A critical FortiClient Endpoint Management Server (EMS) vulnerability patched in April has been exploited in fresh attacks to deploy information-stealing malware, Arctic Wolf reports. The flaw, tracked as CVE-2026-35616 (CVSS score... Read more »
Google’s $135 million Android settlement could pay eligible US users who used Android devices with cellular data since November 2017. The post Google’s $135M Android Privacy Settlement: Who May... Read more »
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Daemon Tools, TanStack, and Nx Console flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Windows... Read more »
State of AI Usage Report 2026 (full report here) by LayerX Security reveals the extent of the enterprise AI visibility gap and why most organizations still don’t understand where... Read more »
GitHub on Wednesday officially confirmed that the breach of its internal repositories was the result of a compromise of an employee device involving a poisoned version of the Nx... Read more »
GCHQ director Anne Keast-Butler confirms plans to build a national cyber defence capability using AI agents to defend critical infrastructure at ‘machine speed’ Read more »
Geopolitical tensions are stoking cyber threats to UK critical infrastructure. State actors and ransomware groups are targeting industrial systems. Operators must improve visibility Read more »
The Iranian hacking group known as MuddyWater has been linked to a new campaign affecting at least nine organizations across nine countries on four continents in the first quarter... Read more »
Travel company Carnival Corporation confirms the extent of an April 2026 supply chain breach that was claimed by ShinyHunters Read more »
A third-party UK visa site exposed passports and selfies on a public AWS server. It’s not official GOV.UK and affected at least 100,000 documents. UK Visa Portal is not... Read more »
