Tag: intelligence
-
Russia establishes Vienna as key western spy hub targeting NATO
Russia uses Vienna as its largest Western spy hub, monitoring NATO and other sensitive communications via diplomatic sites and satellite dishes. Western intelligence reports that Russia has transformed Vienna into its largest Western spy hub, steadily expanding surveillance over the past two years. Using diplomatic compounds and rooftop satellite clusters, Russia monitors sensitive communications across…
-
Anthropic ban heralds new era of supply chain risk, with no clear playbook
Tags: ai, business, ceo, cisco, ciso, compliance, control, data, defense, framework, government, group, infrastructure, intelligence, law, monitoring, network, RedTeam, risk, risk-management, sbom, software, strategy, supply-chain, technology, threat, toolCompliance pressure before policy clarity: For organizations that do business with the federal government, the implications extend beyond technical challenges into legal and contractual risk. Alex Major, co-chair of government contracts and global trade practice at law firm McCarter and English, tells CSO that supply chain designations like the Anthropic ban tend to move quickly…
-
Anthropic ban heralds new era of supply chain risk, with no clear playbook
Tags: ai, business, ceo, cisco, ciso, compliance, control, data, defense, framework, government, group, infrastructure, intelligence, law, monitoring, network, RedTeam, risk, risk-management, sbom, software, strategy, supply-chain, technology, threat, toolCompliance pressure before policy clarity: For organizations that do business with the federal government, the implications extend beyond technical challenges into legal and contractual risk. Alex Major, co-chair of government contracts and global trade practice at law firm McCarter and English, tells CSO that supply chain designations like the Anthropic ban tend to move quickly…
-
New iOS Exploit Uses Advanced iPhone Hacking Tools to Steal Personal Data
Google Threat Intelligence Group (GTIG) has uncovered a highly sophisticated iOS full-chain exploit dubbed DarkSword. Active since November 2025, this exploit leverages multiple zero-day vulnerabilities to compromise Apple devices running iOS 18.4 through 18.7 fully. DarkSword is highly unusual because it relies entirely on JavaScript throughout its exploit chain, thereby mitigating the need for a…
-
Colorado Moves to Revise Its Landmark AI Law After Industry Pushback
Colorado lawmakers are preparing to revise one of the first comprehensive artificial intelligence laws in the United States, following months of tension between regulators, consumer advocates, and the technology industry. A newly released policy framework outlines how the state may adjust its 2024 AI law before enforcement begins later this year. At the center of……
-
UK MoD awards more than two dozen contracts for AI targeting systems
The UK Ministry of Defence is ramping up its investment into military artificial intelligence in a bid to increase the ‘lethality’ of the British armed forces First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366640322/UK-MoD-awards-more-than-two-dozen-contracts-for-AI-targeting-systems
-
US intelligence chief grilled on absence of election threats in security assessment
Previous clandestine community assessments have documented, at least at a high level, attempts by Iran, Russia or China to sway voters with online propaganda or through cyber operations. First seen on therecord.media Jump to article: therecord.media/us-intel-chief-senate-election-security-threat-assessment
-
Menlo Security Adds Platform to Secure AI Agents
Menlo Security today launched a platform to secure artificial intelligence (AI) agents running in a browser that accesses a cloud-based environment where they can securely access applications. The company already provides a similar platform through which end users are able to securely access applications without requiring IT teams to deploy and maintain a virtual private..…
-
Interlock Ransomware Exploits Cisco FMC Zero-Day CVE-2026-20131 for Root Access
Tags: access, cisco, cve, exploit, firewall, flaw, intelligence, ransomware, threat, vulnerability, zero-dayAmazon Threat Intelligence is warning of an active Interlock ransomware campaign that’s exploiting a recently disclosed critical security flaw in Cisco Secure Firewall Management Center (FMC) Software.The vulnerability in question is CVE-2026-20131 (CVSS score: 10.0), a case of insecure deserialization of user-supplied Java byte stream, which could allow an unauthenticated, remote attacker to First seen…
-
AI Flaws in Amazon Bedrock, LangSmith, and SGLang Enable Data Exfiltration and RCE
Cybersecurity researchers have disclosed details of a new method for exfiltrating sensitive data from artificial intelligence (AI) code execution environments using domain name system (DNS) queries.In a report published Monday, BeyondTrust revealed that Amazon Bedrock AgentCore Code Interpreter’s sandbox mode permits outbound DNS queries that an attacker can exploit to enable interactive shells First seen…
-
Iranian Hackers Use Compromised Cameras for Regional Surveillance
Tags: apt, cctv, cyber, exploit, group, hacker, infrastructure, intelligence, Internet, iran, middle-eastIranian cyber actors are expanding operations targeting US organizations while also exploiting internet-connected cameras across the Middle East for intelligence collection and battlefield awareness. Recent incidents tied to APT group MuddyWater, camera”‘focused infrastructure, and hacktivist collective Handala point to an ecosystem that is operational but constrained, prioritizing persistence, visibility, and selective disruption over large”‘scale, coordinated cyber campaigns.…
-
CL1087 targets military capabilities since 2020
