Microsoft announced today at its Build 2026 developer conference the release of Coreutils for Windows, bringing many commonly used Linux command-line utilities to Windows as native applications. […]
Tag: release
AI, Global Security News
Strengthening the Foundation: A Predictable, Customer focused Response to AI-Accelerated Vulnerability Discovery
Cisco is moving to a scheduled, twice-monthly security release model to address AI-accelerated vulnerability discovery, providing customers with greater predictability and streamlined, systemic security updates.
Global Security News
YARA-X 1.17.0 Release, (Sun, May 31st)
YARA-X’s 1.17.0 release brings 5 improvements (several performance improvements) and 1 bugfix. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Global Security News
Apple releases quantum-resistant code and verification tools
The release includes implementations of ML-KEM and ML-DSA, two quantum-secure algorithms, along with the formal verification libraries and tools Apple developed.
Global Security News
Wireshark 4.6.6 Released, (Sun, May 24th)
Wireshark release 4.6.6 fixes 1 vulnerability and 11 bugs. For WIndows, Npcap is updated to version 1.88. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
AI, china, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, Russia
Trump postpones executive order focused on AI security
President Donald Trump said he would postpone the release of an executive order that would set up a 90-day testing and vetting regime for frontier AI models, hours before the White House was set to publicly announce the signing. Speaking to reporters in the Oval Office Thursday, Trump said he opted to delay the order…
Exploits, Global Security News
Drupal critical update to fix bug with high exploitation risk
Drupal has announced a “core security release” scheduled for later today, warning that threat actors might develop exploits within hours of the update disclosure. […]
AI, Exploits, Global Security News
Drupal to Release Urgent Core Security Updates on May 20, Sites Told to Prepare
Drupal has issued an alert stating that it intends to release a “core security release” for all supported branches on May 20, 2026, from 5-9 p.m. UTC. “The Drupal Security Team urges you to reserve time for core updates at that time because exploits might be developed within hours or days,” the maintainers of the…
AI, Global Security News
Shai-Hulud Worm Clones Spread After Code Release
The release of Shai-Hulud source code spells trouble for software developers as researchers worry the self-replicating worm could scale.
AI, APAC, Global Security News
Debian 13.5 point release lands with security fixes, bug patches
Debian 13.5 is the fifth point release for the stable distribution “trixie.” The update folds in roughly 100 Debian Security Advisories and corrections for more than 130 source packages, covering everything from the Linux kernel and Apache HTTP Server to OpenSSH, sudo, systemd, OpenSSL, glibc, and FreeRDP. Fresh installer images carrying the same fixes will…
AI, Apps, Cybersecurity, Endpoint, Exploits, Global Security News, Network Security, Risk Management
AWS Security Agent full repository code scanning feature now available in preview
Today, we’re excited to announce the preview release of full repository code review, a new capability in AWS Security Agent that performs deep, context-aware security analysis of your entire code base. AI-driven cybersecurity capabilities are advancing rapidly. AWS Security Agent can now find vulnerabilities and build working exploits across your entire code base at a…
AI, Apps, Compliance, Cybersecurity, Global Security News, malware, Network Security, privacy, Risk Management
Malicious Hugging Face model masquerading as OpenAI release hits 244K downloads
A malicious Hugging Face repository posing as an OpenAI release delivered infostealer malware to Windows systems and logged 244,000 downloads before being removed, raising fresh concerns about how enterprises source and validate AI models from public repositories. The repository, named Open-OSS/privacy-filter, impersonated OpenAI’s legitimate Privacy Filter release, copied its model card almost word-for-word, and included…
AI, Endpoint, Global Security News
GPT-5.5-Cyber is here. What it means for defenders operating at the frontier.
