At least a dozen unauthorized emergency alerts were pushed through Brazil's Civil Defense platform early Saturday, falsely warning residents of floods and landslides.
The Record
· 18h ago
· Read full article →
Russia struck the Monastery of the Caves and Dormition Cathedral in Kyiv, destroying protected cultural and religious heritage under international law. The attack fits a documented Russian pattern of systematic cultural erasure as a deliberate theater-of-war strategy.
Just Security
· 19h ago
· Read full article →
The U.S. Defense Department retains Alibaba on its Chinese military-company blacklist, reflecting Washington's inability to cleanly separate commercial Chinese tech from PLA equities. The designation exposes the structural failure of targeted sanctions when civil-military integration is policy by design.
Foreign Policy
· 11h ago
· Read full article →
🇨🇳 PLA · China
Trump secured a high-profile Iran nuclear framework but lacks the implementation architecture to enforce or sustain it. Prior Gaza agreement collapse shows the gap between deal announcement and durable compliance.
Foreign Policy
· 11h ago
· Read full article →
Foreign Policy argues the U.S. needs a state-backed program to deploy American AI infrastructure abroad before Beijing locks in technological dependencies across the Global South. Failure cedes AI standard-setting and data access to China for a generation.
Foreign Policy
· 21h ago
· Read full article →
U.S.-Iran high-level talks at Bürgenstock concluded the first negotiating round under the Islamabad Memorandum of Understanding, with Qatar and Pakistan present as mediators. The talks mark the most structured diplomatic channel between Washington and Tehran in years.
Just Security
· 20h ago
· Read full article →
Canada's CSIS obtained a Federal Court warrant — the first of its kind — to remotely alter and neutralize two foreign-operated botnets on Canadian routers, servers, and IoT devices.
The Hacker News
· 23h ago
· Read full article →
Uyghurs in the U.S. are publicly split on Washington's resolve after the Trump-Xi summit produced no human rights commitments on Xinjiang. The absence of any accountability mechanism signals Beijing that economic normalization with Washington carries no human rights cost.
The Diplomat
· 12h ago
· Read full article →
China imposed new rare-earth export restrictions, reinforcing its dominant chokehold over materials critical to U.S. defense and semiconductor industries. The move signals Beijing's willingness to weaponize mineral dependency as a direct lever in the escalating trade and technology war.
Foreign Policy
· 11h ago
· Read full article →
Elastic Security Labs identified OXLOADER, a new malware loader distributing CastleStealer via malicious Google Ads, attributed to a likely Russian-speaking, financially motivated actor.
The Hacker News
· 18h ago
· Read full article →
North Korean hackers injected a malicious dependency into over 140 Mastra NPM packages to harvest cryptocurrency wallet extension credentials. The attack extends Pyongyang's pattern of npm supply-chain compromises funding sanctions-busting crypto operations.
SecurityWeek
· 21h ago
· Read full article →
🇰🇵 Lazarus · North Korea
Unknown attackers breached ShapedPlugin's build and distribution pipeline, injecting backdoor code into Pro plugin releases pushed through official licensed update channels. Targeting the vendor pipeline—not individual sites—multiplies reach across every paying customer simultaneously.
The Hacker News
· 14h ago
· Read full article →
An ongoing campaign targets WhatsApp users across multiple countries with fake business documents delivering VBScript payloads that grant attackers remote system access. Exploiting WhatsApp's business messaging context lowers victim suspicion and bypasses traditional email security controls.
BleepingComputer
· 9h ago
· Read full article →
Microsoft Threat Intelligence uncovered a ransomware intrusion where two distinct threat actors operated in parallel, blending tactics and evasion techniques within the same compromised environment.
Microsoft Threat Intelligence
· 16h ago
· Read full article →
ShinyHunters' recent high-volume breaches relied exclusively on stolen credentials and SaaS misconfigurations—no malware, no zero-days. The pattern confirms that identity is now the primary attack surface, and EDR-centric defenses leave organizations structurally exposed.
SecurityWeek
· 21h ago
· Read full article →
HackerOne, Huntress, Jamf, OneTrust, Recorded Future, Snyk, and Tanium confirmed data exposure from a breach of competitive intelligence platform Klue.
SecurityWeek
· 23h ago
· Read full article →
This week's threat activity spanned ransomware crews deploying EDR-disabling tools, a TV-based botnet, a new OpenBSD vulnerability, and Android trojans demanding excessive permissions. The persistence of credential abuse and supply-chain poisoning confirms attackers are scaling proven playbooks, not inventing new ones.
The Hacker News
· 21h ago
· Read full article →
OpenAI expanded its Daybreak program by releasing GPT-5.5-Cyber, designed to find and patch vulnerabilities across large codebases, to trusted security defenders. Putting offensive-caliber AI capability in defenders' hands shifts the asymmetry that has historically favored attackers in code auditing.
The Hacker News
· 4h ago
· Read full article →
Zafran Security disclosed four vulnerabilities in Dify, an open-source AI workflow platform with 146,000 GitHub stars, enabling unauthenticated cross-tenant AI conversation theft.
The Hacker News
· 16h ago
· Read full article →
Researchers published a proof-of-concept for Usbliter8, a hardware-level exploit that bypasses Apple's Secure Boot protections and cannot be patched via software update on affected iPhone models.
SecurityWeek
· 22h ago
· Read full article →
Get this in your inbox
Free daily briefing. No spam. Unsubscribe anytime.
Subscribe Now