. Organizations across the globe faced a perfect storm: Artificial intelligence (AI) matured as an offensive weapon, botnet infrastructure reached new heights with multiterabit attack capacity, and DDoS-for-hire services became more accessible—even to nontechnical adversaries. NETSCOUT’s ATLAS global threat intelligence…
AI, Global Security News
Cloudera Advances Hybrid Data Platform with Long-Term Stability, Elastic Scale, and Open Data Interoperability
The latest platform advancements eliminate disruptive upgrade cycles, provide flexibility across hybrid environments, and enable AI anywhere while accelerating analytics across the data estate
AI, Global Security News
A chatbot is not an AI strategy
GUEST OPINION: Most businesses asking for a chatbot are actually asking for something else entirely. The trouble is, they do not know it yet.
APAC, Exploits, Global Security News
13-year-old bug in ActiveMQ lets hackers remotely execute commands
Security researchers discovered a remote code execution (RCE) vulnerability in Apache ActiveMQ Classic that has gone undetected for 13 years and could be exploited to execute arbitrary commands. […]
AI, Compliance, Cybersecurity, Global Security News, Risk Management
Australian organisations face compliance overload as cybercriminals accelerate attacks
GUEST OPINION: Australian organisations navigate one of the most complex regulatory cybersecurity environments in the world while cybercriminals operate without constraint, speed limits, or compliance obligations. This imbalance creates systemic risk.
AI, Global Security News
It’s iPhone speculation time: flips, flaps — and Fold
We’ve reached that familiar point in Apple’s annual iPhone speculation cycle when conflicting reports insist an unreleased, unconfirmed product is both behind schedule and set to appear right on time. As with Apple’s annual macOS system naming fable, this moment comes every year. One publication, sometimes Nikkei, might claim development is running late, while a second…
AI, APAC, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management
Anthropic’s AI Push Signals Major Shift for Channel Partners
Anthropic is rapidly scaling both the infrastructure and security footprint of its AI business, signaling a shift that could reshape how enterprises—and their channel partners—approach both compute and cyber risk. The company this week announced a massive expansion of TPU capacity through Google and Broadcom while simultaneously launching Project Glasswing, a sweeping industry collaboration aimed…
AI, APAC, Compliance, Data Breaches, Europe, Exploits, Global Security News, Government & Policy, malware
TeamPCP Supply Chain Campaign: Update 007 – Cisco Source Code Stolen via Trivy-Linked Breach, Google GTIG Tracks TeamPCP as UNC6780, and CISA KEV Deadline Arrives with No Standalone Advisory, (Wed, Apr 8th)
This is the seventh update to the TeamPCP supply chain campaign threat intelligence report, “When the Security Scanner Became the Weapon” (v3.0, March 25, 2026). Update 006 covered developments through April 3, including the CERT-EU European Commission breach disclosure, ShinyHunters’ confirmation of credential sharing, Sportradar breach details, and Mandiant’s quantification of 1,000+ compromised SaaS environments. This update consolidates five…
AI, Global Security News
Meta Announces New AI Model in Major Test of Company’s Ambitions
The disappointment of last model’s release more than a year ago led to an expensive overhaul of the company’s AI operations.
AI, Global Security News
ABBYY and Tecala Partner to Bring AI Agent–Driven Document Processing to Market
New joint solution aims to move enterprises beyond OCR and RPA toward fully orchestrated, end-to-end document workflows
AI, Apps, Cybersecurity, Global Security News, Government & Policy, malware
Hack-for-hire spyware campaign targets journalists in Middle East, North Africa
An apparent hack-for-hire campaign from a group with suspected Indian government connections targeted Middle Eastern and North African journalists and activists using spyware, three collaborating organizations said in reports published Wednesday. The attacks shared infrastructure that pointed to the advanced persistent threat group known as Bitter, which most frequently targets government, military, diplomatic and critical…
AI, Cybersecurity, Global Security News
Masjesu Botnet Emerges as DDoS-for-Hire Service Targeting Global IoT Devices
Cybersecurity researchers have lifted the curtain on a stealthy botnet that’s designed for distributed denial-of-service (DDoS) attacks. Called Masjesu, the botnet has been advertised via Telegram as a DDoS-for-hire service since it first surfaced in 2023. It’s capable of targeting a wide range of IoT devices, such as routers and gateways, spanning multiple architectures. “Built for
Global Security News
The hidden productivity cost of file format incompatibility in SMB environments
GUEST OPINION: SMBs have few resources, and efficiency is frequently a priority. Nonetheless, there is one issue that is still posing a challenge to workflows, and that is the incompatibility of file formats.
