Учёные получили устойчивую пространственно-временную структуру в материале, похожем на основу дисплеев.

Жесткие требования чиновников заставят разработчиков скрывать лучшие решения от пользователей.

Amazon и Roku уже все поняли, а LG и Samsung не спешат запрещать скрытые прокси в своих магазинах.

МРТ + ЭЭГ = идеальный детективный инструмент.

Valve объяснила, почему новые мини-ПК стоят так дорого.

НИУ ВШЭ и Positive Technologies наградили проекты молодых учёных по оценке последствий кибератак.

Чем надёжнее защита, тем опаснее в ней ошибка...

StrikeShark атакует по всему миру, а кто за этим стоит — загадка.

Злоумышленники взломали компанию и обнаружили, что внутри уже кто-то есть.

Google, Франция и Германия похоронили статью 88b, которая могла избавить от надоедливых окон.

А если вы женщина, вам не повезло вдвойне.

Искусственный интеллект начнет оценивать возраст пользователей по строению лица.

Купцы из Месопотамии думали, что надежно спрятали свои секреты, но тут пришли люди с рентгеном.

Обновление сломало компьютер? В KB5095093 это уже не катастрофа, а дело трех кликов.

Реагирование на инцидент: что можно и что нельзя делатьАнтон Кутепов: «Если ты во время инцидента пытаешься понять, что тебе сделать — ты уже проиграл.

Жизненный цикл АСУ ТП — в среднем 7 лет.

Но в ближайшие годы ИИ войдёт и в мониторинг: он будет не только анализировать инциденты, но и предусматривать риски и угрозы».

Денис Назаренко: «Требования бизнеса и обеспечения безопасности заставят команды ИТ, ИБ и АСУ ТП интегрироваться, что приведёт к качественному росту понимания процессов и выстраиванию проектов по защите АСУ ТП.

ВыводыЗащита АСУ ТП требует комплексного подхода, который начинается не с закупки оборудования, а с признания проблемы и выстраивания системной работы.

Astra Linux Server — защищённая операционная система, одна из ключевых редакций Astra Linux Special Edition (запись в реестре отечественного ПО № 369 от 08.04.2016).

Для их устранения в Astra Linux Server 1.8 встроен комплекс средств защиты, направленных также на противодействие актуальным классам угроз, включая zero-day-атаки.

Профили в Astra Linux Server 1.8Уровни защищённостиУровень защищённости для каждого элемента информационной системы выбирается в зависимости от актуальных угроз безопасности.

Архитектурные особенности Astra Linux Server 1.8Astra Linux Server представляет собой классический Linux-дистрибутив.

Завершение миграции на Astra LinuxЛицензирование, техподдержка Astra Linux S…

С другой стороны, AD была самодостаточной и не требовала установки сторонних утилит.

AD — основной инструмент управления пользователями (в том числе мобильными и удалёнными) и их группами в среде Windows.

Как и в других службах каталогов, здесь реализованы централизованные идентификация и аутентификация пользователей.

Он существенно ужесточает требования к системам идентификации и аутентификации пользователей и распространяется не только на госструктуры, компании с госучастием и подведомственные организации.

Быстрее и эффективнее реализовывать такие проекты совместно с вендорами и интеграторами, которые помогают подобрать решение под конкретные задачи и внедрить его.

Суть в том, что вместо написания кода система работает через описание логики: нужно в понятном виде задать, что именно должно происходить и в какой последовательности.

Ева Беляева: «Но точно No-Code / Low-Code технологии в Security Vision позволяют создавать цифровые продукты без необходимости писать код с нуля, экономя месяцы разработки.

Как выглядит конструкторРассмотрим на примере, как работает конструктор и с чего начинается работа с данными, которые поступают в систему.

Обработка результатов в Security VisionТакой же подход применяется и в сценариях взаимодействия с конечными системами.

По итогам стажировки у специалистов формируется понимание того, как устроены продукты, как они разра…

Теперь объектом взлома становятся не только серверы и базы данных, но и алгоритмы, которые принимают решения.

Model Inversion и Extraction (кража модели или восстановление данных из её памяти)Эти атаки направлены не на манипуляцию поведением модели, а на кражу самой модели или восстановление конфиденциальных данных из её памяти.

При грамотном подходе это ускоряет работу, при небрежном — уводит чувствительные данные туда, где бизнес их не видит и не контролирует.

Игнорирование Федерального закона № 152-ФЗ, отраслевых стандартов, требований к защите персональных данных и коммерческой тайны добавляет юридическое измерение к техническим и репутационным последствиям.

Необходимо разграничение пра…

Мы рассматриваем ИБ шире и не ограничиваемся выполнением рабочих задач.

Например, сам ресурс расположен на домене .com, а не на официальном российском адресе.

Поэтому человек после атаки несколько дней «не в себе» и не может толком вспомнить подробности произошедшего.

Для этого нужна понятная линия консультаций, простые правила остановки и выработанная привычка задавать вопросы ИБ превентивно, а не после получения ущерба.

Современная поверхность атаки проходит не только через инфраструктуру и сетевой периметр, но и через внимание, страх и доверие человека.

Simple2FA — универсальная система двухфакторной аутентификации для обеспечения безопасного удалённого доступа к корпоративным ресурсам.

Функциональные возможности Simple2FAСистема Simple2FA обладает следующими ключевыми функциональными возможностями:Централизованное управление пользователями, группами, лицензиями и политиками аутентификации через единую веб-консоль администратора.

Гибридная архитектура, обеспечивающая локальную проверку первого фактора аутентификации и облачную обработку второго фактора без передачи паролей во внешнюю среду.

После успешной проверки первого фактора локальный модуль инициирует процедуру подтверждения второго фактора через облачный модуль Simple2FA.

Настройка …

Сегодня безопасность зависит не только от защищённого канала связи, но и от контроля пользователя, устройства и его действий.

Сегодня он является одним из ключевых элементов информационной безопасности, поскольку именно через удалённые подключения злоумышленники нередко пытаются получить доступ к внутренней инфраструктуре организации.

Однако защищённый канал не гарантирует безопасность, если злоумышленник получил доступ к учётной записи сотрудника или использует скомпрометированное устройство.

Контроль устройства как элемент безопасностиОдним из ключевых трендов последних лет стал переход от проверки пользователя к проверке устройства, с которого осуществляется подключение.