OpenAI’s May 7 release of GPT-5.5 and the limited preview of GPT-5.5-Cyber put frontier AI in verified defenders’ hands. As a member of the Trusted Access for Cyber program, Sophos is using these models to sharpen what we already operate: an agentic SOC that resolves more than half of cases without a human, and an…
Global Security News
YARA-X 1.16.0 Release, (Sun, May 10th)
YARA-X’s 1.16.0 release brings 4 improvements and 4 bugfixes. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
AI, Compliance, Global Security News
Kloudfuse 4.0 delivers AI-governed observability and scalable workload isolation
Kloudfuse has announced the general availability of Kloudfuse 4.0. The release helps enterprises meet rising compliance requirements, adopt AI-driven observability with production-grade governance, and scale their observability infrastructure without platform bottlenecks, while keeping every byte of telemetry data inside their own cloud environment. Kloudfuse 4.0 addresses three converging pressures: the FIPS 140-2 sunset on September…
AI, Compliance, Global Security News, Government & Policy
UiPath adds agentic AI capabilities to Automation Suite for government agencies
UiPath has announced the release of agentic AI capabilities on UiPath Automation Suite. The Automation Suite updates help government agencies and regulated industries accelerate agentic AI and automation adoption and are designed to address strict data sovereignty and compliance requirements. These new capabilities empower agencies to deploy agentic AI within their own infrastructure using cloud-hosted…
AI, Global Security News
DShield Honeypot Update, (Mon, May 4th)
This week, I will release a few updates to our DShield honeypot. The update should happen automatically if you have “automatic updates” enabled on your system. There will be two major changes: Compatibility with Ubuntu 26.04 / new versions of Raspberry Pi OS Ubuntu released version 26.04 LTS about a week ago. It will pretty…
AI, Global Security News
Wireshark 4.6.5 Released, (Sun, May 3rd)
Wireshark release 4.6.5 fixes 43 vulnerabilities (38 CVEs) and 35 bugs. This high number of fixes is due to AI: “This release fixes quite a few vulnerabilities. This is due to to a recent trend in AI-assisted vulnerability reports.“ Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0…
AI, Cloud Security, Compliance, Cybersecurity, Global Security News, Risk Management
Announcing the ISO 31000:2018 Risk Management on AWS Compliance Guide
AWS Security Assurance Services is announcing the release of our latest compliance guide, ISO 31000:2018 Risk Management on AWS, which provides practical guidance for organizations establishing and operating a risk management program in AWS environments using ISO 31000:2018 principles. The guide explains how organizations can integrate AWS services into their risk management processes to support…
AI, Compliance, Exploits, Global Security News
Everyone’s building AI agents. Almost nobody’s ready for what they do to identity.
Anthropic recently announced that it would not release Mythos, its most powerful AI model, to the public. The model discovered thousands of previously unknown software vulnerabilities — flaws that had sat undetected in major operating systems and web browsers for as long as nearly three decades. Anthropic said the model was too dangerous to deploy…
AI, china, Global Security News
Former OpenAI research scientist launches new AI model for Tencent
Tencent has updated its Hunyuan AI model, its first major release since it recruited Yao Shunyu, a leading AI scientist from OpenAI. Tencent’s Hy3 model, currently available in preview, offers improvements in areas from complex reasoning to coding. The Chinese technology conglomerate is playing catch-up with other Chinese AI developers including ByteDance, Alibaba and DeepSeek.…
AI, Cybersecurity, Global Security News
OpenAI’s GPT-5.5 is out with expanded cybersecurity safeguards
Competition to release stronger AI models is accelerating, and just weeks after the release of GPT-5.4, OpenAI has introduced GPT-5.5, pointing to expanded safeguards in the new model. GPT-5.5 is being rolled out to Plus, Pro, Business, and Enterprise users in ChatGPT and Codex, while GPT-5.5 Pro is available to Pro, Business, and Enterprise users…
Global Security News
DroneShield – Quarterly Activities/Appendix 4C Cash Flow Report
COMPANY NEWS: DroneShield Limited (ASX:DRO) (DroneShield, DRO, or the Company) is pleased to release its business update and Appendix 4C for the three-month period ended 31 March 2026 (1Q2026).
AI, Global Security News, Network Security
VirtualBox 7.2.8 is out with Linux kernel 7.0 support and crash fixes
Oracle shipped VirtualBox 7.2.8 on April 21, 2026, as a maintenance release covering crashes, networking problems, clipboard issues, and extended Linux kernel compatibility. The update touches the VMM layer, NAT networking, graphics, UEFI, and both Linux and Windows guest support. VMM and core stability A Guru Meditation error carrying the code VERR_IEM_IPE_4 is fixed in…
AI, Global Security News, Network Security
Sophos Firewall v22 MR1 is now available
Check out the full release notes for more details and a list of fixes. Categories: Products & Services Tags: Firewall, network, v22
AI, Global Security News
Anthropic CEO Lands White House Meeting as Feud Thaws
The Friday meeting comes ahead of the release of Mythos, Anthropic’s latest AI model.
