Geek-Guy.com

Tag: defense

Data Breaches, Exploits, Global Security News, Risk Management

Tuskira Quell identifies, mitigates, and validates zero-day risk before breach

Tuskira launched Quell, its exposure-led zero-day defense capability. Quell helps enterprises survive the window between a zero-day’s disclosure and a patch by determining which zero-days are reachable in their environment, whether existing controls would stop them, and which compensating control change would disrupt the exploit immediately. Organizations using Tuskira have cut breachable exposure by up…

Read more →

AI, Exploits, Global Security News

Insight bundles exposure management, patch operations, and XDR into one service

Insight has launched Insight Managed Exposure Defense, a managed security service designed to help organizations identify and address vulnerabilities. The service aims to help organizations reduce exposure and implement protections without lengthy procurement processes or reliance on multiple vendors. AI-assisted exploit development has compressed the weaponization window from days to hours, and most organizations lack…

Read more →

AI, Cloud Security, Cybersecurity, Exploits, Global Security News

Google AI Threat Defense targets attackers using AI to find flaws faster

Google Cloud introduced AI Threat Defense, an automated cybersecurity platform that combines several of the company’s security assets to find, prioritize, and patch software vulnerabilities at machine speed. The product is aimed at enterprises contending with attackers who use AI to discover and exploit flaws in hours or days, compressing windows that once stretched into…

Read more →

AI, Global Security News, Government & Policy

Ghostwriter Targets Ukraine Government Entities with Prometheus Phishing Malware

The Belarus-aligned threat actor known as Ghostwriter (aka UAC-0057 and UNC1151Ukraine’s National Security and Defense Council) has been observed using lures related to Prometheus, a Ukrainian online learning platform, to target government organizations in the country. The activity, per the Computer Emergency Response Team of Ukraine (CERT-UA), involves sending phishing emails to government

Read more →

AI, Global Security News

Cofense adds AI-powered campaign detection to stop phishing attacks

Cofense has announced new advancements to its Phishing Defense Platform aimed at improving detection and response to AI-powered phishing attacks. The updates include AI-driven phishing detection, enhanced triage automation, and AI-assisted training campaign creation designed to strengthen protection across the phishing lifecycle. Phishing threats are no longer one-off emails. Attackers launch coordinated, polymorphic campaigns that…

Read more →

AI, Cybersecurity, Exploits, Global Security News, Risk Management

OpenAI’s Daybreak uses Codex Security to identify risky attack paths

OpenAI Daybreak is the company’s cybersecurity initiative focused on building AI-assisted software defense into the development process from the start. It combines OpenAI models, Codex Security, and cyber-focused GPT-5.5 variants to help organizations identify, validate, and prioritize software vulnerabilities. How Daybreak identifies exploitable vulnerabilities Daybreak builds editable threat models from a company’s code repository, analyzes…

Read more →

AI, Apps, Cybersecurity, Endpoint, Exploits, Funding, Global Security News, Government & Policy, Risk Management, Venture

A DOD contractor’s API flaw exposed military course data and service member records

A defense technology company with Department of Defense contracts exposed user records and military training materials through API endpoints that lacked meaningful authorization checks, according to an account published by Strix, an open-source autonomous security testing project. The issue affected Schemata, an AI-powered virtual training platform used in military and defense settings. According to Strix,…

Read more →

AI, Endpoint, Global Security News, Risk Management

Owl IRD enables one-way forensic data transfer for incident response teams

Owl Cyber Defense has announced the launch of its Incident Response Diode (IRD), a pocket-sized protocol filtering diode (PFD) designed for incident response and forensics teams. The Owl IRD was developed to help users securely move evidence from compromised endpoints into trusted analysis environments without adding risk. The Owl IRD will be made available to…

Read more →

AI, Global Security News

Binary Defense expands NightBeacon with threat-aligned Detection Coverage Index

Binary Defense has announced the launch of NightBeacon Detect, a new module within NightBeacon, the company’s AI-driven SOC platform. The first capability released is Detection Coverage Index, a confidence-based view of how well an organization is covered against specific threat actors, their tactics, techniques, and sub-techniques, and how that coverage changes over time. NightBeacon Detect…