В зависимости от…

Их решения активно внедрялись на протяжении последних лет и воспринимались не как узкие инструменты балансировки, а как комплексные платформы.

Влияние балансировщика на ИТ-инфраструктуру и организационные процессыВнедрение балансировщика влияет не только на техническую архитектуру, но и на структуру эксплуатации ИТ-ландшафта.

Это воспринимается не только как формальное требование, но и как признак того, что продукт уже прошёл внедрения и имеет подтверждённую практику использования.

В итоге сравнение идёт не только по характеристикам продукта, но и по тому, насколько он вписывается в текущую архитектуру и компетенции команды.

Поэтому современные балансировщики всё чаще используются как элеме…

В этом нет ничего удивительного: оборудование, в котором применяются встраиваемые системы, рассчитано на длительный срок службы.

Они применяются и в ИТ- и сетевом оборудовании, что позволило решить ряд давних технических проблем.

В целом требования к техническим специалистам в этой области высоки: необходимо сочетание компетенций в ИТ и в конкретных отраслях, для которых разрабатываются решения.

Та же проблема характерна и для других сегментов, включая NGFW, почтовые серверы и ряд других решений.

Количество потенциальных заказчиков невелико, при этом разработка АСУ ТП, как и NGFW, требует значительных времени и ресурсов.

SafeTech CA — это центр сертификации корпоративного уровня от компании SafeTech Lab.

Осознавая эти вызовы, российская компания SafeTech Lab, входящая в состав SafeTech Group, разработала корпоративный центр сертификации SafeTech CA.

Встроенные инструменты позволяют импортировать шаблоны и сертификаты из Microsoft CA и заменить зарубежный сервис без остановки бизнес-процессов.. Встроенные инструменты позволяют импортировать шаблоны и сертификаты из Microsoft CA и заменить зарубежный сервис без остановки бизнес-процессов.

Поддерживаемые SafeTech CA протоколыПротоколы, по которым может работать центр сертификации SafeTech CA:MS-WSTEP (Microsoft WS-Trust X.509v3 Token Enrollment Extensions).

Дл…

Михаил Кадер, архитектор ИБ, UserGateСтанислав Погоржельский пояснил, что облачные инфраструктуры делятся на IaaS, PaaS и SaaS — от этого зависят зоны ответственности провайдера и клиента.

Во втором опросе зрители ответили, какую роль ИБ играет при выборе облачного провайдера в их компании:ИБ проверяет провайдера перед финальным решением — 32 %.

Михаил Захряпин различает безопасность провайдера и безопасность пользователя.

За счёт этой цепочки работы провайдера можно попытаться закрыть разрыв на границе ответственности клиента и провайдера, вытащив часть экспертизы на свою сторону».

ВыводыПубличные облака — это зрелая и во многом безопасная среда, но только при условии, что клиент не перекл…

Функциональные возможности Kaspersky Threat Intelligence PortalЗадача Kaspersky Threat Intelligence Portal — обеспечить специалистов по информационной безопасности (ИБ) контекстом угроз.

Портал включает несколько сервисов, которые обогащают и усиливают друг друга: Kaspersky Threat Data Feeds, Kaspersky Threat Lookup, Kaspersky Digital Footprint Intelligence, Kaspersky Threat Analysis, Kaspersky Threat Intelligence Reporting, Kaspersky Threat Infrastructure Tracking.

Чтобы получить полную видимость угроз на всех этапах их формирования, в «Норникеле» внедрён процесс киберразведки, в техническую составляющую которого входит и комплекс решений Kaspersky Threat Intelligence: Kaspersky Threat Int…

В этой статье расскажем о способах ИИ-фишинга (в т. ч. с использованием дипфейков и клонирования голоса), методах распознать угрозу и предотвратить её.

Эта тенденция коснулась и России: согласно исследованию компании «Информзащита», около 80 % фишинговых атак на отечественные компании в 2025 году содержали ИИ-компоненты.

Эволюция фишинга под влиянием искусственного интеллектаСовременные генеративные модели значительно усиливают эффективность и масштаб фишинговых атак: искусственный интеллект позволяет злоумышленникам автоматизировать и масштабировать кампании.

Это ускоряет подготовку атак и снижает их стоимость, особенно против систем, полагающихся на устаревшие паттерны мошенничества.

Нейр…

Другой вариант задачи, в котором в рюкзак можно положить не более одного экземпляра предмета каждого типа, называется рюкзак 0-1.

Однако не для любого рюкзачного вектора A задача является трудной.

Рюкзачная криптосистема Шора-РивестаСуществуют различные варианты криптосистем на основе задачи об укладке рюкзака.

Позднее была предложена рюкзачная криптосистема Шора-Ривеста, которая будет рассмотрена далее.

Буду рад, если подпишетесь на мой профиль на Хабре и на личный блог: там я публикую свои статьи, проекты, новости и заметки об интересных технологиях.

Технически оказалось трудно надежно отличать пользователей по гражданству, и в итоге доступ к модели просто остановили.

От редкого металла к фабрикеДо появления Mythos у уязвимостей был один «недостаток»: их, конечно, много, но их очень трудно найти.

Представьте: с появлением Mythos множество исторических уязвимостей и уязвимостей цепочек поставок, скрытых в открытом коде, могут быть обнаружены одновременно.

Они есть в опыте профессиональных экспертов по нападению и защите и в долгосрочно накопленных данных.

Исторически 360 была одной из компаний с самым большим числом найденных внешних уязвимостей и входила в число лидеров в мире.

Я получил это прекрасное письмо:«Доступ запрещён», хотя на самом деле нетПосле регистрации я попытался перейти на fdp.fifa.org — FIFA Football Data Platform.

Доступ запрещён, уходите, не на что тут смотреть.

Я это не тестировал и не передавал ничего на конечные точки RTMP, но инфраструктура для этого уже была готова.

Но у FIFA не было ни программы баг-баунти, ни security.txt, ни публичных контактов по вопросам безопасности.

Попытка 2: WhatsAppЯ нашёл в LinkedIn Себастьяна Рунге (главу Football Technology & Data в FIFA, 14 лет в организации).

В этой статье мы поговорим о том, почему опасно доверять секреты контейнерам, рассмотрим, как упорядочить работу с секретами в Kubernetes с помощью системы управления секретами и какие встроенные инструменты в этом помогают.