AI, Global Security News, privacy
Tails 7.6.2 patches vulnerability that could expose saved files
The Tails Project released Tails v7.6.2, an emergency release of the popular open source secure portable operating system. What is Tails? Tails, which is based on Debian GNU/Linux, is aimed at users who want to preserve their online privacy and anonymity. The OS is installed on a dedicated USB stick and when plugged into a…
AI, Cloud Security, Global Security News, Risk Management
Intruder expands cloud security with agentless container image scanning
Intruder has announced the release of Container Image Scanning, a new upgrade to its cloud security capabilities that automatically scans container images for vulnerabilities, granting customers actionable insight into container risk without deploying and maintaining scanning agents across their estates. Leveraging existing integrations with major cloud providers, Intruder supports Amazon Web Services Elastic Container Registry,…
AI, Global Security News
Meta Announces New AI Model in Major Test of Company’s Ambitions
The disappointment of last model’s release more than a year ago led to an expensive overhaul of the company’s AI operations.
AI, Cybersecurity, Global Security News
How AI is Changing Software Development and Release Management
In this post, I will show you how AI is changing software development and release management. Software development is changing very fast today. Teams are expected to build better software in less time, while also making sure everything is secure, stable, and follows rules. This can be very difficult, especially when different tools and processes…
AI, Global Security News, Risk Management
Claude Code Packaging Error Remains a Lure in an Active Campaign: What Defenders Should Do
Threat actors leveraged Anthropic’s Claude Code npm release packaging error to distribute Vidar, GhostSocks, and PureLog Stealer. This blog details immediate steps organizations can take and best practices to prevent further risk.
AI, Global Security News
Weaponizing Trust Signals: Claude Code Lures and GitHub Release Payloads
A packaging error in Anthropic’s Claude Code npm release briefly exposed internal source code. This entry examines how threat actors rapidly weaponized the resulting attention, pivoting an existing AI-themed campaign to spread Vidar and GhostSocks.
AI, Compliance, Global Security News, Risk Management
New compliance guide available: ISO/IEC 27001:2022 on AWS
We’re excited to announce the release of our latest compliance guide, ISO/IEC 27001:2022 on AWS, which provides practical guidance for organizations designing and operating an Information Security Management System (ISMS) using AWS services. As organizations migrate critical workloads to the cloud, aligning with globally recognized standards such as ISO/IEC 27001:2022 becomes an important step toward…
AI, Global Security News
Kali Linux 2026.1 released with 8 new tools, new BackTrack mode
Kali Linux 2026.1, the first release of the year, is now available for download, featuring 8 new tools, a theme refresh, and a new BackTrack mode for Kali-Undercover. […]
Global Security News, Network Security
Kali Linux 2026.1 ships BackTrack mode, eight new tools, and a kernel upgrade to 6.18
Penetration testers running Kali Linux have a new release to work with. Version 2026.1 delivers the annual theme refresh, a new BackTrack-inspired mode in kali-undercover, eight tools added to the network repositories, a kernel bump to 6.18, and several Kali NetHunter changes. 2026 theme refresh Each year’s first Kali release brings a visual overhaul, and…
AI, Global Security News
Amazon is aiming for a comeback in the smartphone market
Amazon plans to release a new smartphone, according to Reuters; the so-called “Transformer” project is being developed in-house and will focus on AI, personalization, and integration with Alexa. The idea is for the phone to serve as a central hub for a user’s daily life — from shopping and streaming to voice-controlled services — and…
AI, Global Security News, Network Security, privacy
Java 26 ships with new cryptography API and HTTP/3 support
Oracle released JDK 26, the 17th consecutive feature release delivered under the six-month cadence the project adopted in 2018. The release includes ten JDK Enhancement Proposals spanning language changes, garbage collection improvements, cryptographic tooling, and network protocol support. PEM encoding API targets cryptographic integration JEP 524 introduces a second preview of a PEM encoding API…
AI, Endpoint, Global Security News
Blumira enhances EDR and ITDR to speed up threat detection and containment
Blumira has announced the release of expanded endpoint detection and response (EDR) and identity threat detection and response (ITDR) capabilities in its platform. Security teams on Blumira Respond and Automate editions can now contain active threats by isolating compromised endpoints, stopping malicious processes, and locking out attackers across Microsoft 365 and Active Directory, without ever…
