Security leaders are under growing pressure to reduce the time between threat detection and response without adding more complexity to already overloaded SOC workflows. ANY.RUN’s May updates help teams act on security risks more efficiently, improve consistency across investigations, and maintain stronger protection as attacker tactics continue to evolve. Discover the updates your team can…
Tag: under
AI, Global Security News, malware
Red Hat npm packages compromised to steal developer credentials
More than 30 npm packages under Red Hat’s ‘@redhat-cloud-services’ namespace were compromised in a supply-chain attack that distributed a new variant of the Shai-Hulud credential-stealing malware, dubbed “Miasma.” […]
AI, Compliance, Cybersecurity, Global Security News, Risk Management
EU organizations buckle under rising compliance pressure
Cybersecurity governance in the EU is shifting under expanding frameworks such as NIS2 and DORA, while AI raises new questions for security teams. What the future brings is hard to predict, and organizations must find a way to cope. Antonija Vojnović, Governance, Risk and Compliance Department Manager at Span, spoke with Help Net Security at…
AI, Global Security News, Risk Management
Microsoft’s Copilot trust test: Zero findings, more models, wider oversight
Microsoft 365 Copilot and Copilot Chat (Copilot) have been recertified under ISO/IEC 42001:2023 by an independent auditor for the second consecutive year. Copilot first received ISO 42001 certification in March 2025. This year’s recertification recorded zero non-conformities and zero improvement observations, resulting in a second audit in a row. The certification evaluates the AI management…
AI, Cloud Security, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
Vulnerabilities have become cyber attackers’ No. 1 door to the enterprise
Patching practices are coming under intense pressure of late, as time-to-exploit windows accelerate — a new reality likely to worsen as AI assistance in attack chains rises. Now cyber defenders have another cause for flaw alarm: Vulnerability exploitation has significantly pulled away from stolen credentials as the most common entry point in security breaches, according…
Exploits, Global Security News
LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root
A maximum-severity security vulnerability impacting LiteSpeed User-End cPanel Plugin has come under active exploitation in the wild. The flaw, tracked as CVE-2026-48172 (CVSS score: 10.0), relates to an instance of incorrect privilege assignment that an attacker could abuse to run arbitrary scripts with elevated permissions. “Any cPanel user (including an attacker or a compromised account)…
AI, Exploits, Global Security News
Microsoft Warns of Two Actively Exploited Defender Vulnerabilities
Microsoft has disclosed that a privilege escalation and a denial-of-service flaw in Defender has come under active exploitation in the wild. The former, tracked as CVE-2026-41091, is rated 7.8 on the CVSS scoring system. Successful exploitation of the flaw could allow an attacker to gain SYSTEM privileges. “Improper link resolution before file access (‘link following’)…
AI, Global Security News, Network Security
⚡ Weekly Recap: Exchange 0-Day, npm Worm, Fake AI Repo, Cisco Exploit and More
Monday opens with a trust problem. A mail server flaw is under active use. A network control system was targeted. Trusted packages were poisoned. A fake model page pushed a stealer. Then came the familiar ransom claim: the data was returned and deleted. The pattern is clear. One weak dependency can leak keys. One leaked…
AI, APAC, Global Security News, Risk Management
Q&A: AI Ushers in a New Era in MSP Service Efficiency
The managed services industry is under increasing pressure to scale operations, improve response times, and maintain profitability without continuously adding headcount. For many MSPs, the challenge lies in the operational burden that is created by workflows that still depend heavily on human coordination at nearly every stage of the service desk process. According to Mark…
AI, Global Security News
CERN’s open source KiCad library gives the world 17,000 circuit board components
CERN has released its complete KiCad component library under an open source license, making it available to hardware designers anywhere in the world. The library, maintained by CERN’s Design Office, contains more than 17,000 electronic components in the form of schematic symbols and printed circuit board footprints. Layout of a printed circuit board made using…
AI, Global Security News, Risk Management
Download: The IT and security field guide to AI adoption
Security and IT teams are under pressure to adopt AI, but many are seeing the opposite of what was promised. Tools that demo well don’t hold up in real workflows. Complexity increases. Trust breaks down. And instead of reducing workload, AI can introduce new risks and oversight burdens. This guide breaks down why AI adoption…
AI, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management
Palo Alto Networks PAN-OS flaw exploited for remote code execution