За счет этого хранилище секретов не работает как пользовательская нагрузка Kubernetes и не зависит от состояния Pod, пространств имен и пользовательской плоскости кластера.

В выбранной схеме секреты не создаются как Kubernetes Secret и не попадают в etcd: приложение получает их напрямую из StarVault через CSI-том или инжектор.

В StarVault в основном все делается через API.

StarVault-wrapper синхронизирует только явно выбранные пути KV v2 и не заменяет резервное копирова…

Раньше у Docker была другая имплементация в виде команды docker sandbox в Docker Desktop, с нее все начиналось.

Несколько месяцев назад картина была другая: когда я ставил sbx в macOS в феврале 2026-го, требовалась именно Tahoe (версия 26).

Команда проверяет бинарь CLI, daemon, версии, состояние директорий и аутентификации, умеет выводить данные в JSON и в Markdown для репорта в issue Docker.

Claude, упершись в закрытый домен, не уходит в retry loop и не пытается обойти политику.

Заметка про устаревшую имплементацию: у docker sandbox в Docker Desktop был флаг--bypass-host , который выводил конкретные домены из MITM-инспекции прокси.

Сразу оговорюсь: Chaos — это не замена Signal и не “готовый безопасный мессенджер”, а open-source pet-проект, на котором я разбираюсь, как E2EE-системы устроены изнутри.

Зачем я продолжаю этим заниматься (я безработный)Изначально я хотел просто разобраться, как работают X3DH и Double Ratchet.

Главный вывод в том, что E2EE — это не отдельный crypto-service и не одна функция в коде.

Но важно: это не значит, что сервер “ничего не знает вообще”.

Что всё ещё слабое местоЧтобы не создавать лишних иллюзий, вот что я сам пока считаю незавершённым.

Ошибки возможны, и не нужно бояться их совершать.

После этого скрипт каждые пять секунд проверяет состояние ВМ и ждет полного выключения.

Пользователь, от имени которого запускается скрипт, должен иметь права на чтение каталогов ВМ и запись в директорию резервного копирования.

Чем больше виртуальные машины и медленнее диск, тем дольше будет выполняться резервное копирование.

ЗаключениеМы подготовили инфраструктуру для резервного копирования нашей лаборатории: выделили отдельный диск для хранения бэкапов, оценили необходимый объем хранилища и автоматизировали процесс с помощью PowerShell.

Платформенный подход — это способ перестать «внедрять ИИ» как разрозненные эксперименты и начать управлять ИИ как корпоративной инфраструктурой — с понятными правилами, SLA, безопасностью, метриками и тиражированием практик.

В результате масштабирование стопорится не на «умности моделей», а на управляемости.

И это уже не единичная задача — это постоянная работа.

Это не аргумент не использовать открытый код, но в промышленной эксплуатации он требует платформенной дисциплины, иначе риск и стоимость растут нелинейно.

Практический критерий «платформенности» здесь простой: если ваша доработка живет только в виде разницы к исходникам — это не доработка, это будущий долг.

В этой статье мы рассмотрим, как браузер, наконец, снимает с нас бремя очистки данных (sanitizing) благодаря новому HTML API Sanitizer .

❯ Новый HTML Sanitizer APIВеб-платформа теперь включает новые API, которые делают парсинг и обезвреживание HTML более безопасным.

Аналогией может служить валидация ввода пользователя на клиенте для лучшего UX и его валидация на сервере для бизнес-логики и безопасности.

ref.current.textContent = html; } }, [html]); return ; } const CommentSection = () => { const [comments, setComments] = useState([]); const handleSubmit = (userInput: string) => { // 1.

Пользователи обычно пишут контент в текстовых редакторах и вставляют его, перетаскивая огромный, некоррект…

Сегодня хочу поговорить об одной из самых обсуждаемых тем последних лет — использовании AI в пентесте.

Когда большинство специалистов слышат про AI в кибербезопасности, они представляют примерно такой сценарий:— Найди мне уязвимости на сайте.

В opencode видим, как модель начинает думать, после чего выполняет именно то, что мы попросили:Теперь посмотрим что в этот момент происходит на сервере.

Сегодня мы рассмотрели использование AI со стороны атакующей команды, но не будем забывать, что AI столь же эффективен и для синей команды.

А наша задача быть готовым и начать изучение и внедрение AI в свои процессы прямо сейчас.

В предыдущих публикациях я уже рассказывал, зачем вообще появился Browser Policy Manager, почему я начал с Firefox Enterprise Policies и почему не стал делать «просто генератор policies.json ».

Здесь я хочу разобрать, как Browser Policy Manager устроен внутри на версии 0.8.8.

Что такое Browser Policy Manager техническиBrowser Policy Manager — это веб-приложение на FastAPI для создания, проверки, редактирования и выгрузки профилей корпоративных политик Firefox.

Например, слева держать All settings, справа JSON-редактор, а в отдельной вкладке — сравнение с эталонным профилем.

Что получилось к 0.8.8Если коротко, 0.8.8 — это версия, в которой Browser Policy Manager стал похож не на набор экрано…

Подробно разбирать протокол я не буду - это уже сделали в подробной статье самой Amnezia про AmneziaWG 2.0, лучше там и прочитать.

Диапазоны H1-H4 , например, не должны пересекаться и не должны попадать в зарезервированные значения, иначе соединение просто не встанет.

Если скорость просела, загляните в top - если одно ядро в потолок и много времени висит в %si (это обработка сетевых прерываний), значит уткнулись в CPU, а не в канал, и лечится это сервером пободрее, а не настройками.

Делит каскад по IP назначения, по адресам, а не по доменам, и отсюда растут его нюансы.

Такое чинится, на это есть тесты - и поэтому у меня дома оно заводится с первого раза и работает месяцами без присмотра.

В этом дайджесте собрали открытые уроки, статьи и курсы по Linux, Docker, Kubernetes, CI, PostgreSQL, сетям и безопасности.

Linux, безопасность и инцидентыДля тех, кто работает с серверами, контейнерами, защитой инфраструктуры и разбором сбоев: от продвинутого администрирования Linux до IDS/IPS, техник перехвата управления и SRE-практик.

В подборке — статьи по Linux, Docker, Kubernetes и CI: про лимиты файловых дескрипторов, сетевые уровни, self-service деплой, securityContext и автоматизацию проверок.

Подойдёт разработчикам, системным администраторам и тестировщикам с опытом в ИТ и базой по Linux или Windows.