AI, Global Security News
Stellar Cyber 6.4.0 reduces alert noise and speeds investigations with Autonomous SOC capabilities
Stellar Cyber has announced he general availability of version 6.4.0 of its platform. With this release, Stellar Cyber delivers new Autonomous SOC capabilities designed to reduce alert noise, accelerate investigations, and transform the day-to-day experience of security analysts. Ushering in the human-augmented Autonomous SOC Security teams are overwhelmed by escalating alert volumes and increasingly complex…
APAC, Global Security News
SOC Prime’s DetectFlow Enterprise moves threat detection to the data ingestion layer
SOC Prime has announced the release of DetectFlow Enterprise, a solution that brings real-time threat detection to the ingestion layer, turning data pipelines into detection pipelines. Running tens of thousands of Sigma detections on live Kafka streams with millisecond MTTD using Apache Flink, DetectFlow Enterprise enables security teams to detect, tag, enrich, and correlate threat…
AI, APAC, Global Security News
SOC Prime Launches DetectFlow Enterprise To Enhance Security Data Pipelines with Agentic AI
BOSTON, MA — March 12, 2026 — SOC Prime today announced the release of DetectFlow Enterprise, a solution that brings real-time threat detection to the ingestion layer, turning data pipelines into detection pipelines. Running tens of thousands of Sigma detections on live Kafka streams with millisecond MTTD using Apache Flink, DetectFlow Enterprise enables security teams…
Global Security News
Microsoft Fixes Two Publicly Disclosed Zero-Days
March Patch Tuesday sees Microsoft release updates for 79 flaws
AI, Global Security News
OpenWrt 25.12.0 ships with new package manager, built-in upgrade tool, support for 2200+ devices
OpenWrt 25.12.0 is now available for download. The release incorporates over 4,700 commits since branching from OpenWrt 24.10. Package manager changes One of the most significant structural changes in 25.12.0 is the replacement of the opkg package manager with apk, the Alpine Package Keeper. The OpenWrt fork of opkg is no longer maintained, and the…
Global Security News
YARA-X 1.14.0 Release, (Sat, Mar 7th)
YARA-X’s 1.14.0 release brings 4 improvements and 2 bugfixes. One of the improvements is a new CLI command: deps. This command shows you the dependencies of rules. Here is an example. Rule rule1 has no dependencies, rule rule2 depends on rule rule1 and rule rule3 depends on rule rule2: Running the deps command on these rules…
AI, Global Security News, Risk Management
Chrome to start bi-weekly updates in September
Starting in September, Google’s Chrome browser will receive a new release every two weeks, the company has announced. Since 2021, Chrome has been on a four-week release schedule for new major versions. The rationale for the faster two-week cycle is to enable faster delivery of performance improvements, bug fixes, security updates, and new features to…
AI, Global Security News
Google speeds up Chrome updates with new security-focused release cycle
The Chrome browser is moving to a two-week release cycle, a change intended to give developers and users faster access to new features, performance improvements and bug fixes. The new schedule begins with the stable release of Chrome 153 on September 8, 2026, followed by new beta and stable releases every two weeks. The change…
AI, Global Security News
Arkose Device ID uses AI to recognize devices across changing fingerprints
Arkose Labs has announced the latest release of Arkose Device ID, a solution within the new Arkose Titan platform. It layers AI-driven similarity analysis on top of exact-match identification, enabling recognition of the same device across evolving fingerprints while maintaining the accuracy enterprises require. Arkose Device ID delivers persistent device recognition that remains intact even…
Global Security News
Google Chrome shifts to two-week release cycle for increased stability
Google Chrome will shift from a four-week to a two-week release cycle to roll out new features, bug fixes, and performance improvements more frequently. […]
AI, Global Security News, privacy
Meta AI in WhatsApp organizes chats and reopens privacy issues
The trend of integrating AI into digital platforms continues. In the latest Android beta release (2.26.9.4), the company has introduced a feature that allows users to organize their chat history with the help of Meta AI. Organize WhatsApp chats with Meta AI (Source: WABetaInfo) Some beta testers can access a new feature that lets them…
AI, Apps, Data Breaches, Global Security News, malware, Network Security, Risk Management
South Korean Tax Agency Leak Leads to $4.8M Crypto Theft