Read more →

Global Security News

Redwire’s Advanced Imaging and Navigation Technology Will Enable NASA’s Historic Artemis II Mission

Redwire Corporation, a global leader in space and defense technology solutions, today announced that its advanced optical imaging and sun sensor technology will launch on board the Orion spacecraft as part of NASA’s Artemis II mission, the first crewed mission for the Artemis program. Through contracts with Lockheed Martin, NASA’s prime contractor for Orion, Redwire…

Read more →

AI, Compliance, Cybersecurity, Data Breaches, Global Security News, Government & Policy, malware, Risk Management

ANY.RUN Recognized for Innovations and Market Leadership at Global InfoSec Awards 2026  

ANY.RUN has been recognized at Global InfoSec Awards 2026 by Cyber Defense Magazine (CDM), the industry’s leading electronic information security magazine. We’re especially proud and grateful that our impact for the industry has been acknowledged in two categories at once:  Innovative Malware Analysis for Sandbox  Market Leader Threat Intelligence   This dual recognition reflects the approach to cybersecurity we prioritize: supporting the full SOC…

Read more →

AI, Compliance, Cybersecurity, Data Breaches, Global Security News, Government & Policy, malware, Risk Management

ANY.RUN Recognized for Innovations and Market Leadership at Global InfoSec Awards 2026  

ANY.RUN has been recognized at Global InfoSec Awards 2026 by Cyber Defense Magazine (CDM), the industry’s leading electronic information security magazine. The award ceremony took place during RSAC 2026 conference. We’re especially proud and grateful that our impact for the industry has been acknowledged in two categories at once:  Innovative Malware Analysis for Sandbox  Market Leader Threat Intelligence   This dual…

Read more →

AI, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management

FCC targets foreign router imports amid rising cybersecurity concerns

The FCC will ban new foreign-made routers in the U.S. over security risks, unless approved by DHS or defense authorities. The U.S. FCC announced a ban on importing new foreign-made consumer routers, citing unacceptable cyber and national security risks. The decision, backed by Executive Branch assessments, means such devices can no longer be sold or…

Read more →

AI, Cybersecurity, Data Security, Global Security News

Relyance AI’s Lyo addresses data security gaps in autonomous systems

Relyance AI has announced the commercial availability of Lyo, an autonomous data defense engineer that monitors and secures how AI agents interact with enterprise data. Lyo emerges at an inflection point for the cybersecurity industry as autonomous AI agents spread across enterprise environments, gaining access to sensitive data, triggering workflows, provisioning infrastructure, and calling APIs…

Read more →

AI, Global Security News, Risk Management

Dataminr Launches AI-Driven Cyber Defense Platform

Dataminr has launched a new AI-powered cyber defense platform designed to help enterprise security teams detect threats earlier and respond faster.  The platform, Dataminr for Cyber Defense, combines real-time external intelligence with internal security data to identify risks, assess financial impact, and automate response workflows before incidents escalate. Dataminr integrates ThreatConnect to power real-time threat…

Read more →

AI, Global Security News

Booz Allen’s Vellox brings AI vs. AI defense to protect critical infrastructure and national security

Booz Allen Hamilton’s new Vellox suite showcases how AI-native cyber defense can counter growing threats to U.S. national security and critical infrastructure. The company’s new threat report, When Cyberattacks Happen at AI Speed, shows that AI is widening the gap between the speed of cyberattacks and time to respond. In 2025, the average breakout time…

Read more →

AI, Global Security News

Xona Systems brings real-time threat response to OT remote access sessions

Xona Systems has introduced Active Defense, a new capability that enables organizations to stop threats during live remote access sessions in operational technology (OT) environments automatically, without waiting for manual intervention. In many environments, the gap between detecting suspicious activity and stopping an active session can stretch from minutes to hours, leaving adversaries connected to…