Подходит сетевым инженерам, архитекторам и специалистам по сетевой безопасности, …

Если в поведении пользователей прослеживались определенные паттерны, в систему поступали алерты.

Хотя если бы оператор видел сразу все нарушенные пользователем правила, он мог бы принять другое решение.

Далее мы анализируем результаты работы операторов по найденным кейсам и на их основе повышаем точность модели.

Если бы он не кричал «Волки!» по поводу и без, а изучил следы и заранее расставил ловушки, история закончилась бы иначе.

Как не дать превентивной очереди разрастись до тех же размеров, что и старая система алертов?

Агентство по кибербезопасности и защите инфраструктуры США (CISA) призвало владельцев устройств FortiGate срочно сменить учетные данные и усилить защиту.

По обновленным данным, кампания FortiBleed затронула 86 644 брандмауэра и VPN-шлюза в 194 странах мира.

Изначально исследователи сообщали примерно о 73 000 скомпрометированных устройств, однако позднее специалисты SOCRadar увеличили оценку до 86 644.

После успешного взлома злоумышленники получали возможность перехватывать проходящий через устройство трафик и собирать новые учетные данные для дальнейших атак.

При этом представители Fortinet заявили, что обнаруженная база, вероятно, объединяет информацию, собранную в ходе прошлых инцидентов,…

В Nintendo of America подтвердили, что злоумышленники похитили данные из стороннего сервиса TinyPulse, который компания использовала для внутренних опросов сотрудников.

При этом подчеркивается, что инфраструктура самой Nintendo не пострадала, и атака не затронула информацию клиентов и платежные данные.

Злоумышленники утверждали, что получили конфиденциальные данные сотрудников Nintendo of America и потребовали у компании выкуп в размере 2 млн долларов США.

«Системы Nintendo не были скомпрометированы, и никто не получил доступ к персональным данным клиентов и финансовой информации», — заявили в компании.

Позже хакеры уточнили, что взлом действительно не затронул игровую инфраструктуру Ninten…

Срок идет не на годы, а на месяцы», — говорится в совместном заявлении.

Представители спецслужб подчеркивают, что ИИ заметно снижает порог входа для злоумышленников, повышает скорость, масштаб и сложность хакерских атак, а также сокращает время между обнаружением уязвимости и началом ее эксплуатации.

В частности, интеграция ИИ в ИБ-процессы помогает раньше обнаруживать уязвимости, повышать качество кода, выявлять аномальную активность и быстрее реагировать на инциденты.

Главный тезис документа заключается в том, что риски в области ИБ больше нельзя считать исключительно технической проблемой.

Отдельно спецслужбы предупреждают об опасности устаревших систем, а неподдерживаемое ПО в документе…

Разработчики FFmpeg исправили уязвимость PixelSmash, обнаруженную в декодере MagicYUV.

При этом Plex оказался защищен от проблемы PixelSmash, так как использует собственную сборку FFmpeg, где большинство декодеров отключено, а также используется строгий список разрешенных форматов.

Однако представленный специалистами эксплоит требует отключения ASLR, так как сама по себе уязвимость CVE-2026-8461 не позволяет обойти защиту.

В Nextcloud отказались выпускать отдельное исправление, так как проблема находится в стороннем компоненте FFmpeg.

Исследователи предупреждают, что поверхность атаки PixelSmash огромна, так как декодер MagicYUV входит в состав сотен проектов, которые передают FFmpeg недове…

«Коммерсант» со ссылкой на собственные источники на телеком-рынке сообщает, что власти обсуждают новые ограничения для SIM-карт M2M и eSIM, которые должны усложнить их использование в мошеннических схемах и спам-обзвонах.

В частности, M2M-карты могут выделить в отдельную категорию, запретить для них голосовую связь и SMS, а их владельцы будут должны проходить дополнительную идентификацию.

По данным источников издания, соответствующие поправки могут войти в третий пакет мер по борьбе с мошенничеством.

Однако такие карты поддерживают и обычные услуги связи, и этим пользуются организаторы массовых обзвонов.

Их хотят лишить голоса и SMS, чтобы они работали только по прямому назначению», — говор…

Злоумышленники атакуют уязвимость в WordPress-плагине Gravity SMTP, который установлен примерно на 100 000 сайтах.

Уязвимость получила идентификатор CVE-2026-4020 (5,3 балла по шкале CVSS) и затрагивает Gravity SMTP версии 2.1.4 и ниже.

Разработчики плагина устранили уязвимость с выходом версии 2.1.5, еще в марте 2026 года.

Плагин Gravity SMTP помогает отправлять и отслеживать письма через сторонние сервисы, поддерживая интеграции с Amazon SES, Google, Mailjet, Resend, Zoho и другими провайдерами.

Специалисты рекомендуют администраторам немедленно обновить Gravity SMTP до версии 2.1.5, а также проверить логи веб-сервера и поискать в них обращения к уязвимому эндпоинту, особенно с параметром…

Центральным элементом новой системы должен стать Отраслевой технологический удостоверяющий центр (ОТУЦ), который будет выдавать российским разработчикам сертификаты для подписи кода.

Также параллельно собственные сертификаты подписи кода разрабатывает Национальный удостоверяющий центр Минцифры.

Ситуацию с сертификатами подписи кода осложняет то, что Sectigo и DigiCert прекратили выдавать и продлевать такие сертификаты российским компаниям еще в 2022 году.

В Windows и Android пользователи смогут добавить сертификат вручную, а на платформах Apple установка подписанного неизвестным способом приложения потребует режима разработчика.

Отказ от проверки подписи, в свою очередь, упростит проведение…

Зап­рос в Repeater мож­но редак­тировать как угод­но, но обра­ти вни­мание на шес­терен­ку рядом с кноп­кой отправ­ки.

Ес­ли пыта­ешь­ся про­вес­ти ата­ку HTTP request smuggling типа TE.CL, смысл опе­рации в том, что­бы спря­тать один зап­рос в теле дру­гого.

Тог­да жер­тва порежет зап­рос на две час­ти по раз­меру Content-Length и обра­бота­ет оба.

Что­бы перек­лючить­ся с HTTPS на HTTP и обратно, как и поменять порт, кли­кай на каран­даш над «Инспек­тором» в пра­вой час­ти экра­на.

