Collecting Cyber-News from over 60 sources

Tag: defense

US states step up cyber defenses to protect local communities

May 25, 2026 2:00 PM

Tags: cyber, cybersecurity, defense, government

U.S. state governments are taking on a larger role in cybersecurity to help protect local communities and essential services. Many states are building state-led cyber defense … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/25/cltc-building-community-cyber-defense-programs/
Kazuar Malware Becomes Modular Spyware for Secret Blizzard Ops

May 25, 2026 9:00 AM

Tags: blizzard, cyber, defense, espionage, government, group, malware, russia, spyware, threat, tool

A major evolution in the Kazuar malware family, a long-standing cyber espionage tool linked to the Russian state-sponsored threat group Secret Blizzard, also known as Turla and Venomous Bear. Kazuar historically supported espionage campaigns targeting government, diplomatic, and defense sectors. Its latest iteration introduces a modular architecture composed of three key components: Kernel, Bridge, and…
Perimeter Defense Isn’t Enough. MSSPs Need a Data Resilience Strategy

May 23, 2026 6:00 AM

Tags: data, defense, mssp, resilience, strategy

First seen on scworld.com Jump to article: www.scworld.com/news/perimeter-defense-isnt-enough-mssps-need-a-data-resilience-strategy
Iranian Hackers Using Fake Job Sites to Breach Defense Firms

May 23, 2026 1:00 AM

Tags: breach, communications, defense, government, hacker, iran, jobs, malware, network

Unit 42 Says Iranian Operators Target Aerospace and Government Staff. Palo Alto Networks’ Unit 42 said Iran-linked operators tied to Screening Serpens are using fake recruiting campaigns, cloned aerospace hiring portals and malware-laced job materials to infiltrate defense, satellite communications and government networks. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/iranian-hackers-using-fake-job-sites-to-breach-defense-firms-a-31762
Next-generation enterprise defense: Managing risk in the age of agentic AI

May 22, 2026 10:00 PM

Tags: ai, defense, risk

First seen on scworld.com Jump to article: www.scworld.com/resource/next-generation-enterprise-defense-managing-risk-in-the-age-of-agentic-ai
Ghostwriter Targets Ukraine Government Entities with Prometheus Phishing Malware

May 22, 2026 8:00 PM

Tags: computer, defense, email, government, malware, phishing, threat, ukraine

The Belarus-aligned threat actor known as Ghostwriter (aka UAC-0057 and UNC1151Ukraine’s National Security and Defense Council) has been observed using lures related to Prometheus, a Ukrainian online learning platform, to target government organizations in the country.The activity, per the Computer Emergency Response Team of Ukraine (CERT-UA), involves sending phishing emails to government First seen on…
Iran-linked hackers target key US, allied sectors with sophisticated spear-phishing messages

May 22, 2026 6:00 PM

Tags: defense, hacker, iran, network, phishing, spear-phishing

Companies, particularly those in the affected industries, should harden their defenses against impersonation schemes, Palo Alto Networks said. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/iran-cyberattacks-espionage-us-israel-uae/820990/
Russian Hackers Exploit RDP, VPNs, Supply Chains for Initial Access

May 22, 2026 3:00 PM

Tags: access, cyber, defense, exploit, government, group, hacker, infrastructure, network, russia, social-engineering, supply-chain, threat, vpn

Russian state-sponsored and aligned threat groups are increasingly combining Remote Desktop Protocol (RDP), Virtual Private Networks (VPNs), supply chain compromise, and sophisticated social engineering to gain initial access to targeted networks across government, critical infrastructure, and commercial sectors. This multi-vector approach allows them to bypass perimeter defenses, blend in with legitimate traffic, and maintain long-term…
State Officials Urge Congress to Renew Cyber Grant Program

May 22, 2026 5:00 AM

Tags: ai, china, cyber, cybersecurity, defense, government, intelligence

Officials Warn Local Governments Lack Resources to Counter Advanced Threats. State cybersecurity officials warned Congress that Chinese-linked intrusions and rapidly advancing artificial intelligence systems are overwhelming local defenses as states push lawmakers to expand long-term federal cyber grant funding and preserve federal coordination efforts. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/state-officials-urge-congress-to-renew-cyber-grant-program-a-31748
AI, Cybersecurity Education, and the Defense of America’s Digital Border

May 21, 2026 5:00 PM

Tags: ai, cybersecurity, defense, usa

AI is reshaping cybersecurity education and strengthening America’s digital defense. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/artificial-intelligence/ai-cybersecurity-education-and-the-defense-of-americas-digital-border/
Ukraine says Russia is deploying AI-powered malware on the battlefield

May 20, 2026 4:00 PM

Tags: ai, cyber, defense, malware, russia, social-engineering, ukraine

A new report from Ukraine’s National Security and Defense Council says Russia’s use of AI across cyber operations expanded dramatically over the past year, reshaping everything from social engineering campaigns to malware development and creating what Ukrainian officials describe as a growing imbalance between attackers and defenders. First seen on therecord.media Jump to article: therecord.media/ukraine-says-russia-using-ai-malware-on-battlefield
Ukraine says Russia is deploying AI-powered malware on the battlefield

