Tag: government
-
The Cyber Express Weekly Roundup: AI Security Controls, Major Patch Releases, Public Sector Audits, and Emerging Online Scams
Tags: ai, control, cyber, cybercrime, cybersecurity, governance, government, risk, risk-management, scam, technology, threat, update, vulnerabilityThis week’s cybersecurity developments highlight a growing emphasis on proactive security measures, governance oversight, and risk management across both public and private sectors. From large-scale vulnerability remediation efforts and AI security enhancements to government-led technology reviews and event-driven cybercrime campaigns, organizations continue to face a complex threat landscape. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/tce-weekly-roundup-cybersecurity-ai/
-
Tchap Messenger Hack Exposes Data of Over 73,000 French Government Employees
A suspected cyberattack targeting Tchap, the secure messaging platform used by French government agencies, has reportedly exposed sensitive data belonging to more than 73,000 government employees. According to threat intelligence reports shared by the ThreatMon monitoring account, a threat actor claims to have exfiltrated approximately 13.5 GB of internal data, covering nearly three years of…
-
CISA orders feds to patch actively exploited Ivanti flaw by Sunday
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) ordered government agencies to patch an actively exploited Ivanti Sentry flaw within three days, as mandated by the newly issued Binding Operational Directive (BOD) 26-04. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-gives-feds-3-days-to-patch-ivanti-flaw-exploited-in-attacks/
-
Over 73,000 French govt employees affected in Tchap messenger breach
The French government revealed that a recent breach of its Tchap encrypted messaging platform affects the accounts of over 73,000 employees in the French public sector. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/french-govt-says-tchap-breach-affected-over-73-000-accounts/
-
Europe’s digital identity wallet gets its first set of standards
People across the European Union already use their phones for banking, travel, and government services. The European Digital Identity Wallet will bring those activities into … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/12/etsi-eu-digital-identity-wallet/
-
DOJ, FBI Seize 13 Domains in Chinese Recruitment Op
Fake Recruiting Sites Used for Info Gathering. The Department of Justice and FBI seized 13 websites tied to an alleged Chinese intelligence gathering operation, using fake recruiting firms and deceptive job offers to target current and former U.S. government employees and security clearance holders. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/doj-fbi-seize-13-domains-in-chinese-recruitment-op-a-31952
-
CISA orders federal agencies to >>patch smarter<<
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a Binding Operational Directive that will change how the US federal government approaches … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/11/cisa-risk-based-vulnerability-management-government/
-
CISA tells govt agencies to patch critical exploited flaws in 3 days
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) announced a new Binding Operational Directive, 26-04, that prioritizes security updates for Federal Civilian Executive Branch (FCEB) agencies. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-tells-govt-agencies-to-patch-critical-exploited-flaws-in-3-days/
-
Hackers Exploit SniperDz PhaaS for Brand Spoofing and Browser Hijacking
A wave of phishing campaigns across the Middle East and North Africa exposes a sophisticated, centralized fraud ecosystem operating under the SniperDz banner. What initially appeared as isolated Facebook and Instagram scams fake offers for free mobile data, government subsidies, and compensation are linked to a turnkey Push-Notification-as-a-Service (PNaaS) and Phishing-as-a-Service (PhaaS) affiliate platform that…
-
FBI seizes 13 websites linked to alleged Chinese intelligence-gathering effort
Federal authorities have seized 13 internet domains allegedly used to target current and former U.S. government employees and military personnel with access to classified and … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/11/fake-consulting-websites-target-us-security-clearance-holders-china/
-
JDY Botnet Evolves After KV Takedown, Targets Military Networks
JDY botnet scans SOHO/IoT devices globally to map services and targets, especially US military networks. Lumen’s Black Lotus Labs reported the resurgence of the JDY botnet, a covert reconnaissance network tied to Chinese state-sponsored hacking groups including Volt Typhoon. The network was first spotted in late 2023 as a cluster inside KV-botnet. The U.S. government…
-
Hackers Abuse VMware-Signed Binary to Deploy NIGHTFORGE Loader
Two closely related espionage campaigns targeting Cambodian government organizations that abuse a legitimate VMware-signed binary to sideload a custom loader dubbed NIGHTFORGE, which in turn deploys a Havoc Demon implant in memory. TRU attributes both operations to a previously unreported cluster it calls Khmer Shadow, based on targeting, lure construction and shared infrastructure; the activity…
-
FBI Seizes China-Linked Fake Consulting Sites Targeting US Clearance Holders
The Justice Department and FBI seized 13 fake consulting websites that officials say targeted US clearance holders with paid research work designed to obtain sensitive government information. First seen on hackread.com Jump to article: hackread.com/fbi-seizes-china-fake-consulting-sites-us-clearance/
-
Trump Risks Key Surveillance Authority Over ‘Unqualified’ Spy-Chief Pick
US lawmakers are alarmed that Bill Pulte, a housing official with no intelligence experience, is poised to take charge of one of the government’s most powerful surveillance tools. First seen on wired.com Jump to article: www.wired.com/story/trump-risks-key-surveillance-authority-over-unqualified-spy-chief-pick/