A public press release intended to highlight a tax enforcement victory instead exposed millions in confiscated cryptocurrency. South Korea’s National Tax Service (NTS) inadvertently revealed the mnemonic seed phrase of a seized Ledger hardware wallet, enabling an unknown actor to transfer approximately $4.8 million in digital assets. “The thief first deposited a small amount of…
Global Security News
Wireshark 4.6.4 Released, (Mon, Mar 2nd)
Wireshark release 4.6.4 fixes 3 vulnerabilities and 15 bugs. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Global Security News
Sophos Workspace Protection is Now Available
We’re excited to announce the highly anticipated release of Sophos Workspace Protection has arrived. Categories: Products & Services Tags: Workspace
Global Security News
Nintex debuts new updates to enhance customisation and accessibility for Nintex K2
Latest release introduces a custom control framework and strengthened integration capabilities to improve user experiences for organisations operating in regulated environments
AI, Compliance, Global Security News
Compliance Scorecard v10 delivers context-driven AI for explainable compliance decisions
Compliance Scorecard announced the release of v10, introducing governed, audit-ready AI designed to support defensible compliance decision-making for managed service providers (MSPs). Compliance Scorecard v10 applies AI only within a structured system of validated context and controls. The platform is built on a simple premise: AI can only be trusted in compliance if the required…
AI, Apps, Global Security News
Microsoft Edge 145 lands with major enterprise security upgrades
Microsoft has begun rolling out Edge 145 to the Stable release channel, adding several enterprise-focused security enhancements. The update is being deployed in phases, with some features available through preview and targeted release programs. Edge 145 brings expanded data protection capabilities to Edge for Business. The browser supports cross-tenant enforcement of Intune App Protection Policies…
Global Security News
Plasma 6.7 Will Introduce a Global Shortcut to Clear Notification History
The upcoming KDE Plasma 6.7 release will add a global keyboard shortcut that lets users quickly clear their notification history. The post Plasma 6.7 Will Introduce a Global Shortcut to Clear Notification History appeared first on Linux Today.
AI, Cybersecurity, Endpoint, Global Security News, malware, Network Security, Risk Management
A new approach for GenAI risk protection
When generative AI (GenAI) hit the consumer market with the release of OpenAI’s ChatGPT, users worldwide flocked to the product and started experimenting with the tool’s capabilities across industries. The release also sent an instant panic through the hearts of information security professionals whose job is to protect organizations from risks, including the loss or…
Global Security News
February 2026 Patch Tuesday comment from Tenable
GUEST OPINION: Microsoft patched 54 CVEs in its February 2026 Patch Tuesday release, with two rated critical, 51 rated as important and one rated as moderate. Elevation of privilege (EoP) vulnerabilities accounted for 42.6% of the vulnerabilities patched this month, followed by remote code execution (RCE) vulnerabilities at 20.4%. Please find below a comment from…
AI, Channel Business, Cybersecurity, Global Security News, Risk Management
Channel Insider Announces the 2026 CML100 List
Channel Insider is proud to release the 2026 CML100, our annual list recognizing the organizations and leaders having the greatest impact on the global IT channel. Now in its latest edition, the CML100 (Channel Marketing Leaders 100 List) serves as both a recognition program and an editorial benchmark. It highlights the companies and executives shaping…
Global Security News
YARA-X 1.13.0 Release, (Mon, Feb 9th)
YARA-X’s 1.13.0 release brings 4 improvements and 4 bugfixes. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Global Security News
YARA-X 1.13.0 Release, (Mon, Feb 9th)
YARA-X’s 1.13.0 release brings 4 improvements and 4 bugfixes. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Global Security News
YARA-X 1.13.0 Release, (Mon, Feb 9th)
YARA-X’s 1.13.0 release brings 4 improvements and 4 bugfixes. Didier Stevens Senior handler blog.DidierStevens.com (c) SANS Internet Storm Center. https://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
Global Security News
Hong Kong’s Jimmy Lai Given 20-Year Sentence, Adding Friction to U.S.-China Ties
World leaders have called for the release of the 78-year-old who became the face of the democracy movement.
Global Security News
Hong Kong’s Jimmy Lai Given 20-Year Sentence, Adding Friction to U.S.-China Ties
World leaders have called for the release of the 78-year-old who became the face of the democracy movement.
