Cybersecurity researchers have discovered a set of malicious npm packages that are designed to deliver a Windows-based remote access trojan (RAT). The list of identified packages, is below –... Read more »
Xsolis disclosed a breach affecting 1.4M people after a phishing attack exposed personal and health data from its hospital clients’ systems. Healthcare tech company Xsolis, Inc. has disclosed a... Read more »
Attackers backdoored ShapedPlugin Pro updates, deploying malware that steals credentials, 2FA secrets, and grants full site access. If you installed a ShapedPlugin Pro plugin between April and June 2026... Read more »
Councils create a shared regional network to help roll out smarter local services faster and at lower cost, with the project delivered £40,000 under budget while achieving 98% regional coverage Read more »
Squidbleed is a 29-year-old Squid Proxy flaw that can leak credentials, tokens, and other users’ HTTP data through a memory overread. Researchers at Calif.io have disclosed CVE-2026-47729, a memory... Read more »
The future of AI: the brain is much more than a large language model. It is a fusion engine, able to weigh multiple streams of data at the same... Read more »
Tech leaders from THG Ingenuity, Kingfisher, Rightmove and Deloitte speak at the Google Summit London about the transition to agentic systems and the rising focus on token costs Read more »
A flaw in the Google Cloud Vertex AI SDK for Python let an attacker with no access to a victim’s project hijack the victim’s machine learning model upload and... Read more »
Sovereign cloud wrappers fail against physical and legal risks. True sovereignty requires building mathematically-enforced, multi-jurisdictional infrastructure, not vendor contracts Read more »
Proposals to ban UK government organisations from paying ransomware gangs appear to have lost momentum. The conversation should move towards making critical systems more resilient to attack Read more »