Если уяз­вимость есть, вто­рая отправ­ка завер­шит завис­ший POST-зап­рос к / 404 , и в отве­те вер­нется:HTTP / 1.

ИБ-специалисты обнаружили уязвимость в Squid, популярном кеширующем прокси-сервере с открытым исходным кодом.

Из-за этого указатель выходил за границы буфера, а Squid воспринимал найденные там данные как имя файла, копировал их и возвращал клиенту.

Поэтому разработчики Squid классифицируют эту уязвимость как угрозу со стороны доверенного клиента, хотя поддержка FTP в Squid включена по умолчанию.

При этом обычный HTTPS-трафик атака не затрагивает, так как при использовании CONNECT-туннеля Squid не имеет доступа к его содержимому.

Однако уязвимость может раскрыть незашифрованные HTTP-запросы, а также HTTPS-трафик в конфигурациях, где Squid расшифровывает его для инспекции.

Специалисты Microsoft предупреждают о проблеме, которая возникает после установки июньских обновлений для Windows.

При окончательном удалении файла из «Корзины» система показывает в окне подтверждения не исходное имя объекта, а его внутреннее служебное название (например, $Rxxxxx.ext).

Так, в список пострадавших вошли Windows 11 версий 26H1, 25H2, 24H2 и 23H2, Windows 10 22H2, а также Windows 10 Enterprise LTSC 2021, LTSC 2019 и LTSB 2016.

Как объясняют в Microsoft, файлы не переименовываются на самом деле, и в «Корзине» по-прежнему отображаются их настоящие имена, а в случае восстановления объекты возвращаются на прежнее место с исходным названием.

Стоит отметить, что это не единственная п…

Как сообщили в компании, впервые подозрительная активность была замечена 12 июня 2026 года.

Подчеркивается, что данные, хранившиеся непосредственно на платформе, в результате инцидента не пострадали, и атака затронула только сторонние интеграции.

После обнаружения атаки специалисты Klue отозвали скомпрометированные учетные данные и токены, удалили посторонний код и отключили затронутые интеграции.

Позже участники Icarus признали, что стоят за атакой на Klue, а информация о взломе появилась на сайте группы.

Теперь хакеры угрожают опубликовать украденную информацию, если представители Klue и ее клиентов не начнут переговоры.

В операции приняли участие правоохранительные органы Нидерландов, Канады, США и Германии при поддержке Европола и Евроюста.

В общей сложности специалисты очистили 14 971 зараженный WordPress-сайт и отключили 106 серверов и доменов, которые использовали хакеры.

Они удаляли с зараженных ресурсов вредоносный код и бэкдоры, а также рекомендовали владельцам сайтов сменить учетные данные, включить многофакторную аутентификацию, удалить подозрительные учетные записи и убедиться, что CMS обновлена до последней версии.

Напомним, что в прошлом году в рамках операции «Эндшпиль» были отключены более 1000 серверов, связанных с Rhadamanthys, VenomRAT и Elysium.

Также в прошлые годы операция затрагивала и…

Вредонос распространяется через USB-накопители и создан для кражи криптовалюты.

Вместо традиционного установщика и управляющих серверов малварь, получившая название CryptoBandits, разворачивает на машине жертвы портативный клиент Tor и связывается с управляющими серверами через .onion-сервисы.

После этого малварь ищет на накопителе документы популярных форматов — DOC, XLSX и PDF.

Помимо этого, малварь делает пять скриншотов каждые 10 секунд и отправляет их своим операторам через Tor с помощью curl.

Среди характерных признаков — активность wscript.exe и cscript.exe, неожиданные запуски PowerShell, cmd.exe и curl, соединения с localhost:9050, а также использование Tor.

warning Под­клю­чать­ся к машинам с HTB рекомен­дует­ся с при­мене­нием средств ано­ними­зации и вир­туали­зации.

Он поз­воля­ет ата­кующе­му узнать, какие служ­бы на хос­те при­нима­ют соеди­нение.

На пер­вом про­изво­дит­ся обыч­ное быс­трое ска­ниро­вание, на вто­ром — более тща­тель­ное ска­ниро­вание, с исполь­зовани­ем име­ющих­ся скрип­тов (опция -A ).

Под­робнее про работу с Nmap читай в статье «Nmap с самого начала.

Осва­иваем раз­ведку и ска­ниро­вание сети».

Исследователи Qianxin XLab обнаружили неизвестный ранее ботнет AryStinger, который уже заразил более 4000 устаревших роутеров по всему миру.

Но возможности AryStinger не ограничиваются только поиском новых целей и проксированием вредоносного трафика.

Еще 31,8% приходится на Китай, 6,4% — на Швецию, 3,5% — на Малайзию и 2,5% — на Сингапур.

Одна версия написана на C и в основном атакует устаревшие роутеры, тогда как другой вариант, написанный на Go, нацелен на NAS.

Также в отчете подчеркивается, что распределенную инфраструктуру AryStinger в теории можно использовать и для генерации огромного числа DNS-запросов к резолверам.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday warned of active exploitation of a critical security flaw impacting Lantronix EDS5000 Series devices, urging Federal Civilian Executive Branch (FCEB) agencies to apply the fixes by June 26, 2026.

This allows attackers to inject arbitrary OS commands into the username parameter.

The security flaw was disclosed by Forescout Research Vedere Labs in April 2026 as part of a broader set of vulnerabilities collectively codenamed BRIDGE:BREAK that impacted serial-to-IP converters from Lantronix and Silex.

CVE-2026-34910 - An improper access control vulnerability that could allow a malicious actor with access to the network …

A coordinated law enforcement operation, in partnership with private sector companies, including Bitdefender, Bitsight, ESET, and Microsoft, has resulted in the takedown of criminal infrastructure powering Amadey and StealC.

In addition, as many as 27 million stolen login credentials have been recovered, and the malware distribution network has been hindered by dismantling 326 servers and 142 domains.

SocGholish and Amadey function as loaders for introducing next-stage malware, with the malware primarily disseminated using compromised WordPress sites and phishing campaigns, respectively.

Like Amadey, StealC has been actively maintained by its operators.

Daily trend in the number of active A…

Cybersecurity researchers have flagged a new class of CI/CD workflow weakness that allows attackers to hijack workflows and compromise open-source supply chains.

The issue can allow full attacker control of repositories at dozens of the largest organizations worldwide, including Microsoft, Google, Apache, and Cloudflare.