Black Hat, Cisco Breach Protection, Cisco Live, Cisco Secure Access, Global Security News, Security
Lessons Learned from Securing the World’s Largest Cyber Events
Announcing the launch of the Cisco Event SOCs website and the release of our comprehensive Reference Architecture & Operations Guide.
Black Hat, Cisco Breach Protection, Cisco Live, Cisco Secure Access, Global Security News, Security
Lessons Learned from Securing the World’s Largest Cyber Events
Announcing the launch of the Cisco Event SOCs website and the release of our comprehensive Reference Architecture & Operations Guide.
Black Hat, Cisco Breach Protection, Cisco Live, Cisco Secure Access, Global Security News, Security
Lessons Learned from Securing the World’s Largest Cyber Events
Announcing the launch of the Cisco Event SOCs website and the release of our comprehensive Reference Architecture & Operations Guide.
Black Hat, Cisco Breach Protection, Cisco Live, Cisco Secure Access, Global Security News, Security
Lessons Learned from Securing the World’s Largest Cyber Events
Announcing the launch of the Cisco Event SOCs website and the release of our comprehensive Reference Architecture & Operations Guide.
Black Hat, Cisco Breach Protection, Cisco Live, Cisco Secure Access, Global Security News, Security
Lessons Learned from Securing the World’s Largest Cyber Events
Announcing the launch of the Cisco Event SOCs website and the release of our comprehensive Reference Architecture & Operations Guide.
AI, Apps, Blog, CVE, CVE-2026-21509, CVEs, Cybersecurity, Exploits, Global Security News
CVE-2026-21509: Actively Exploited Microsoft Office Zero-Day Forces Emergency Patch
Shortly after its January Patch Tuesday release, addressing 114 vulnerabilities, including a zero-day in Windows Desktop Manager (CVE-2026-20805), Microsoft rushed out an emergency out-of-band update to fix another bug under active exploitation. This time, attackers are targeting CVE-2026-21509, a Microsoft Office zero-day that allows threat actors to bypass built-in security features. In view of the…
AI, Apps, Blog, CVE, CVE-2026-21509, CVEs, Cybersecurity, Exploits, Global Security News
CVE-2026-21509: Actively Exploited Microsoft Office Zero-Day Forces Emergency Patch
Shortly after its January Patch Tuesday release, addressing 114 vulnerabilities, including a zero-day in Windows Desktop Manager (CVE-2026-20805), Microsoft rushed out an emergency out-of-band update to fix another bug under active exploitation. This time, attackers are targeting CVE-2026-21509, a Microsoft Office zero-day that allows threat actors to bypass built-in security features. In view of the…
AI, Apps, Blog, CVE, CVE-2026-21509, CVEs, Cybersecurity, Exploits, Global Security News
CVE-2026-21509: Actively Exploited Microsoft Office Zero-Day Forces Emergency Patch
Shortly after its January Patch Tuesday release, addressing 114 vulnerabilities, including a zero-day in Windows Desktop Manager (CVE-2026-20805), Microsoft rushed out an emergency out-of-band update to fix another bug under active exploitation. This time, attackers are targeting CVE-2026-21509, a Microsoft Office zero-day that allows threat actors to bypass built-in security features. In view of the…
AI, Apps, Blog, CVE, CVE-2026-21509, CVEs, Cybersecurity, Exploits, Global Security News
CVE-2026-21509: Actively Exploited Microsoft Office Zero-Day Forces Emergency Patch
Shortly after its January Patch Tuesday release, addressing 114 vulnerabilities, including a zero-day in Windows Desktop Manager (CVE-2026-20805), Microsoft rushed out an emergency out-of-band update to fix another bug under active exploitation. This time, attackers are targeting CVE-2026-21509, a Microsoft Office zero-day that allows threat actors to bypass built-in security features. In view of the…
AI, Apps, Blog, CVE, CVE-2026-21509, CVEs, Cybersecurity, Exploits, Global Security News
CVE-2026-21509: Actively Exploited Microsoft Office Zero-Day Forces Emergency Patch
Shortly after its January Patch Tuesday release, addressing 114 vulnerabilities, including a zero-day in Windows Desktop Manager (CVE-2026-20805), Microsoft rushed out an emergency out-of-band update to fix another bug under active exploitation. This time, attackers are targeting CVE-2026-21509, a Microsoft Office zero-day that allows threat actors to bypass built-in security features. In view of the…
