Policy & Government
In a significant legislative push, the Senate Commerce, Science, and Transportation Committee has cleared two critical cybersecurity bills aimed at hardening U.S. space infrastructure and accelerating the transition to quantum-resistant encryption. WASHINGTON, D.C. — U.S. lawmakers have taken a major step toward addressing "next-frontier" digital threats.
Mobile Security
The theft of a high-profile artist's retirement fund highlights a persistent vulnerability in mobile app marketplaces and the rising sophistication of "brand impersonation" attacks. SAN FRANCISCO, CA — Garrett Dutton, better known as the alternative hip-hop musician G. Love, has gone public with the loss of his
Cyber Crime
In a massive coordinated strike, Europol, the FBI, and international partners disrupt the "Booter" service ecosystem, signaling a shift toward targeting the customers of cybercrime platforms. THE HAGUE, NL — Law enforcement agencies from across the globe have concluded a major phase of Operation PowerOFF, a sustained international effort
As Congress passes a last-minute, 10-day extension for key spy powers, the cybersecurity industry watches closely to see if the "backdoor search" debate will fundamentally change data privacy for US enterprises. WASHINGTON, D.C. — The U.S. House of Representatives has approved a temporary, short-term extension of Section
In a significant legislative push, the Senate Commerce, Science, and Transportation Committee has cleared two critical cybersecurity bills aimed at hardening U.S. space infrastructure and accelerating the transition to quantum-resistant encryption. WASHINGTON, D.C. — U.S. lawmakers have taken a major step toward addressing "next-frontier" digital threats.
In a massive coordinated strike, Europol, the FBI, and international partners disrupt the "Booter" service ecosystem, signaling a shift toward targeting the customers of cybercrime platforms. THE HAGUE, NL — Law enforcement agencies from across the globe have concluded a major phase of Operation PowerOFF, a sustained international effort
In an unprecedented open letter to business leaders, UK ministers and the NCSC warn that the "defensive advantage" is shrinking as AI models lower the barrier for sophisticated cyberattacks. LONDON, UK — The UK Government has issued a stark warning regarding the escalating cybersecurity risks posed by the rapid
A sophisticated supply chain attack exploits the ‘Shell Commands’ plugin for Obsidian, delivering the PhantomPulse Trojan to high-value targets in the finance and cryptocurrency sectors. RESEARCH TRIANGLE PARK, NC — Security researchers have uncovered an elaborate malware campaign targeting users of the popular note-taking app, Obsidian. The campaign, dubbed "Phantom
The National Institute of Standards and Technology pivots to a prioritization model, focusing enrichment efforts on critical software and known exploited vulnerabilities as the backlog reaches historic levels. GAITHERSBURG, MD — The National Institute of Standards and Technology (NIST) has announced a fundamental shift in how it manages the National Vulnerability
A sophisticated new botnet, dubbed PowMix, is utilizing highly randomized communication patterns to bypass traditional network defenses, specifically targeting employees across the Czech Republic. PRAGUE, CZ — Security researchers from Cisco Talos have identified a new and resilient malware campaign, named PowMix, that has begun systematically targeting the Czech workforce. The
In an unprecedented open letter to business leaders, UK ministers and the NCSC warn that the "defensive advantage" is shrinking as AI models lower the barrier for sophisticated cyberattacks. LONDON, UK — The UK Government has issued a stark warning regarding the escalating cybersecurity risks posed by the rapid
A newly identified campaign by the threat actor UAC-0247 is targeting healthcare facilities and government agencies, utilizing "urgent" document lures to deploy info-stealing malware. KYIV, UKRAINE — A persistent cyber-espionage campaign attributed to the threat group UAC-0247 has significantly expanded its operations, targeting Ukrainian hospitals, medical clinics, and government
A sophisticated supply chain attack exploits the ‘Shell Commands’ plugin for Obsidian, delivering the PhantomPulse Trojan to high-value targets in the finance and cryptocurrency sectors. RESEARCH TRIANGLE PARK, NC — Security researchers have uncovered an elaborate malware campaign targeting users of the popular note-taking app, Obsidian. The campaign, dubbed "Phantom
The National Institute of Standards and Technology pivots to a prioritization model, focusing enrichment efforts on critical software and known exploited vulnerabilities as the backlog reaches historic levels. GAITHERSBURG, MD — The National Institute of Standards and Technology (NIST) has announced a fundamental shift in how it manages the National Vulnerability
A high-severity vulnerability in Splunk’s data processing engine could allow authenticated attackers to execute arbitrary code, threatening the integrity of enterprise monitoring environments. SAN FRANCISCO, CA — Splunk has released urgent security updates for its Enterprise and Cloud Platform products to address a high-severity Remote Code Execution (RCE) vulnerability. The
A global surge in fraudulent Apple alerts is weaponizing the fear of losing personal photos to steal credit card details and Apple ID credentials. CUPERTINO, CA — Apple users worldwide are being urged to exercise extreme caution as a pervasive and highly effective phishing campaign resurfaces. The scam, which utilizes "
Security updates address four severe vulnerabilities that could allow unauthenticated attackers to execute remote code or impersonate high-level administrators within corporate environments. SAN JOSE, CA — Cisco Systems has released critical security patches to address a quartet of high-impact vulnerabilities affecting its Identity Services Engine (ISE) and Webex collaboration suite. The
The developer of wireless cardiac pacing technology confirms unauthorized access to limited network data, joining a growing list of Australian healthcare targets in 2026. BRISBANE, AU — EBR Systems (ASX: EBR), a prominent medical technology firm specializing in wireless cardiac pacing, has officially reported a "contained" cybersecurity incident affecting
Cookeville Regional Medical Center (CRMC) confirms a month-long unauthorized access incident that exposed sensitive medical records, Social Security numbers, and financial data. COOKEVILLE, TN — Cookeville Regional Medical Center (CRMC) has begun notifying 337,917 individuals that their highly sensitive personal and medical information was compromised during a sophisticated cyberattack. The
The education publishing giant is the latest victim of a widespread cloud configuration issue, with reports suggesting up to 13.5 million accounts may be impacted by an extortion-linked breach. NEW YORK, NY — McGraw Hill, one of the world’s "Big Three" educational publishers, has confirmed a significant
A highly sophisticated phishing operation is utilizing hyper-personalized "copyright strike" warnings to bypass security instincts and seize full control of Google accounts and YouTube channels. MOUNTAIN VIEW, CA — A new and alarmingly convincing phishing campaign is currently targeting YouTube creators, leveraging their greatest fear: the sudden loss of