Artificial Intelligence (AI)
The US Commerce Department's national-security designation forced Anthropic to shut off worldwide access to its two newest models four days after launch — a first-of-its-kind export-control precedent for frontier AI.
Nation-State Cyber Threats
One backdoored authentication module, one isolated network, ten years of undetected access — a reminder that critical authentication primitives are a forever-target.
Artificial Intelligence (AI)
The first US export-control action against a commercial frontier AI model — for cybersecurity reasons — sets a precedent every AI lab will now plan against.
Supply Chain Attack
The default flips — npm 12 changes the install-script behavior that has driven years of supply-chain reform debate.
Vulnerabilities
The SIEM at the center of many SOCs gets a critical-priority patch — verify deployments.
Policy & Government
The largest data-protection fine in South Korean history reframes the cost of breaches in the Korean market and signals an Asia-wide enforcement escalation.
Data Breaches
Pharma giant Novo Nordisk discloses a clinical-trial data theft on the same day UK regulators greenlight its Wegovy pill — a reminder of the sector's persistent threat profile.
Nation-State Cyber Threats
A coordinated public-private takedown disrupts one of 2026's largest China-based cybercrime networks — and Google sues a related operation for abusing Gemini.
Data Breaches
The sovereign-messaging assumption gets a hard test — Tchap's 73,000-account breach reframes the conversation.
Breaking the financial pipes of the ransomware economy — Europol's latest structural disruption.
Another individual conviction in the long-running US law-enforcement effort against the Conti operation.
Twenty-four hours separated disclosure from in-the-wild exploitation — CISA's emergency directive gives federal agencies three days to patch.
Google Threat Intelligence confirmed mass exploitation of an Oracle PeopleSoft zero-day by ShinyHunters; universities are the primary target and the extortion has begun.
ESET's research update reframes OceanLotus — the targeting is now inward.
Another indictment in a Russia-aligned case — but unlike most, this defendant is already in US custody after an extradition from Thailand.
A ransomware group that spreads like a worm and counts 478 victims — and the Krebs investigation now identifying the people running it.
Consumer compression software remains a reliable initial-access vector in the Russia-Ukraine cyber theater.
CISA's new directive ends CVSS-led patching for federal agencies — risk becomes the prioritization signal, and the most dangerous bugs must be patched in three days.
The largest Patch Tuesday on record arrives with three publicly disclosed zero-days — and a running feud with one researcher producing a steady stream of Microsoft exploits.
A small-footprint, long-tail Chinese proxy network grows past 1,500 devices — defenders should account for this layer of reconnaissance infrastructure.
A defender's guide to the MITRE ATT&CK framework — what it is, how tactics, techniques, and matrices are structured, and how to use it for detection and threat intel.