"No org membership or special privileges; a free account is enough to forge approvals, push code, or steal credentials."

However, because an untrusted PR can trigger privileged workflows, it can open the door to command injection, privilege escalation, and supply chain compromise.

"The nature of agentic coding means these CI/CD vulnerabilities are reproduced persistently, a…

The trigger was the emergence of frontier agentic models in early 2026: AI entities that no longer just suggested code, but actively tested it.

Taking the tactical high ground (Layer 2 and below)The agentic adversary wins on information asymmetry.

Illuminating the unknown: Agentic models can swiftly hunt for rogue access points, forgotten IoT devices, and shadow IT that lack security coverage.

Agentic models can swiftly hunt for rogue access points, forgotten IoT devices, and shadow IT that lack security coverage.

While most organizations are still scanning for the tracks of yesterday’s hunters, a new breed of agentic adversary is already circling.

The U.S. Department of Justice (DoJ) on Tuesday announced the seizure of a cloud computing account put to use by subsidiaries of Cambodia-based corporate conglomerate HuiOne Group, as the Treasury unveiled fresh sanctions against nine individuals and 26 entities linked to Prince Group.

"HuiOne Guarantee also provided escrow services for criminals transacting on its platforms to facilitate transactions, including money launderers laundering cryptocurrency," the DoJ said.

"In doing so, HuiOne Guarantee facilitated the movement of considerable funds stolen by Southeast Asian scam centers."

It's worth noting that FinCEN designated HuiOne Group as a "primary money laundering concern" in May 2025…

Threat actors have begun to exploit a recently disclosed critical security flaw impacting Cisco Unified Communications Manager (Unified CM) and Unified Communications Manager Session Management Edition (Unified CM SME).

"This is currently being exploited from a single source using an unvetted PoC, with genuinely-formatted file:// file-write payloads landing on our decoys," it noted.

However, for successful exploitation to occur, the WebDialer service must be enabled.

If immediate patching is not an option, it's advised to disable the WebDialer service until a fix can be applied.

Cisco has yet to update the advisory to reflect the exploitation status.

A Russian-speaking initial access broker (IAB) driven by financial gain is assessed to be behind a large-scale credential-harvesting operation known as FortiBleed that has targeted over 430,000 FortiGate firewalls globally.

Central to the operation is a Golang-based tool called FortigateSniffer that takes advantage of the FortiOS built-in diagnostic command -diagnose sniffer packet to passively capture authentication traffic from the infected appliances.

The tool is designed to monitor traffic across 24 protocols, parse authentication data, and extract the credentials.

Interestingly, another open-source framework called CyberStrikeAI was put to use in connection with another automated mass …

Security firm AIR built a fake AI agent skill, pushed it through a popular skill marketplace and an Instagram ad, and says it reached roughly 26,000 agents, including some on corporate accounts.

The skill, named brand-landingpage, claimed to build a landing page using Google's Stitch design tool, aimed squarely at non-technical users.

For the stars, it opened a pull request to a skill marketplace repository with around 36,000 stars and 156 skills.

Why the scanners missed itThe scanners AIR tested analyze the package you hand them: the SKILL.md and the files shipped with it.

Real campaigns have used the same trick for months, keeping the submitted skill clean and hosting the payload on a sit…

President Trump signed an executive order on June 22 setting hard deadlines for federal agencies to move high-value assets and high-impact systems to post-quantum cryptography.

The order describes that risk directly and pulls the government's PQC timeline forward by four to five years.

Within 30 days, each agency head names a PQC migration lead who reports to the agency CIO and owns the cryptographic inventory and migration plan.

NIST runs a pilot migration on a subset of its own systems, to be finished by December 31, 2027.

OMB's 90-day guidance and the FAR rules will decide whether 2030 and 2031 become real procurement pressure or just another federal migration target that slips once the …

Effective June 18, 2026, the latest version of "actions/checkout," the official GitHub action for checking out a repository into the workflow's runner, refuses common pwn request patterns by default.

"Actions/checkout v7 refuses to fetch fork pull request code in pull_request_target and workflow_run workflows (the latter only when workflow_run.event is a pull_request* event)," it added.

"Pull_request_target" is a workflow trigger that's automatically run without requiring manual approval when a pull request is opened or reopened, or when the head branch of the pull request is updated.

"This change only blocks checkouts of the fork pull request head and merge commits," it added.

Checking out…

Offensive AI is the moment the weapon learns to aim itself.

If your trade is offensive work, this is the ground you now stand upon.

A further implication is that the limitations of unskilled attackers are now defined by the capabilities of their chosen AI models rather than their own expertise.

The SANS Secure AI Blueprint, authored by SANS Chief AI Officer Rob T. Lee, divides the wider challenge into three tracks: Protect AI, Utilize AI, and Govern AI.

Learn Offensive AI at SANS San Antonio 2026This August, I will take up these questions in depth during my SEC535: Offensive AI – Attack Tools and Techniques course run at SANS San Antonio 2026.

Cybersecurity researchers have discovered a set of malicious npm packages that are designed to deliver a Windows-based remote access trojan (RAT).

"Aes-decode-runner-pro and postcss-minify-selector-parser both present themselves as layered AES/custom-codec packages and depend on the legitimate postcss-selector-parser," JFrog said in an analysis.

As for "postcss-minify-selector-parser," the name is a reference to "postcss-selector-parser," a widely used npm library with more than 127 million weekly downloads.

The packages come embedded with a JavaScript dropper that writes a PowerShell script ("settings.ps1") to disk and executes it.

The RAT is equipped to gather host information, siphon cre…

Direct messages sent via WhatsApp are being used to distribute malicious Visual Basic Script (VBScript) files that lead to the installation of legitimate Remote Monitoring and Management (RMM) software.

The heavily obfuscated VBScript files are dressed up as seemingly harmless business and financial documents, using names like "Financial Reports.vbs" or "Account Statement.vbs."

"In addition, the VBScript samples contain extensive comments and metadata intended to mimic legitimate Microsoft Windows Update components," Kaspersky explained.

The VBScript file is launched using "WScript.exe," which then fetches and runs additional VBScript components required for the next stages of the attack.

I…

OpenAI on Monday said it's releasing an improved version of its GPT‑5.5‑Cyber model to trusted defenders as part of the Daybreak initiative, the artificial intelligence (AI) company announced last month.