-
UK Vows Device-Level Controls for Smartphone Underage Nudes
On Device Controls Spark Privacy, Security Concerns. The British government is demanding that smartphone giants Apple and Google ensure underage users of iOS and Android devices can no longer take, send or view nude photographs. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/uk-vows-device-level-controls-for-smartphone-underage-nudes-a-31933
-
Russian Attackers Weaponize WinRAR Flaw Against Ukrainian Orgs
Two separate campaigns target CVE-2025-8088, fixed last July, to conduct data theft and cyberespionage against military and government targets in Ukraine. First seen on darkreading.com Jump to article: www.darkreading.com/vulnerabilities-threats/russian-groups-winrar-flaw-ukrainian-orgs
-
Frankreichs Regierungs-Messenger gehackt: Sicherheitsbruch bei Tchap
Cyberkriminelle haben den Messenger der französischen Regierung kompromittiert. Über ein gekapertes Nutzerkonto wurden interne Daten exfiltriert. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/tchap-frankreich-messenger-gehackt
-
French government messaging platform breached through account hijacking
French authorities are investigating a compromise of Tchap, the government’s secure messaging platform, after hackers hijacked a user account and gained access to public … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/06/09/tchap-french-government-secure-messaging-platform-breach/
-
Maine Govt Portal Lists 10M Discord Data Breach Notice, But Filing Shows Red Flags
Maine Attorney General portal lists a Discord breach notice claiming 10 million affected, but odd filing details leave it unverified and questionable. First seen on hackread.com Jump to article: hackread.com/maine-govt-portal-discord-data-breach-notice/
-
French govt messaging service breached in account hijacking attack
DINUM, the digital affairs directorate of the French government, warned that hackers used a hijacked user account to breach Tchap, the French government’s encrypted messaging platform. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/french-govt-messaging-service-breached-in-account-hijacking-attack/
-
CISA gives feds 3 days to patch Check Point VPN bug exploited as zero-day
Tags: access, attack, cisa, exploit, government, mobile, ransomware, update, vpn, vulnerability, zero-dayCISA has ordered U.S. government agencies to secure their Check Point Remote Access VPN and Mobile Access deployments against a critical vulnerability exploited in zero-day attacks by Qilin ransomware affiliates. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cisa-orders-feds-to-patch-check-point-flaw-exploited-by-ransomware-gangs/
-
The AI security race needs accountability, not overregulation
Partnership between policymakers and tech companies, not government oversight, offers the best path forward for responsible AI innovation. First seen on cyberscoop.com Jump to article: cyberscoop.com/ai-security-regulation-accountability-op-ed/
-
Infosecurity Europe: How DSIT Protects Thousands of UK Orgs from Cyber Vulnerabilities
The Department of Science, Innovation and Technology details how a combination of hands-on human advice and technology systems keeps government agencies safe First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/infosecurity-europe-dsit-cyber/
-
All the Ways Europe Is Ditching American Technology
A WIRED timeline shows how dozens of governments, companies, and other organizations across Europe are moving, or planning to shift, away from US Big Tech. First seen on wired.com Jump to article: www.wired.com/story/all-the-ways-europe-is-ditching-american-technology/
-
‘Immediate national priority’: ministers accused of complacency over UK food supply
Cold storage and logistics body warns food supplies at risk from fuel shortages, cyber attacks and extreme weatherMinisters have been accused of being complacent about the risks to vital supplies of food into the UK amid concerns over fuel shortages, cyber attacks and extreme weather.The trade body for cold storage and logistics has urged the…
-
Cisco Catalyst SD-WAN Manager CVE-2026-20245 Flaw Actively Exploited No Patch Available
Cisco has warned that a high-severity security flaw impacting Catalyst SD-WAN Manager has come under active exploitation.The vulnerability, tracked as CVE-2026-20245, carries a CVSS score of 7.8 out of a maximum of 10.0. It affects the following deployment types – On-Prem Deployment Cisco SD-WAN Cloud-Pro Cisco SD-WAN Cloud (Cisco Managed) Cisco SD-WAN for Government (FedRAMP)”A…
-
Senator introduces bill to restore cybersecurity funding for state and local governments
First seen on scworld.com Jump to article: www.scworld.com/brief/senator-warner-introduces-bill-to-restore-cybersecurity-funding-for-state-and-local-governments
-
China-linked actors using job sites to target government workers, Five Eyes warns
First seen on scworld.com Jump to article: www.scworld.com/brief/china-linked-actors-using-job-sites-to-target-government-workers-five-eyes-warns
-
China-linked actors using job sites to target government workers, Five Eyes warns
First seen on scworld.com Jump to article: www.scworld.com/brief/china-linked-actors-using-job-sites-to-target-government-workers-five-eyes-warns
-
Ex-Threat Intel Exec Accuses IBM and AT&T of Hiding Hacks
IBM False Claims Act Plaintiff Alleges Years of Hidden Security Failures. A former IBM vice president of threat intelligence alleged IBM and AT&T failed to implement basic security controls and obtained major government contracts despite unresolved cybersecurity deficiencies that potentially exposed sensitive federal data. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/ex-threat-intel-exec-accuses-ibm-att-hiding-hacks-a-31904