Beneath the radar: Analyzing the cyber warfare claims in Iran's military posturing
Iran's military claims of targeting a US jet highlight the convergence of electronic and cyber warfare, where digital vulnerabilities can be as critic
Beyond the hardware: The hidden cyber risks of the Russia-Iran missile pact
The Russia-Iran missile deal is more than a hardware transfer; it's a catalyst for a deeper cyber alliance, creating new threats for digital and physi
The war behind the wires: How the Israel-Iran conflict moved from physical threats to digital battlegrounds
A 2013 threat of physical strikes between Israel and Iran has evolved into a persistent cyber war, with critical infrastructure as the main battlefiel
Infinite Campus warns of breach after ShinyHunters claims data theft
Infinite Campus, a major K-12 student information system, confirms a data breach after the notorious ShinyHunters group attempted extortion.
When the watchdog gets bit: An analysis of the Trivy vulnerability scanner supply chain attack
A deep-dive analysis of the supply chain attack on Aqua's Trivy scanner, which saw hackers distribute the RedLine Stealer malware via official channel
The hidden cost of cybersecurity specialization: foundational skills are eroding
Despite advanced tools and specialized roles, many security teams are losing foundational skills, leaving them vulnerable to basic, preventable attack
TeamPCP hacks Checkmarx GitHub Actions using stolen CI credentials
A threat actor named TeamPCP has compromised two Checkmarx GitHub Actions, creating a major supply chain risk by stealing credentials from user workfl
Anthropic patches critical zero-click flaw in Claude Chrome extension
A zero-click XSS flaw in the Claude Chrome extension allowed any website to inject malicious prompts, risking data theft before Anthropic issued a pat
LinkedIn secretly scans for over 6,000 Chrome extensions, collects data
A new "BrowserGate" report reveals LinkedIn's hidden script that scans for 6,000+ Chrome extensions, raising major privacy and user profiling concerns
Drone strikes deep inside Russia signal a new phase of asymmetric warfare
An in-depth analysis of the November 2023 drone strikes on Tolyatti and Taganrog, revealing a sophisticated strategy to disrupt Russia's war effort.
AI assistant finds critical code execution flaws in Vim and Emacs
A security researcher used simple prompts with the Claude AI to discover critical remote code execution bugs in Vim and Emacs, both now patched.
European Commission confirms major data breach linked to software supply chain attack
Over 300GB of data, including personal information, was stolen from the European Commission in a supply chain attack targeting its AWS environment.