OpenAI is also launching a new initiative called Patch the Planet in partnership with Trail of Bits to help secure open-source projects.

AI models come with capabilities to navigate large codebases, reason through attack paths, and flag security issues that might have otherwise stayed hidden.

"Threat actors with limited technical expertise can use publicly available AI models for malicious purposes," the Canadian Centre for Cyber Security said in guidance released in May 2026.

"Success will…

Multiple WordPress plugins from ShapedPlugin were compromised in a supply chain attack after unknown threat actors managed to tamper with the official release channels and push backdoor code.

"Attackers compromised the vendor's build and distribution pipeline, injecting backdoor code into Pro plugin releases distributed through official licensed update channels," Wordfence said in an analysis published last week.

The incident affects the following plugins -Product Slider Pro for WooCommerce (versions before 3.5.4)Real Testimonials Pro (version 3.2.5)Smart Post Show Pro (versions before 4.0.2)As mentioned above, it's worth emphasizing that the compromise only affects Pro plugin builds distri…

The group distinguishes itself through a mature, operator-maintained set of endpoint detection and response (EDR) killers, i.e., tools for disrupting security software.

In this blogpost, we share our findings on Gentlemen’s suite of EDR killers gained through extensive research and corroborated by the recent leak.

Third‑party EDR killers (HexKiller, ThrottleBlood, and HavocKiller) are operationally integrated.

Rather than relying on affiliates to source their own EDR killers, Gentlemen operators actively develop and maintain a portfolio of EDR killers for affiliates.

It allows the Gentlemen operators to integrate abused drivers into their toolset very soon after an EDR killer PoC is disclos…

Of course, connecting production systems to enterprise networks delivers tangible benefits, but the security implications – that systems once safe were suddenly no longer so – arrived more quietly.

Start by mapping which systems in an environment are connected and have no security coverage, where IT and OT networks intersect, which segments are unmonitored, and which production systems have fallen outside any vendor support agreement.

Meanwhile, off-the-peg security tools often don’t efficiently meet the enterprise requirements in legacy OT systems that run on older hardware and outdated operating system versions.

The production systems running that version continue to operate for years, ac…

Key points of this blogpost: We discovered two previously undocumented Windows variants of FishMonger’s SprySOCKS backdoor.

Technical analysisIn this section, we provide a technical analysis of these new, Windows variants of FishMonger’s SprySOCKS backdoor.

Figure 3. klelam00007.bat setting up persistence for the SprySOCKS backdoor (newlines added for readability)Figure 4 depicts the execution chain of the SprySOCKS WIN_DRV variant.

It contained the SprySOCKS backdoor and the SprySOCKS loader.

6490B8E4AADE25A3EE2D A9A47F312DB2122470BC X1B5206BDC1 743DD.dat Win64/SprySOCKS.A Encrypted container of the encrypted WIN_DRV variant of SprySOCKS backdoor, encrypted SprySOCKS RawWNPF and SprySOCKS …

Instead, attackers get the victim to complete a legitimate authentication process – including two-factor authentication (2FA) – on a real Microsoft login page.

What makes EvilTokens dangerousThe OAuth device code flow was designed for devices that may be awkward to sign into directly, such as smart TVs or printers.

No document, invoice, email, or another platform should ask for a device code without a clear reason.

A real Microsoft page doesn’t automatically make a request safe.

Sometimes the attacker could ask them to enter a real code on a real page – but for the wrong device.

During this period, the Vietnam-aligned OceanLotus adopted a more selective approach to external operations while placing increasing emphasis on domestic espionage.

We identified two distinct campaigns involving the SPECTRALVIPER backdoor: a supply-chain attack targeting stock investors in Vietnam and a prolonged espionage operation against a Vietnamese infrastructure and transport construction company.

The domain resolved to the genuine IP address of the FireAnt update server, suggesting a supply-chain compromise scenario.

LTD 2025‑09‑20 SPECTRALVIPER C&C server.

]com IRT‑CHOOPALLC‑AP 2025‑09‑20 SPECTRALVIPER C&C server.

But that realization alone clearly doesn’t prepare them to withstand an attack.

Have the repeat victims come to view their brushes with cyber-incidents as proof of “what doesn’t kill me makes me stronger”?

For all the talk around AI, automation and attacker sophistication, many SMB breaches still begin with a familiar opening.

A total of 71% of SMBs globally now carry cyber insurance, rising to 84% in North America, with adoption climbing sharply among repeat victims.

While “when, not if” has never been more true, that alone doesn’t prepare a business for adversity.

There’s a phrase that is peddled out by governments and companies alike when a catastrophe of any type – including a cybersecurity breach – occurs: “Lessons have been learnt”.

The 130% increase in significant incidents between 2024 and 2025 severely challenges this assertion and points to lessons not being learnt, at a macro level.

In fact, this reluctance to look could also be normalcy bias quietly doing its work.

That is why this metaphor matters – cybercriminals discover the gap between what an organisation believes about its security and what the reality is.

We must accept that normalcy bias exists and act upon it.

Our kids are exposed to many of the same identity, privacy, and data security risks as their parents.

Why do people want my kids’ data?

But when they do finally flag fraud, the impact on your child’s credit history can be severe.

Apply for a credit freeze for your child’s identity with all three major credit bureaus.

Keeping your child’s identity safe should not be about restricting their digital world.

Here's some of what caught Tony’s attention in May 2026:Poland’s Internal Security Agency (ABW) has released information about cyber-intrusions into ICS (industrial control systems) at five water treatment facilities in the country in 2024 and 2025.

The two main attack vectors – weak passwords and systems exposed directly to the internet – were the same as those used in attacks against the Polish energy sector that leveraged DynoWiper described by ESET researchers here.

What are some key mitigation steps against attacks targeting OT systems?

How do scams crypto ATMs work and how to stay safe?

Learn this and more in Tony's video and be sure to check out the April 2026 edition of Tony's month…

ESET APT Activity Report Q4 2025–Q1 2026 summarizes notable activities of selected advanced persistent threat (APT) groups documented by ESET researchers from October 2025 through March 2026.

During the monitored time frame, China-aligned threat actors remained highly active worldwide, conducting espionage campaigns shaped in part by geopolitical developments affecting Beijing’s economic and security interests.

The war in Iran that began in late February 2026 was the defining event for Iran-aligned activity during this period.