Read more →

AI, Global Security News

Binary Defense’s NightBeacon brings AI-driven analysis to SOCs

Binary Defense has announced the launch of NightBeacon, an AI-powered security operations platform built directly into the company’s security operations center (SOC). NightBeacon serves as the intelligence infrastructure behind Binary Defense’s MDR service, supporting every analyst shift, detection, and investigation across the SOC. Customers benefit from an approximately 30% reduction in mean time to resolution,…

Read more →

AI, Global Security News, Government & Policy, Risk Management

Anthropic announces think tank to examine AI’s effect on economy and society

Fresh from battling the US Department of Defense (DoD) over AI guardrails, Anthropic has returned this week with a new initiative: the company is founding a think tank, the Anthropic Institute, “to confront the most significant challenges that powerful AI will pose to our societies.” Headed by Anthropic co-founder Jack Clark, who will take up…

Read more →

AI, Compliance, Global Security News

Secureframe automates CMMC compliance with secure infrastructure and AI SSPs

Secureframe has launched Secureframe Defense, an end-to-end solution for CMMC certification. It provides secure infrastructure deployment, AI-generated System Security Plans (SSPs), policies, and comprehensive monitoring that Defense Industrial Base (DIB) organizations need to achieve and maintain certification faster, without unnecessary cost or complexity. With CMMC enforcement underway, readiness across the DIB remains critically low. The…

Read more →

AI, Compliance, Cybersecurity, Global Security News, Risk Management

Airbus CSO on supply chain blind spots, space threats, and the limits of AI red-teaming

Pascal Andrei, CSO at Airbus, knows that the aerospace and defense sector is facing a threat environment that is evolving faster than most organizations can track. From sub-tier suppliers quietly becoming entry points for state-backed attackers, to satellites emerging as targets in an increasingly contested space domain, the risks are real and growing. In this…

Read more →

AI, Compliance, Data Breaches, Europe, Global Security News, Government & Policy, Risk Management

Anthropic seeks to renegotiate its AI deal with US DoD, says report

Anthropic is attempting to renegotiate the terms of its AI contract with the US Department of Defense (DoD). CEO Dario Amodei has been in meetings with Emil Michael, the US under-secretary of defense for research and engineering, to iron out contractual disagreements that led the DoD to mark Anthropic as a supply-chain risk, the Financial…

Read more →

AI, Global Security News, Risk Management

Pentagon Designates Anthropic Supply Chain Risk Over AI Military Dispute

Anthropic on Friday hit back after U.S. Secretary of Defense Pete Hegseth directed the Pentagon to designate the artificial intelligence (AI) upstart as a “supply chain risk.” “This action follows months of negotiations that reached an impasse over two exceptions we requested to the lawful use of our AI model, Claude: the mass domestic surveillance…

Read more →

AI, Global Security News, Government & Policy, Network Security, Risk Management

US DoD to Anthropic: compromise AI ethics or be banished from supply chain

A growing rift between the US Department of Defense (DoD) and Anthropic over how AI can be used by the military has led to Defense Secretary Pete Hegseth issuing a blunt ultimatum: work with us on our terms or risk being banned from Pentagon programs. According to news site Axios, Hegseth gave Anthropic until Friday,…

Read more →

AI, Apps, Exploits, Global Security News, Government & Policy, Russia

Former U.S. Defense contractor executive sentenced for selling zero-day exploits to Russian broker Operation Zero

A former employee at U.S. defense contractor L3Harris got over 7 years in prison for selling eight zero-days to a Russian broker. Peter Williams, a 39-year-old Australian former L3Harris employee, received a prison sentence of just over seven years for selling eight zero-day exploits to the Russian broker Operation Zero for millions. Williams pleaded guilty…

Read more →

AI, Exploits, Global Security News, Russia

Defense Contractor Employee Jailed for Selling 8 Zero-Days to Russian Broker

A 39-year-old Australian national who was previously employed at U.S. defense contractor L3Harris has been sentenced to a little over seven years in prison for selling eight zero-day exploits to Russian exploit broker Operation Zero in exchange for millions of dollars. Peter Williams pleaded guilty to two counts of theft of trade secrets in October…