Palo Alto Networks warns of a critical PAN-OS flaw (CVE-2026-0300) that is under active attack, allowing unauthenticated remote code execution. Palo Alto Networks has warned that a critical PAN-OS vulnerability, tracked as CVE-2026-0300 (CVSS score of 9.3), is actively exploited in the wild. The flaw is a buffer overflow that allows unauthenticated remote code execution,…
AI, Global Security News
2026: The Year of AI-Assisted Attacks
On December 4, 2025, a 17-year-old was arrested in Osaka under Japan’s Unauthorized Access Prohibition Act. The young man had run malicious code to extract the personal data of over 7 million users of Kaikatsu Club, Japan’s largest internet cafe chain. When asked, the young man shared his motivation for the hack: he wanted to…
AI, Apps, Exploits, Global Security News, malware, Risk Management
CVE-2026-41940: Critical cPanel & WHM Authentication Bypass Exposes Hosting Servers to Admin Takeover
A newly disclosed CVE-2026-41940 vulnerability in cPanel & WHM has put internet-facing hosting infrastructure under urgent scrutiny. The flaw carries a CVSS score of 9.8 and can let an unauthenticated remote attacker bypass authentication and gain administrative access, while cPanel’s advisory says the issue affects cPanel software, including DNSOnly, across all versions after 11.40. For…
AI, Compliance, Cybersecurity, Endpoint, Europe, Global Security News, Government & Policy, malware, privacy, Risk Management
Phishing-to-RMM Attacks: The Remote Access Blind Spot CISOs Can’t Ignore
CISOs are under pressure to prove that their security programs can detect threats early, reduce business risk, and support fast, confident response. But that becomes harder when attackers stop relying on obviously malicious tools. In recent phishing-to-RMM campaigns observed by ANY.RUN analysts, threat actors are using fake Microsoft, Adobe, and OneDrive pages to deliver legitimate…
AI, Global Security News, Risk Management
Xiaomi releases MIT‑licensed MiMo models for long‑running AI agents
Xiaomi has released and open-sourced MiMo-V2.5 and MiMo-V2.5-Pro under the MIT License, giving developers another potentially lower-cost option for building AI agents that can run longer tasks such as coding and workflow automation. Both models support a 1-million-token context window, the company said. MiMo-V2.5-Pro is designed for complex agent and coding tasks, while MiMo-V2.5 is…
AI, Global Security News
Why Australia’s AI boom demands a new era of energy efficiency
GUEST OPINION: As we commemorate Earth Day 2026 under the theme of “Our Power, Our Planet,” business leaders in Australia are facing a profound reality check.
AI, Cybersecurity, Global Security News, Government & Policy, privacy, Risk Management
Social media bans might steer kids into riskier corners of the internet
Governments are moving to block children under 16 from social media in the name of safety. But once these measures move from policy to practice, they raise a harder question: what happens when protecting kids requires collecting more data than ever before and may put them at greater risk? Age checks spark debate over privacy…
APAC, Cybersecurity, Exploits, Global Security News
Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation
A recently disclosed high-severity security flaw in Apache ActiveMQ Classic has come under active exploitation in the wild, per the U.S. Cybersecurity and Infrastructure Security Agency (CISA). To that end, the agency has added the vulnerability, tracked as CVE-2026-34197 (CVSS score: 8.8), to its Known Exploited Vulnerabilities (KEV) catalog, requiring Federal Civilian
AI, APAC, Compliance, Cybersecurity, Global Security News, malware, privacy, Risk Management
Chile’s Cybersecurity Framework Law: How SOCs Achieve Compliance and Response Readiness
In Chile, cybersecurity compliance is becoming an operational issue, not just a legal one. Under the new Cybersecurity Framework Law, organizations must show they have real capabilities for threat detection, incident analysis, and response. For many teams, that exposes a serious gap between regulatory expectations and day-to-day security operations. Key Takeaways Chile’s Cybersecurity Framework Law…
Exploits, Global Security News
Critical Marimo pre-auth RCE flaw now under active exploitation
A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged for credential theft. […]
AI, APAC, Compliance, Cybersecurity, Funding, Global Security News, Government & Policy, Network Security, Politics, Risk Management
The cyber winners and losers in Trump’s 2027 budget
Federal cybersecurity spending will decline in 2027 under Donald Trump’s proposed budget, with uneven shifts across agencies, as some see sizable increases while others face sharp reductions. According to the Office of Management and Budget (OMB) crosscut tables released with Trump’s budget, civilian federal cybersecurity spending is expected to fall from $12.455 billion in 2026…
Exploits, Global Security News
‘BlueHammer’ Windows Zero-Day Exploit Signals Microsoft Bug Disclosure Issues
Under the alias ‘Chaotic Eclipse,’ a researcher released a PoC exploit for a zero-day flaw that allows for system takeover by a local user, citing an undisclosed beef with Microsoft.
Global Security News
Amazon and U.S. Postal Service Reach Delivery Deal
The e-commerce giant, under a new plan, will cut back the packages it ships through USPS by 20%, less than the proposal the sides had discussed earlier.