China-linked APT group CL-STA-1087 has targeted Southeast Asian militaries since 2020 using AppleChris and MemFun. A suspected China-linked espionage campaign, tracked as CL-STA-1087, has targeted Southeast Asian military organizations since at least 2020, using AppleChris and MemFun malware. >>The activity demonstrated strategic operational patience and a focus on highly targeted intelligence collection, rather than bulk…
-
Microsoft Launches AI-Driven Troubleshooting for Purview Data Lifecycle Tools
Microsoft has officially released a new open-source tool designed to simplify how IT and security administrators manage data governance. Announced on March 16, 2026, the DLM Diagnostics Model Context Protocol (MCP) Server brings artificial intelligence directly into the troubleshooting process for Microsoft Purview Data Lifecycle Management (DLM). Managing data lifecycles across Microsoft 365 workloads is…
-
Microsoft Launches AI-Driven Troubleshooting for Purview Data Lifecycle Tools
Microsoft has officially released a new open-source tool designed to simplify how IT and security administrators manage data governance. Announced on March 16, 2026, the DLM Diagnostics Model Context Protocol (MCP) Server brings artificial intelligence directly into the troubleshooting process for Microsoft Purview Data Lifecycle Management (DLM). Managing data lifecycles across Microsoft 365 workloads is…
-
Konni Deploys EndRAT Through Phishing, Uses KakaoTalk to Propagate Malware
Tags: access, email, group, hacking, intelligence, malicious, malware, north-korea, phishing, spear-phishing, threatNorth Korean threat actors have been observed sending phishing to compromise targets and obtain access to a victim’s KakaoTalk desktop application to distribute malicious payloads to certain contacts.The activity has been attributed by South Korean threat intelligence firm Genians to a hacking group referred to as Konni.”Initial access was achieved through a spear-phishing email disguised…
-
AI-Driven Phishing Campaign Uses Browser Permissions to Harvest Sensitive Data
A new AI-driven phishing campaign, uncovered by Cyble Research & Intelligence Labs (CRIL) First seen on thecyberexpress.com Jump to article: thecyberexpress.com/ai-driven-phishing-campaign/
-
IBM X-Force Threat Intelligence Index 2026 – Schwachstellen sind Einfallstor Nummer 1
First seen on security-insider.de Jump to article: www.security-insider.de/ibm-cyberangriffe-schwachstellen-identitaetsschutz-europa-a-e9dccd2ee68310d6712e58db186cd3b3/
-
How does Agentic AI ensure safe data handling
Are You Addressing the Security Needs of Non-Human Identities in Your Cloud Environment? Where digital transformation is commonplace, ensuring the security of Non-Human Identities (NHIs) in cloud environments is paramount. With artificial intelligence and machine learning become more prevalent, so does the necessity for robust management of these machine identities, which are critical to maintaining……
-
How does Agentic AI ensure safe data handling
Are You Addressing the Security Needs of Non-Human Identities in Your Cloud Environment? Where digital transformation is commonplace, ensuring the security of Non-Human Identities (NHIs) in cloud environments is paramount. With artificial intelligence and machine learning become more prevalent, so does the necessity for robust management of these machine identities, which are critical to maintaining……
-
US Lawmakers Call for CISA Polygraph Probe
House Democrats Demand Probe Into Former CISA Head Gottumukkala Poly Failures. Five U.S. Democratic lawmakers called for an investigation into a series of escalating controversies surrounding Cybersecurity and Infrastructure Security Agency leadership, following allegations that ex-Acting Director Madhu Gottumukkala bypassed established intelligence protocols. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/us-lawmakers-call-for-cisa-polygraph-probe-a-31043
-
CrowdStrike Extends Agentic AI Alliance with NVIDIA
CrowdStrike today revealed it is adding additional artificial intelligence (AI) agents into its managed detection and response (MDR) services using a toolkit provided by NVIDIA. At the same time, CrowdStrike also announced that a Secure-by-Design AI Blueprint built in collaboration with NVIDIA will now be incorporated into NVIDIA OpenShell, an open-source runtime for creating sandboxes..…
-
CrowdStrike Extends Agentic AI Alliance with NVIDIA
CrowdStrike today revealed it is adding additional artificial intelligence (AI) agents into its managed detection and response (MDR) services using a toolkit provided by NVIDIA. At the same time, CrowdStrike also announced that a Secure-by-Design AI Blueprint built in collaboration with NVIDIA will now be incorporated into NVIDIA OpenShell, an open-source runtime for creating sandboxes..…
-
Revealed: How HMRC has been quietly building surveillance capabilities
HMRC has bought phone scanning equipment and analysis software capable of extracting data from mobile devices as it steps up its electronic intelligence gathering capabilities, an investigation by Computer Weekly reveals First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366639490/Revealed-How-HMRC-has-been-quietly-building-surveillance-capabilities
-
Revealed: How HMRC has been quietly building surveillance capabilities
HMRC has bought phone scanning equipment and analysis software capable of extracting data from mobile devices as it steps up its electronic intelligence gathering capabilities, an investigation by Computer Weekly reveals First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366639490/Revealed-How-HMRC-has-been-quietly-building-surveillance-capabilities
-
16th March Threat Intelligence Report
United States-based medical technology company Stryker has suffered a cyberattack that caused a global disruption to its environment. The company said its surgical robotics, clinical communications platform, and life support monitors are […] First seen on research.checkpoint.com Jump to article: research.checkpoint.com/2026/16th-march-threat-intelligence-report/