May 20, 2026 4:00 PM

Tags: ai, cyber, defense, malware, russia, social-engineering, ukraine

A new report from Ukraine’s National Security and Defense Council says Russia’s use of AI across cyber operations expanded dramatically over the past year, reshaping everything from social engineering campaigns to malware development and creating what Ukrainian officials describe as a growing imbalance between attackers and defenders. First seen on therecord.media Jump to article: therecord.media/ukraine-says-russia-using-ai-malware-on-battlefield
Data Brokers’ and AI Firms’ Opt-Out Forms Are Built to Fail, Report Finds

May 20, 2026 12:00 PM

Tags: ai, data, defense

A new study finds AI companies, defense firms, and dating apps are among 38 data collectors allegedly using manipulative design to confuse users while collecting their data. First seen on wired.com Jump to article: www.wired.com/story/data-brokers-and-ai-firms-opt-out-forms-are-built-to-fail-report-finds/
Data Brokers’ and AI Firms’ Opt-Out Forms Are Built to Fail, Report Finds

May 20, 2026 12:00 PM

Tags: ai, data, defense

A new study finds AI companies, defense firms, and dating apps are among 38 data collectors allegedly using manipulative design to confuse users while collecting their data. First seen on wired.com Jump to article: www.wired.com/story/data-brokers-and-ai-firms-opt-out-forms-are-built-to-fail-report-finds/
Judges Clash Over Pentagon’s Anthropic Ban

May 20, 2026 1:00 AM

Tags: ai, defense, military

Appeals Court Weighs Pentagon Authority Over Frontier AI Providers. A majority of judges on a U.S. federal appeals court appeared disposed to allowing Defense Secretary Pete Hegseth to bar Anthropic from future military work for posing national security risk. Oral argument held Tuesday in the U.S. Court of Appeals for the D.C. Circuit was Anthropic’s…
Looking Back, Looking Forward: Digesting a Dynamic Bouillabaisse of Cyber Evolution

May 19, 2026 5:00 PM

Tags: ai, attack, breach, cloud, cyber, defense, strategy, threat

Dark Reading editors reflect on two decades of dramatic change, from perimeter defense to assume-breach strategies, and warn that while AI, cloud, and COVID-19 have transformed the threat landscape, organizations are still failing at fundamental security hygiene that could stop sophisticated attacks in their tracks. First seen on darkreading.com Jump to article: www.darkreading.com/cybersecurity-operations/looking-back-looking-forward-bouillabaisse-cyber-evolution
The Newest Space Race Is Cyber

May 19, 2026 3:00 PM

Tags: cyber, defense, hacker

Satellites Will Be Newest Cyberwar Front. Now that space is becoming a battlefield, cyberwar will be waged there, experts predict, and the race is on to develop cyber defenses that can protect new satellite constellations from foreign cyber-warriors, online spies and even criminal hacker gangs. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/newest-space-race-cyber-a-31717
7 tips for accelerating cyber incident recovery

May 19, 2026 12:00 PM

Tags: attack, awareness, backup, breach, business, ceo, cio, ciso, cloud, communications, control, cyber, cybersecurity, data, defense, finance, framework, governance, incident, incident response, infection, insurance, international, lessons-learned, malicious, malware, monitoring, nist, risk, service, technology, threat, update

Emphasize scoping and containment from the outset: Because you can’t recover from what you can’t stop, scoping and containment should be the absolute first priority during incident recovery, says Amit Basu, CIO and CISO at freight shipping firm International Seaway.”Before anything else, you must stop the bleeding,” he says. This means understanding the true scope…
Kimsuky Uses LNK, JSE Lures to Target Recruiters, Crypto Users, Defense Officials

May 19, 2026 12:00 PM

Tags: attack, crypto, cyber, defense, group, hacker, korea, north-korea, phishing, spear-phishing, threat

Kimsuky Hackers Use LNK and JSE Lures to Target Recruiters, Crypto Users, and Defense Officials. North Korea-linked threat group Kimsuky has launched at least four distinct spear-phishing campaigns in early 2026, targeting recruiters, cryptocurrency users, developers, defense personnel, and academic administrators. Despite using different themes and delivery methods, all campaigns follow a consistent attack chain:…
The Newest Space Race is in Cyber

May 19, 2026 5:00 AM

Tags: cyber, defense, hacker

Satellites Will Be Newest Cyberwar Front. Now that space is becoming a battlefield, cyberwar will be waged there, experts predict, and the race is on to develop cyber defenses that can protect new satellite constellations from foreign cyber-warriors, online spies and even criminal hacker gangs. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/newest-space-race-in-cyber-a-31717
New image-based prompt injection attack targets multimodal AI models

