Latest Articles

Mustang Panda Turns Its Gaze on Indian Banks: Espionage Dressed as Help Desk Support
Data Breach

Mustang Panda Turns Its Gaze on Indian Banks: Espionage Dressed as Help Desk Support

China’s Mustang Panda APT — also tracked as TA416, Bronze President, or Stately Taurus — is best known for adaptable tradecraft and a steady focus on geopolitical intelligence collection. In its most recent campaign, researchers tied to Acronis observed the group shifting some of that attention toward India’s financial sector. The attacks are notable less for technical sophistication than for persistence: relatively unsophisticated lures and a tried-and-true DLL sideloading technique delivered a bespoke backdoor, LotusLite, that was superficially tailored to…

Continue reading
Comment and Control: How GitHub Comments Became a New Prompt-Injection Threat

Comment and Control: How GitHub Comments Became a New Prompt-Injection Threat

Anthropic’s MCP Design Flaw: How a Protocol-Level Vulnerability Enables Remote Code Execution at Scale

Anthropic’s MCP Design Flaw: How a Protocol-Level Vulnerability Enables Remote Code Execution at Scale

Apple’s Leadership Shift: Tim Cook to Executive Chairman, John Ternus Named CEO

Apple’s Leadership Shift: Tim Cook to Executive Chairman, John Ternus Named CEO

Anthropic and Amazon Expand Partnership, Securing Up to 5GW of Compute for Claude

Anthropic and Amazon Expand Partnership, Securing Up to 5GW of Compute for Claude

How Attackers Abuse Microsoft Teams and Quick Assist: Inside the Helpdesk Impersonation Playbook

How Attackers Abuse Microsoft Teams and Quick Assist: Inside the Helpdesk Impersonation Playbook

Lovable AI App Builder Reportedly Exposes Thousands of Projects' Source Code and Customer Data

Lovable AI App Builder Reportedly Exposes Thousands of Projects' Source Code and Customer Data

Anthropic’s Mythos and the New Era of AI-Accelerated Cyber Risk

AI Agents and Frameworks Leave a comment
Anthropic’s Mythos and the New Era of AI-Accelerated Cyber Risk

Anthropic’s new Mythos model has crystallized a fear many in security have quietly harbored: advanced, cyber-focused AI can find software flaws faster than people and, in some cases, generate the exact exploits to weaponize them. That capability promises major defensive benefits—accelerating the discovery and remediation of long-hidden vulnerabilities—but it also hands would-be attackers automated, scalable tools that could outpace the

Continue

Windows 11 Dev Build 26300.8170 Brings Clearer Secure Boot Visibility and Bigger FAT32 Drives

Azure, Cloud Computing, Microsoft Leave a comment
Windows 11 Dev Build 26300.8170 Brings Clearer Secure Boot Visibility and Bigger FAT32 Drives

Microsoft’s latest Windows 11 Insider Preview for the Dev Channel, build 26300.8170, focuses on practical visibility and storage usability rather than flashy new features. For security-minded users and administrators, the standout change is a revamped Secure Boot display in Windows Security that finally gives clear, at-a-glance information about firmware-level protections and certificate health. Complementing that, the build addresses long-standing storage

Continue

New RDP Alert After April 2026 Security Update Warns of Unknown Connections

Cybersecurity, Hacking and Exploits, Microsoft, Server and Virtualisation Leave a comment
New RDP Alert After April 2026 Security Update Warns of Unknown Connections

Microsoft’s April 2026 Patch Tuesday introduced a small-looking but important change to how Windows handles Remote Desktop (.rdp) files. What used to be a silent, one-click experience can now surface clear warnings about unknown connections and requested local resource access, closing an easy door attackers have been exploiting for phishing and session hijacking. For organizations and individual users alike, the

Continue

Microsoft Teams Desktop Update Breaks Launch for Some Users After Caching Regression

Azure, Compliance and Privacy, Microsoft Leave a comment
Microsoft Teams Desktop Update Breaks Launch for Some Users After Caching Regression

A subset of Microsoft Teams desktop users found themselves unable to launch the application after a recent service update introduced a caching regression. Affected clients became stuck on the loading screen, displaying an error that advised users to refresh, and could not complete the app’s startup sequence. Microsoft has acknowledged the incident and moved to roll back the update while

Continue

Google’s Gemini AI Stops Malicious Ads at Scale — Inside the 2025 Ads Safety Results

Artificial Intelligent Leave a comment
Google’s Gemini AI Stops Malicious Ads at Scale — Inside the 2025 Ads Safety Results

Threat actors are increasingly using generative AI to create convincing, large-scale advertising scams, and traditional keyword filters have struggled to keep up. In response, Google integrated its Gemini AI models into its ad-safety systems, allowing the company to analyze vast behavioral and account signals in real time and block threats before they reach users. The change marks a notable shift

Continue

Recently Leaked Windows Zero-Days Now Being Actively Exploited: What You Need to Know

Cybersecurity, Hacking and Exploits, Microsoft Leave a comment
Recently Leaked Windows Zero-Days Now Being Actively Exploited: What You Need to Know

Threat actors have begun abusing three recently disclosed Windows vulnerabilities to escalate privileges and interfere with Microsoft Defender, shifting a theoretical disclosure debate into a real-world security crisis. A security researcher known as “Chaotic Eclipse” (also called “Nightmare-Eclipse”) released proof-of-concept exploit code for all three flaws earlier this month, and multiple security teams have since observed the techniques used in

Continue