China-nexus group linked to multiyear campaign targeting US, Canadian medical research
A report from Google links a sophisticated espionage effort targeting information about viruses, AI and military information. Source link
Month: June 2026
Cybersecurity experts don’t think Anthropic’s Fable 5 presents a unique threat
Last Friday, the Trump administration sent a shock through the tech ecosystem when the Department of Commerce levied export controls on Anthropic’s new AI model…
NIS2 is raising the bar. Here’s how to turn readiness into resilience.
The NIS2 directive asks covered organizations to take a more structured approach to risk management, governance, supply chain security, and incident reporting. It expands the…
CrowdStrike Announces Continuous Identity for AI Agents
Identity security has long been built around a simple premise: Authenticate a user, grant access, and trust that decision until their next login. While for…
Attackers can turn AI agent guardrails into denial-of-service weapons
They added that “a single poisoned document can saturate shared guardrail infrastructures, effectively starving co-located agents and paralyzing the entire system,” describing a reasoning-extension denial-of-service…
Users cry foul after AMD stripped memory crypto from its consumer CPUs
Limoncello promptly replied: “My apologies; but I don’t have any more information to share on this topic.” With that, the discussion and Kilpatrick’s inquiry were…
Dirty Frag (CVE-2026-43284) Linux Privilege Escalation
A newly disclosed Linux kernel local privilege escalation vulnerability chain, dubbed “Dirty Frag” and assigned CVE-2026-43284 and CVE-2026-43500, enables attackers with local access to obtain…
How My StubHub Account Got Hacked
It was a Tuesday night around 9pm. I check my email on my phone and find a notification from StubHub for a transaction just made…
Cisco fixes SD-WAN vManage flaw exploited in zero-day attacks
Cisco has released security updates to address a vulnerability in the Catalyst SD-WAN Manager, tracked as CVE-2026-20262, that was exploited in attacks to escalate to…
Microsoft Site Showing Warning Following Certificate Expiry
Microsoft seems to have failed certificate management after a domain used by sysadmins globally to test connectivity to Microsoft 365 started generating untrusted connection warnings…
Could GPU-Accelerated EDR Improve The Future Of Endpoint Detection?
The growing computational challenge in endpoint detection Ever wonder how Modern Endpoint Detection and Response (EDR) works? EDR platforms rely heavily on behavioral analysis to…
Payroll Pirate Campaign Uses AiTM Session Hijacking to Bypass MFA and Redirect Salaries
A financially motivated campaign dubbed “Payroll Pirate” has emerged using advanced phishing and adversary-in-the-middle (AiTM) session hijacking to bypass multifactor authentication (MFA) and reroute payroll…