Exploits, Global Security News
Critical Langflow Flaw CVE-2026-33017 Triggers Attacks within 20 Hours of Disclosure
A critical security flaw impacting Langflow has come under active exploitation within 20 hours of public disclosure, highlighting the speed at which threat actors weaponize newly published vulnerabilities. The security defect, tracked as CVE-2026-33017 (CVSS score: 9.3), is a case of missing authentication combined with code injection that could result in remote code execution. “The…
AI, Global Security News
4chan shrugs off UK regulator, refuses to pay £520,000 over online safety violations
The U.K.’s media regulator Ofcom fined 4chan £450,000 under the Online Safety Act for failing to introduce age checks to stop children from accessing pornographic content on its platform. 4chan is an online forum notorious for its extreme right-wing content, gory videos, and non-consensual pornography. The regulator ordered the company to introduce age assurance measures…
AI, Global Security News, Network Security, privacy
Java 26 ships with new cryptography API and HTTP/3 support
Oracle released JDK 26, the 17th consecutive feature release delivered under the six-month cadence the project adopted in 2018. The release includes ten JDK Enhancement Proposals spanning language changes, garbage collection improvements, cryptographic tooling, and network protocol support. PEM encoding API targets cryptographic integration JEP 524 introduces a second preview of a PEM encoding API…
AI, Cloud Security, Cybersecurity, Global Security News, Risk Management
Optiv CRO: AI Driving New Enterprise Security Risks
Enterprise security teams are under increasing pressure as AI adoption accelerates, introducing new risks around identity, governance, and operational resilience. Channel Insider spoke with Optiv CRO John Hurley about how enterprise priorities are shifting—and where partners are seeing the most demand in 2026. Optiv’s advisory model reflects shift toward services-led security Optiv supports its enterprise…
AI, Apps, Global Security News, malware, privacy, Risk Management
Advanced Protection Mode in Android 17 prevents apps from misusing Accessibility Services
Android 17 will block non-accessibility apps from using the Accessibility API under Advanced Protection Mode to reduce malware abuse. Android 17 introduces a new security feature in Advanced Protection Mode (AAPM) that blocks apps without accessibility functions from accessing the Accessibility API. The change, first reported by Android Authority and included in Android 17 Beta…
AI, Global Security News
Transforming campus IT operations to enhance student experiences
GUEST OPINION: Universities are under growing pressure to deliver consistent, high-quality digital services for students, academics, and researchers. IT teams at these institutions are expected to provide uninterrupted availability and seamless experiences across complex ecosystems spanning core enterprise platforms, cloud infrastructure, and teaching technologies. This challenge is compounded by budget constraints, limited headcount, and the…
Data Breaches, Global Security News
Why workforce identity is still a vulnerability, and what to do about it
Most organizations believe they have workforce identity under control. New hires are verified. Accounts are provisioned. Multi-factor authentication is enforced. Audits are passed. Then a breach happens, often through an account that was “properly secured.” But the problem can be traced back to the fact that identity verification, provisioning, authentication, and recovery operate as separate…
AI, Apps, Cloud Security, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
Identity Security Blind Spots Fuel Modern Attacks
Many organizations believe they have identity security under control. New data from Permiso’s State of Identity Security Report suggests that confidence is increasingly misplaced — right as identity becomes the dominant attack vector in cloud environments. “92% percent of organizations have AI agents in production accessing sensitive data, and those agents are creating identities without…
Cybersecurity, Global Security News, Risk Management
Healthcare organizations are accepting cyber risk to cut costs
Healthcare organizations are cutting cybersecurity budgets under financial pressure even as the threats targeting their systems intensify. A PwC survey of 381 global healthcare executives, conducted between May and July 2025, puts numbers to the gap between the risks the sector faces and the controls it has in place. Key findings (Source: PwC) Data protection…
AI, Cybersecurity, Data Breaches, Europe, Exploits, Global Security News, Network Security, privacy, Risk Management
The Dark Side of Luxury Brands: Fraud and Laundering
Haute couture may be showcased under chandeliers and velvet ropes, but its underground counterpart operates in Telegram channels, crypto wallets, and dark web storefronts. What looks like a niche problem of fake handbags is, in reality, a sprawling shadow economy where luxury goods function as financial instruments, laundering vehicles, and scam bait. “Unlike the glamorous…
AI, Global Security News
Nvidia Plans New Chip to Speed AI Processing, Shake Up Computing Market
Under pressure from rivals, the chip giant is set to offer a new product focused on rapid processing of AI queries for ‘inference’ demand.
