The News.
Daily intel.

Daily breach reporting, CVE disclosures, malware analyses, and threat campaigns. Yesterday's incidents, this morning's coverage — written by practitioners for the analysts and defenders who need it first.

148

Articles

143

Updated this month

14k+

Monthly readers

Showing 55–63 of 148 articles 143 updated this month

Intermediate 3.0k

News 8 min read

Google Android Binary Transparency: Public Ledger Stops Supply Chain Attacks on Android Apps

Google expands Binary Transparency to all production Android apps, creating a public cryptographic ledger for verifying authorized releases. How it works and who it protects.

Intermediate 3.4k

News 8 min read

One in Eight Workers Has Sold Corporate Login Credentials, Cifas Finds

Cifas survey reveals 13% of UK enterprise workers sold or know someone who sold corporate login credentials. C-suite is 43% likely to view it as justifiable. Insider threat action steps.

Intermediate 698

News 8 min read

GDDRHammer, GeForge, GPUBreach: NVIDIA GDDR6 Rowhammer Attacks Enable Full System Takeover

Three independent Rowhammer attacks — GDDRHammer, GeForge, and GPUBreach — target NVIDIA Ampere GDDR6 GPUs, enabling full CPU memory compromise. Enable IOMMU now.

Beginner 3.4k

News 6 min read

Oracle Launches Monthly Critical Security Patch Updates to Close Gap Between Quarterly Cycles

Oracle's new monthly CSPU program begins May 28, 2026, delivering targeted critical-severity fixes on the third Tuesday of non-quarterly months to accelerate patching.

Intermediate 302

News 7 min read

CISA CI Fortify: Critical Infrastructure Must Survive Weeks of Isolation

CISA's CI Fortify initiative requires critical infrastructure operators to sustain operations for weeks to months in isolation from IT networks and third-party vendors, citing Volt Typhoon threats.

Beginner 2.7k

News 6 min read

DAEMON Tools Supply Chain Attack Deploys QUIC RAT Backdoor

Hackers trojanized DAEMON Tools versions 12.5.0.2421–12.5.0.2434 since April 8, 2026, deploying a multi-stage QUIC RAT backdoor to thousands of systems in 100+ countries.

Intermediate 729

News 10 min read

India SEBI Issues Mythos AI Red Alert to Financial Sector

India's SEBI ordered 19 classes of regulated entities to overhaul cybersecurity posture immediately, citing Anthropic's Mythos AI vulnerability-discovery capabilities.

Intermediate 4.3k

News 7 min read

Quasar Linux (QLNX): Rootkit and PAM Backdoor Targeting Developer Credentials

Trend Micro discovered QLNX, a stealthy Linux RAT with LD_PRELOAD rootkit, kernel eBPF component, and PAM backdoor that steals AWS, npm, PyPI, and Kubernetes credentials from developers.

Intermediate 2.7k

News 9 min read

Taiwan High-Speed Rail TETRA Hack Halts Four Trains Using Cheap SDR

A student used a $30 SDR to spoof TETRA emergency signals and halt four Taiwan High Speed Rail trains for 48 minutes. Full technical breakdown and what OT operators must do now.