Read more →

AI, Apps, Global Security News, malware

Pompelmi: Open-source Secure File Upload Scanning for Node.js

Software teams building services in JavaScript are adding more layers of defense to handle untrusted file uploads. An open-source project called Pompelmi aims to insert malware scanning and policy checks directly into Node.js applications before files reach storage or business logic. The post Pompelmi: Open-source Secure File Upload Scanning for Node.js appeared first on Linux…

Read more →

AI, APAC, Cybersecurity, Global Security News

The defense industrial base is a prime target for cyber disruption

Cyber threats against the defense industrial base (DIB) are intensifying, with adversaries shifting from traditional espionage toward operations designed to disrupt production capacity and compromise supply chains. In this Help Net Security interview, Luke McNamara, Deputy Chief Analyst, Google Threat Intelligence Group, explains how attackers target the broader defense ecosystem and why identity has become…

Read more →

AI, Apps, Global Security News

Impart enables safe, in-app enforcement against AI-powered bots

Impart Security has launched Programmable Bot Protection, a runtime approach to bot defense that brings detection and enforcement together within the application. Impart makes enforcement operational by enabling teams to see what would be blocked before turning it on. Bot protection split detection and enforcement across two tools that were never designed to work together.…

Read more →

AI, Apps, Global Security News, Government & Policy, malware, Russia

Suspected Russian hackers deploy CANFAIL malware against Ukraine

A new alleged Russia-linked APT group targeted Ukrainian defense, government, and energy groups, with CANFAIL malware. Google Threat Intelligence Group identified a previously undocumented threat actor behind attacks on Ukrainian organizations using CANFAIL malware. The group is possibly linked to Russian intelligence services and has targeted defense, military, government, and energy entities at both regional…

Read more →

AI, Global Security News, Government & Policy, malware

APT36 and SideCopy Launch Cross-Platform RAT Campaigns Against Indian Entities

Indian defense sector and government-aligned organizations have been targeted by multiple campaigns that are designed to compromise Windows and Linux environments with remote access trojans capable of stealing sensitive data and ensuring continued access to infected machines.
The campaigns are characterized by the use of malware families like Geta RAT, Ares RAT, and DeskRAT, which are often

Read more →

AI, Amazon GuardDuty, APAC, Apps, Compliance, Cybersecurity, Endpoint, Expert (400), Exploits, Global Security News, malware, Network Security, Risk Management, Security, Security, Identity, & Compliance

Real-time malware defense: Leveraging AWS Network Firewall active threat defense

Cyber threats are evolving faster than traditional security defense can respond; workloads with potential security issues are discovered by threat actors within 90 seconds, with exploitation attempts beginning within 3 minutes. Threat actors are quickly evolving their attack methodologies, resulting in new malware variants, exploit techniques, and evasion tactics. They also rotate their infrastructure—IP addresses,…

Read more →

AI, Amazon GuardDuty, APAC, Apps, Compliance, Cybersecurity, Endpoint, Expert (400), Exploits, Global Security News, malware, Network Security, Risk Management, Security, Security, Identity, & Compliance

Real-time malware defense: Leveraging AWS Network Firewall active threat defense

Cyber threats are evolving faster than traditional security defense can respond; workloads with potential security issues are discovered by threat actors within 90 seconds, with exploitation attempts beginning within 3 minutes. Threat actors are quickly evolving their attack methodologies, resulting in new malware variants, exploit techniques, and evasion tactics. They also rotate their infrastructure—IP addresses,…

Read more →

AI, Amazon GuardDuty, APAC, Apps, Compliance, Cybersecurity, Endpoint, Expert (400), Exploits, Global Security News, malware, Network Security, Risk Management, Security, Security, Identity, & Compliance

Real-time malware defense: Leveraging AWS Network Firewall active threat defense

Cyber threats are evolving faster than traditional security defense can respond; workloads with potential security issues are discovered by threat actors within 90 seconds, with exploitation attempts beginning within 3 minutes. Threat actors are quickly evolving their attack methodologies, resulting in new malware variants, exploit techniques, and evasion tactics. They also rotate their infrastructure—IP addresses,…

Read more →