AI, Global Security News
AI Accelerates Attacker Breakout Time to Just Four Minutes
ReliaQuest claims AI has reduced breakout and exfiltration time to under 10 minutes
Europe, Global Security News
New ‘Massiv’ Android banking malware poses as an IPTV app
A newly identified Android banking trojan named Massiv has been under active distribution across south Europe, disguised as an IPTV app. […]
AI, Global Security News, Risk Management
WordPress AI Assistant Puts Prompt Editing on the Menu for 40% of the Web
WordPress just turned “site editing” into a conversation. When the platform under a huge slice of the web changes its workflow, everyone feels the tremor. WordPress is used by 42.6% of all websites, according to W3Techs. So even if only a fraction of those site owners adopt prompt-based editing, it’s still a meaningful shift in…
AI, Global Security News
3 Ways to Start Your Intelligent Workflow Program
Security, IT, and engineering teams today are under relentless pressure to accelerate outcomes, cut operational drag, and unlock the full potential of AI and automation. But simply investing in tools isn’t enough. 88% of AI proofs-of-concept never make it to production, even though 70% of workers cite freeing time for high-value work as the primary…
AI, Compliance, Endpoint, Exploits, Global Security News, malware, Risk Management
CVE-2026-2441: Google Patches Chrome Zero-Day Exploited in the Wild
Right after Apple’s CVE-2026-20700 zero-day under active exploitation made headlines, Google released security updates for Chrome to address the first actively exploited Chrome zero-day of 2026. CVE-2026-2441 Analysis The high-severity flaw, tracked as CVE-2026-2441, is a use-after-free vulnerability in Chrome’s CSS component. NIST’s NVD description notes that the issue could allow a remote attacker to…
Global Security News
February’s Patch Tuesday assumes battle stations
Just 58 CVEs to spar with in February, but plenty are already under attack Categories: Threat Research, X-ops Tags: Patch Tuesday, Microsoft, Windows
Global Security News, Government & Policy, Legal, Russia, Security
Russia tries to block WhatsApp, Telegram in communication blockade
The Russian government is attempting to block WhatsApp in the country as its crackdown on communication platforms not under its control intensifies. […]
Global Security News, Risk Management
Amazon, Temu and Shein to Dominate Australia’s Marketplace Sector at the Expense of Local Competition
GUEST OPINION: Pattern’s 2026 Marketplace Consumer Report reveals a sector under pressure, with global giants tightening their grip and the era of local marketplaces at risk
AI, APAC, Apps, Exploits, Global Security News, IT Management, Security, Vulnerabilities, Zero-Day Vulnerabilities
SolarWinds WHD zero-days from January are under attack
SolarWinds Web Help Desk (WHD) is under attack, with recent incidents exploiting a chain of zero-day and patched vulnerabilities dating back to late 2025, an analysis of customer reports by security company Huntress has found. Until now, it has been unclear which combination of recent WHD vulnerabilities were behind a series of compromises of customer…
AI, Don't miss, exploit, Global Security News, Hot stuff, Huntress, Network Security, News
Unpatched SolarWinds WHD instances under active attack
Internet‑exposed and vulnerable SolarWinds Web Help Desk (WHD) instances are under attack by threat actors looking to gain an initial foothold into target organizations’ networks, Microsoft and Huntress researchers have warned. Once inside, the attackers are deploying legitimate remote access and digital forensics and incident response tools, using living-off-the-land techniques, setting up a reverse SSH…
AI, ANYRUN, APAC, Compliance, Cybersecurity, Cybersecurity Lifehacks, Data Breaches, Global Security News, malware, Risk Management
How Threat Intelligence Helps Protect Financial Organizations from Business Risk
The financial sector resembles a treasure vault under constant siege. Banks, insurers, and fintech firms are not just custodians of money. They are guardians of irreplaceable personal and corporate data, payment flows, transactional integrity, and trust itself. When cybercriminals strike, the ripple effects cascade outward, threatening individual savings, corporate balance sheets, national infrastructures, and broader economic confidence. The Biggest…
AI, Artificial Intelligence, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, News, Risk Management, Threats, trends
OpenClaw or Open Door? Prompt Injection Creates AI Backdoors
OpenClaw has come under review after researchers at Zenity showed how it could be misused to establish persistent access. Rather than exploiting a software vulnerability, the technique relies on indirect prompt injection to influence the agent’s behavior and maintain ongoing control with minimal user involvement. “This attack demonstrates how a persistent command and control channel…
AI, china, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, privacy, Risk Management, Russia
The hack that messed with time, and rogue ransomware negotiators
Time itself comes under attack as a state-backed hacking gang spends two years tunnelling toward a nation’s master clock — with chaos potentially only a tick away. Plus when ransomware negotiators turn to the dark side, what could possibly go wrong? All this and more is discussed in episode 442 of the “Smashing Security” podcast…