AI, Apps, Blog, CVE, CVE-2026-21509, CVEs, Cybersecurity, Exploits, Global Security News
CVE-2026-21509: Actively Exploited Microsoft Office Zero-Day Forces Emergency Patch
Shortly after its January Patch Tuesday release, addressing 114 vulnerabilities, including a zero-day in Windows Desktop Manager (CVE-2026-20805), Microsoft rushed out an emergency out-of-band update to fix another bug under active exploitation. This time, attackers are targeting CVE-2026-21509, a Microsoft Office zero-day that allows threat actors to bypass built-in security features. In view of the…
AI, Apps, Blog, CVE, CVE-2026-21509, CVEs, Cybersecurity, Exploits, Global Security News
CVE-2026-21509: Actively Exploited Microsoft Office Zero-Day Forces Emergency Patch
Shortly after its January Patch Tuesday release, addressing 114 vulnerabilities, including a zero-day in Windows Desktop Manager (CVE-2026-20805), Microsoft rushed out an emergency out-of-band update to fix another bug under active exploitation. This time, attackers are targeting CVE-2026-21509, a Microsoft Office zero-day that allows threat actors to bypass built-in security features. In view of the…
AI, Blog, CVE, CVEs, Cybersecurity, Denial of Service, Exploits, Global Security News, Network Security, Risk Management
CVE-2026-0227: Palo Alto Networks Fixes GlobalProtect DoS Flaw Allowing Remote Firewall Disruption
Shortly after Microsoft’s massive January Patch Tuesday release addressing the CVE-2026-20805 zero-day vulnerability in Windows Desktop Window Manager, another technology giant has issued a security fix. This time, Palo Alto Networks has warned of a high-severity flaw affecting its GlobalProtect Gateway and Portal, noting that a proof-of-concept (PoC) exploit is available. GlobalProtect is Palo Alto…
AI, Blog, CVE, CVEs, Cybersecurity, Denial of Service, Exploits, Global Security News, Network Security, Risk Management
CVE-2026-0227: Palo Alto Networks Fixes GlobalProtect DoS Flaw Allowing Remote Firewall Disruption
Shortly after Microsoft’s massive January Patch Tuesday release addressing the CVE-2026-20805 zero-day vulnerability in Windows Desktop Window Manager, another technology giant has issued a security fix. This time, Palo Alto Networks has warned of a high-severity flaw affecting its GlobalProtect Gateway and Portal, noting that a proof-of-concept (PoC) exploit is available. GlobalProtect is Palo Alto…
AI, Blog, CVE, CVEs, Cybersecurity, Denial of Service, Exploits, Global Security News, Network Security, Risk Management
CVE-2026-0227: Palo Alto Networks Fixes GlobalProtect DoS Flaw Allowing Remote Firewall Disruption
Shortly after Microsoft’s massive January Patch Tuesday release addressing the CVE-2026-20805 zero-day vulnerability in Windows Desktop Window Manager, another technology giant has issued a security fix. This time, Palo Alto Networks has warned of a high-severity flaw affecting its GlobalProtect Gateway and Portal, noting that a proof-of-concept (PoC) exploit is available. GlobalProtect is Palo Alto…
AI, Blog, CVE, CVEs, Cybersecurity, Denial of Service, Exploits, Global Security News, Network Security, Risk Management
CVE-2026-0227: Palo Alto Networks Fixes GlobalProtect DoS Flaw Allowing Remote Firewall Disruption
Shortly after Microsoft’s massive January Patch Tuesday release addressing the CVE-2026-20805 zero-day vulnerability in Windows Desktop Window Manager, another technology giant has issued a security fix. This time, Palo Alto Networks has warned of a high-severity flaw affecting its GlobalProtect Gateway and Portal, noting that a proof-of-concept (PoC) exploit is available. GlobalProtect is Palo Alto…
AI, Exploits, Global Security News, malware, Network Security, Risk Management
HTTPS by default
One year from now, with the release of Chrome 154 in October 2026, we will change the default settings of Chrome to enable “Always Use Secure Connections”. This means Chrome will ask for the user’s permission before the first access to any public site without HTTPS. The “Always Use Secure Connections” setting warns users before…