Ghost breaches: How AI-mediated narratives have become a new threat vector
Three incidents. No actual breaches. Full-scale crisis response. AI hallucinations are creating a new threat vector that most organizations are unprep
ThreatsDay bulletin: A deep dive into the Defender 0-day, SonicWall attacks, and a 17-year-old Excel flaw
This week’s threat bulletin is a heavy one. We analyze the critical Microsoft Defender 0-day, a massive SonicWall brute-force campaign, and a 17-year-
OpenAI's new cyber model signals a new front in the AI security arms race
OpenAI's GPT-5.4-Cyber, a model for defenders, enters the field after Anthropic's offensive AI reveal, escalating the AI-driven cybersecurity arms rac
The digital front: Analyzing Iran's cyber warfare capabilities in geopolitical conflict
A deep dive into Iran's state-sponsored cyber capabilities, analyzing potential attack scenarios, target sectors, and the critical steps businesses mu
When drones attack: Analyzing the cyber-physical threat to critical infrastructure
A deep-dive into the May 2024 drone attack on Russia's Afipsky oil refinery, analyzing it as a case study in converged cyber-physical warfare.
Microsoft Defender's 'RedSun' zero-day: A researcher's protest and a threat to Windows systems
A researcher's protest exposed a critical zero-day in Microsoft Defender, allowing attackers full system control. Here's the technical breakdown and h
Attempted breach of Swedish power plant highlights escalating cyber front in European energy sector
A failed 2022 cyberattack on a Swedish power plant, disclosed by officials, reveals the escalating threat pro-Russian actors pose to European critical
Over 100 malicious Chrome extensions found stealing data and creating backdoors
A detailed analysis of a coordinated campaign where over 100 malicious Chrome extensions compromised 4 million users, stealing data and creating backd
Sweden's attribution of energy sector attack highlights rising threat to critical infrastructure
Sweden publicly blamed a pro-Russian group for a 2022 cyberattack on a heating plant, a significant move signaling a new era of hybrid threats.
We’re only seeing the tip of the chip-smuggling iceberg
Recent federal indictments reveal a vast shadow network smuggling AI chips to China. A deeper look shows why enforcement must move beyond the border.
Unverified 'Model Context Protocol' flaw: a theoretical blueprint for AI supply chain attacks
A report on a design flaw in a purported Anthropic protocol remains unverified, but it exposes the theoretical risk of AI models becoming vectors for
Audit: Big Tech often ignores California privacy law opt-out requests
An audit by the Privacy Rights Clearinghouse found that Google, Meta, and Microsoft fail to honor consumer 'Do Not Sell or Share' requests about half