May 18, 2026 4:01 PM

Tags: access, ai, attack, control, defense, exploit, framework, guide, injection, open-source

Researchers claim strong black-box transferability: The researchers evaluated the technique against multiple open-source LVLMs, including MiniGPT4, BLIP-2, InstructBLIP, BLIVA, and Qwen2.5-VL, the paper added.According to the paper, the attack achieved an average success rate of 66.36% across tested models, outperforming prior baseline attacks by roughly 41 percentage points.The researchers also said the technique demonstrated “strong…
The AI backdoor your security stack is not built to see

May 18, 2026 9:00 AM

Tags: ai, backdoor, defense, LLM, malicious

Enterprises deploying LLMs have spent the past two years building defenses around a reasonable assumption: malicious behavior leaves a trace in the input. Scan for suspicious … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/18/metabackdoor-llm-backdoor-attack/
The AI backdoor your security stack is not built to see

May 18, 2026 9:00 AM

Tags: ai, backdoor, defense, LLM, malicious

Enterprises deploying LLMs have spent the past two years building defenses around a reasonable assumption: malicious behavior leaves a trace in the input. Scan for suspicious … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/05/18/metabackdoor-llm-backdoor-attack/
Former CISA nominee Sean Plankey named US CEO of defense startup

May 18, 2026 7:01 AM

Tags: ceo, cisa, defense, startup, ukraine

UFORCE, a London-based company founded by Ukrainians, is looking to make drones in America. First seen on cyberscoop.com Jump to article: cyberscoop.com/former-cisa-nominee-sean-plankey-named-us-ceo-of-defense-startup/
7AI Uncovers Browser Extension Campaign Evading EDR Defenses

May 15, 2026 5:00 PM

Tags: defense, edr, malicious

7AI uncovered a browser-extension campaign that bypassed EDR defenses to inject malicious JavaScript into authenticated browser sessions. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/7ai-uncovers-browser-extension-campaign-evading-edr-defenses/
Autonomous systems are finally working. Security is next

May 15, 2026 1:00 PM

Tags: access, ai, cloud, credentials, data, defense, exploit, identity, infrastructure, injection, risk

Security still runs at human speed: Despite advances in infrastructure, cloud and AI, the underlying workflow of security operations has not fundamentally changed. At its core, security still operates as a human-driven process: Alerts are generated, analysts investigate, context is assembled manually and decisions are made under pressure. This model was sufficient when environments were…
FlowerStorm phishing gang adopts virtual-machine obfuscation to evade email defenses

May 14, 2026 4:00 PM

Tags: attack, authentication, business, cloud, communications, control, credentials, defense, detection, email, framework, government, infrastructure, login, malicious, malware, mfa, microsoft, phishing, service, theft

The campaign dynamically adapts to victims: After deobfuscation, the phishing payload loads infrastructure designed to impersonate Microsoft 365 and other login portals while dynamically adapting to targeted users.According to the report, the malware can determine which authentication provider should be impersonated, preload victim email addresses into phishing pages, and customize branding elements such as company…
OpenAI introduces Daybreak cyber platform, takes on Anthropic Mythos

May 12, 2026 4:20 PM

Tags: access, ai, cisco, crowdstrike, cyber, cybersecurity, defense, detection, fortinet, framework, government, malware, network, openai, oracle, penetration-testing, RedTeam, risk, software, strategy, technology, update, vulnerability

OpenAI’s cybersecurity model stack: OpenAI is pursuing a scalable cyber defense platform strategy with Daybreak and is rolling out the initiative through three different model tiers: GPT-5.5 (default), GPT-5.5 with Trusted Access for Cyber, and GPT-5.5-Cyber.The standard GPT-5.5 model is positioned for general-purpose enterprise use cases, including developer assistance and knowledge work. GPT-5.5 with Trusted…
Vidar Stealer Campaign Evades EDR to Steal Credentials

May 12, 2026 3:19 PM

Tags: backdoor, credentials, cyber, defense, edr, email, tool

A new Vidar Stealer campaign is abusing trusted tools, multi”‘stage loaders, and heavy obfuscation to bypass EDR visibility and steal credentials from infected systems silently. This operation shows a clear shift toward “living”‘off”‘the”‘land” techniques and stealthy backdoor architectures that make traditional signature”‘based defenses almost useless. The campaign starts with spear”‘phishing emails that contain compressed archives,…
Vidar Stealer Campaign Evades EDR to Steal Credentials

May 12, 2026 3:19 PM

Tags: backdoor, credentials, cyber, defense, edr, email, tool

A new Vidar Stealer campaign is abusing trusted tools, multi”‘stage loaders, and heavy obfuscation to bypass EDR visibility and steal credentials from infected systems silently. This operation shows a clear shift toward “living”‘off”‘the”‘land” techniques and stealthy backdoor architectures that make traditional signature”‘based defenses almost useless. The campaign starts with spear”‘phishing emails that contain compressed archives,…