AI, Global Security News, Russia
Operation Masquerade: FBI Disrupts Russian Router Hacking Campaign
Operation Masquerade: The FBI and DoJ disrupted a Russian GRU campaign that hijacked routers via DNS attacks to spy on users and steal credentials.
AI, Global Security News
LevelBlue research finds CTOs push for enterprise alignment as human factors undermine cyber resilience
GUEST RESEARCH: New report finds 75 per cent of CTOs say unclear ownership impairs cyber resilience strategy.
AI, Global Security News
Meta Announces New AI Model
New model was competitive with leadings labs’ offerings on benchmark tests, the company has said.
AI, Global Security News, Risk Management
Google API Keys Quietly Gain Access to Gemini on Android Devices
Google API key flaw exposes mobile apps to Gemini AI access, private files and billing risks
Global Security News
Fraud Rockets Higher in Mobile-First Latin America
Cyber-fraudsters move quickly from compromised devices to account takeover to funds transfer, shifting money before many financial institutions can react.
AI, Compliance, Global Security News, Network Security, Risk Management
Yael Nardi joins Minimus as Chief Business Officer to drive hyper-growth
New York, NY: Minimus, a provider of hardened container images and secure container images designed to reduce CVE risk, today announced the appointment of Yael Nardi as Chief Business Officer (CBO). In this newly created role, Nardi will lead the company’s next phase of operations, overseeing top-of-funnel growth strategy, strategic operations, and future corporate development. As the market landscape…
AI, Apps, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
Iranian Threat Actors Target U.S. Critical Infrastructure
A new federal cybersecurity alert is raising alarms across critical infrastructure sectors, as Iranian-affiliated threat actors actively target programmable logic controllers (PLCs) in the United States. The campaign, confirmed by multiple federal agencies, has already caused operational disruptions and financial losses — marking a notable escalation in cyber activity against industrial environments. “The most notable…
Endpoint, Global Security News
WatchGuard Disrupts Endpoint Pricing to Give MSPs Competitive Edge
Enterprise-grade product features, combined with agile and aggressive licensing model, offer MSPs maximum agility in competitive Endpoint Detection and Response (EDR) market
Global Security News
Critical Vulnerability in Ninja Forms Exposes WordPress Sites
Ninja Forms File Upload RCE via unauthenticated arbitrary file upload; update to 3.3.27 immediately
AI, Global Security News
Genpact, Parallel Partner on Agentic AI Research Tools
Genpact has partnered with Parallel Web Systems to bring agentic AI-powered web research into enterprise workflows, aiming to accelerate decision-making and automation across insurance and sales operations. The collaboration integrates Parallel’s AI-native web research APIs into Genpact’s enterprise architecture, enabling agents to retrieve real-time data, automate analysis, and deliver verifiable insights for business users. Genpact…
AI, Global Security News
EV insurance prices up 10% in 12 months, but Aussies could save with one simple move
More than 54%* of Australians are considering a switch to an electric or hybrid car amid rising fuel costs, but Compare the Market is urging motorists to avoid being stung with higher insurance premiums by taking time to shop around.
Global Security News
Full Sail University to Open IBM Cyber Defense Range Powered by AWS and Cloud Range on Campus
Global Security News
Zip to launch ZMobile to Australian customers
Zip Co (ASX: ZIP), the digital financial services company offering innovative, people-centred products, has today announced the launch of ZMobile, a new mobile offering created in partnership with TPG Telecom, designed to make it easier for Australians to access great mobile plans, providing value without compromise.
AI, Cybersecurity, Global Security News, Network Security
Signature Healthcare hit by cyberattack, services and pharmacies impacted
Massachusetts’ Signature Healthcare diverts ambulances and cancels services after a cyberattack disrupts hospital operations and pharmacy access. The hospital Signature Healthcare in Brockton, Massachusetts, diverted ambulances and canceled some services after a cyberattack disrupted operations. Pharmacies couldn’t fill prescriptions, though urgent care and walk-in services remained open. Signature Healthcare Brockton Hospital is a non-profit community…
Global Security News, Network Security
More Honeypot Fingerprinting Scans, (Wed, Apr 8th)
One question that often comes up when I talk about honeypots: Are attackers able to figure out if they are connected to a honeypot? The answer is pretty simple: Yes! Most “medium interaction” honeypots, like the one we are using, are just simulating various systems. These simulations are incomplete. For example, we are using the…