Glassworm infected developers through poisoned tools and packages until a coordinated takedown killed all four of its C2 channels at once. On May 26, 2026, at 14:00 UTC, CrowdStrike... Read more »
CrowdStrike, Google and the Shadowserver Foundation worked together to take down a botnet that poisoned over 300 GitHub repositories, risking widespread supply chain compromise Read more »
UK needs to treat cyber security 10 times more urgently in the wake of threats from Russia, China and other adversaries, says GCHQ director Anne Keast-Butler Read more »
The Dutch government blocked Kyndryl’s €100M bid for Solvinity, citing national security concerns over critical digital infrastructure. Dutch Government told Kyndryl it can’t buy Solvinity. That sentence doesn’t sound... Read more »
The Computer Weekly Security Think Tank considers the intersection of AI and IAM. In this article we explore how the frontiers of identity are expanding in the agentic era,... Read more »
A critical vulnerability, tracked as CVE-2026-45659, in Microsoft SharePoint can allow attackers to achieve remote code execution with little effort. Microsoft released security updates to patch a high-severity SharePoint... Read more »
An emerging ransomware crew known as The Gentlemen is becoming a force to be reckoned with, according to NCC’s latest monthly threat data Read more »
A 5-year study on the Ransomware Economy found that 30,515 exposed databases were hit by ransom attacks, causing massive damage despite victims never paying. Database extortion doesn’t look like... Read more »
Cybersecurity researchers have shed light on a cross-platform malware called RemotePE that has been put to use by the North Korea-linked Lazarus Group in attacks targeting financial and cryptocurrency... Read more »
A hacker is selling a 340M OnlyFans database, but the seller says old leaks and public data were used to link creators and subscribers to real identities. The post... Read more »
