News
Latest cybersecurity news — hacks, breaches, vulnerabilities, regulatory moves
Prompt Injection Is Officially the #1 AI Risk — OWASP’s 2026 Agentic Top 10 Explained
OWASP keeps prompt injection at LLM01 and adds an Agentic Top 10 for 2026. A plain-English tour of the risks that matter.
AI SecurityAgentic AI Hits Production in 2026 — and MCP + A2A Just Rewrote the Threat Model
The Model Context Protocol and Agent-to-Agent orchestration turned AI from a chatbot into an autonomous operator. Your threat model has to follow.
NewsGoogle API Keys Remain Active After Deletion
A security researcher discovered the API keys can still be used for 23 minutes after deletion, even though the cloud provider claims…
NewsFirst VPN Dismantled in Global Takedown Over Use by 25 Ransomware Groups
Authorities in Europe and North America have announced the dismantling of a criminal virtual private network (VPN) service used by criminal actors…
NewsGhostwriter Targets Ukraine Government Entities with Prometheus Phishing Malware
The Belarus-aligned threat actor known as Ghostwriter (aka UAC-0057 and UNC1151Ukraine's National Security and Defense Council) has been observed using lures related…
NewsMegalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows
Cybersecurity researchers have disclosed details of a new automated campaign called Megalodon that has pushed 5,718 malicious commits to 5,561 GitHub repositories…
NewsMaking Vulnerable Drivers Exploitable Without Hardware – The BYOVD Perspective
1 Introduction This article provides a technical analysis of how many Windows kernel mode drivers can be interacted with from user mode…
NewsKimwolf DDoS Botnet Operator Arrested in Canada Over DDoS-for-Hire Attacks
The U.S. Department of Justice (DoJ) on Thursday announced the arrest of a Canadian man in connection with allegedly operating a distributed…
NewsDrupal Vulnerability in Hacker Crosshairs Shortly After Disclosure
Drupal is warning users that it has already seen attempts to exploit CVE-2026-9082 and security firms are seeing attacks against thousands of…
NewsIn Other News: Industrial Router Exploitation, CISA KEV Nomination Form, Gas Station Hacking
Other noteworthy stories that might have slipped under the radar: CISA contractor exposes credentials, Mythos testing and new features, Huawei router flaw…