Russia-aligned threat actors continued to focus overwhelmingly on Ukraine and entities connected to the country’s defense efforts.

Intelligence shared here is based m…

Alongside a number of freely available AI chatbots, major technology companies have moved into consumer-facing health AI with the launches of services such as Copilot Health, ChatGPT Health, and Amazon’s HealthAI that models help users interpret their medical records and ask questions about their symptoms, lab results and treatment options.

Misuse of AI chatbots in general is now the number one health technology hazard out there, according to one US patient safety organization.

Your health data is not like a stolen credit card that can be frozen while the details are replaced and reissued.

Even so, people should be cautious: health data is unusually sensitive, and anonymization doesn’t alwa…

Our recent review of threat detections in Brazil surfaced BTMOB, an Android remote access trojan (RAT) that is less notable for detection volume than for the damage it can wreak.

BTMOB at a glanceFirst described in February 2025, BTMOB has evolved from the SpySolr malware.

BTMOB APK creation toolHow does BTMOB spread?

For example, researchers Johnk3r and Merl recently spotted campaigns that spread BTMOB while impersonating Argentina’s tax and customs authorities.

ESET products detect the primary tool as MSIL/BtmobRat, while related Android variants trigger detections such as Android/Spy.Agent.EED, Android/Spy.Agent.EIJ and Android/Spy.Agent.EIK.

Many soccer fans may still be hunting for tickets, merchandise, travel and hospitality packages – and scammers know exactly how to exploit this demand.

]shop, uses a domain that looks close enough to FIFA and the 2026 World Cup to catch a hurried visitor.

Fake site impersonating the official FIFA World Cup 2026™ websiteThe trickery doesn’t stop there, however.

Official FIFA World Cup 2026™ websiteBut back to the fake website – here’s what happens if you want to “purchase” tickets or merchandise.

The countdown to the World Cup gives criminals a ready-made audience: countless people hunting for tickets, merchandise and various last-minute opportunities.

Discord and Microsoft Graph API C&C communicationIn 2025, Webworm started abusing Discord and Microsoft Graph API for C&C communication.

]com/anjsdgasdf/WordPress, which acts as a file stager for other tools and malware used by Webworm (one such tool used the compromised Amazon S3 bucket mentioned above).

WormFrpWormFrp is a proxy tunneling tool inspired by the existing fast reverse proxy (frp) utility that Webworm also uses.

ChainWormChainWorm is another custom proxy tool used by Webworm operators.

FilesSHA-1 Filename Detection Description CB4E5043333670738142 9707F59C3CBE8D497D98 SearchApp.exe WinGo/Agent.ZK EchoCreep backdoor using Discord for C&C.

Operation Endgame, the largest international law enforcement operation aimed at disrupting ransomware and cybercrime infrastructure across the world, has claimed its latest targets: StealC and Amadey.

Law enforcement and private sector partners, including Microsoft and Proofpoint, coordinated action against the infrastructure delivering both threats.

“During this action, 326 servers and 142 domains were actioned by law enforcement and the private sector partners, severely crippling the malware’s distribution network,” Europol stated.

Law enforcement has also managed to identify and freeze over 41 million euros (approximately 47 million US dollars) in related crypto assets.

Microsoft’s threa…

An Algerian national accused of running online marketplaces that sold phishing kits and fraud tools has been extradited from Spain to the United States to face bank fraud conspiracy charges.

Belmili was extradited to the United States on June 18 and appeared before a federal judge in Buffalo, New York.

““The FBI identified the individual behind this alleged cyber fraud scheme, followed the evidence across international borders, secured his extradition, and brought him to the United States to face justice,” concluded Dunford.

“Huione Guarantee also provided escrow services for criminals transacting on its platforms to facilitate transactions, including money launderers laundering cryptocurre…

Anthropic introduced an agent identity model for Claude Tag, its AI assistant designed for team collaboration in shared workspaces.

The model gives Claude its own identity, permissions, and tool access, configured by administrators and tied to a workspace or channel.

(Source: Anthropic)Assigning permissions to ClaudeAdministrators assign Claude a dedicated identity with a default set of permissions, tools, and connections that apply throughout a workspace.

How channel identities are isolatedClaude Tag uses separate identities for private channels, while public channels share a workspace-wide identity.

Under this model, Claude could perform an action only when both the channel’s permissions …

Healthcare technology company Xsolis confirmed that a phishing attack resulted in unauthorized access to its network.

The company develops AI-powered software for hospitals, health systems, and health plans and serves more than 600 hospitals and health insurers.

“On January 22, 2026, Xsolis became aware of unauthorized activity impacting a limited portion of the Xsolis environment resulting from a targeted phishing attack on January 20, 2026,” Xsolis said.

Xsolis also noted that it reported the incident to law enforcement, implemented additional security measures, and is notifying potentially affected individuals by mail.

Xsolis is the third healthcare technology company to disclose a cyber…

SuperOps and Guardz announced a strategic partnership, combining their platforms into a single bundled offering for managed service providers (MSPs).

The package brings professional services automation (PSA), remote monitoring and management (RMM), mobile device management (MDM), and agentic security operations into one purchase.

Guardz runs security operations.

The partnership connects the two so that operational data and security data sit in one foundation.

The companies say it costs less than traditional multi-vendor stacks and combines core IT and security operations capabilities in one package.

CVE-2026-20230, a server-side request forgery (SSRF) vulnerability affecting Cisco’s Unified Communications Manager (Unified CM), is being exploited to drop webshells and achieve remote code execution capability on the underlying server.

“Our honeypots are seeing automated sweeps dropping webshells, all via Tor,” threat intelligence firm Defused warned today, after observing initial attacks over the weekend.

CVE-2026-20230 was reported to Cisco by an independent security researcher working with SSD Secure Disclosure.

Earlier this year, attackers exploited CVE-2026-20045, a code injection vulnerability in Cisco enterprise communications products (including Unified Communications Manager), in…

LastPass disclosed that attackers used OAuth tokens compromised in a supply chain attack on Klue, a market intelligence platform that integrates with CRM and sales tools across organizations, to access customer data stored in its Salesforce environment.

According to LastPass, the exposed data included standard business contact information and CRM records, including customer names, phone numbers, email addresses, physical addresses, support case information, and sales-related records.

After discovering the breach, LastPass revoked employee access to Klue, rotated the exposed API tokens, and launched an investigation with Klue and Salesforce.

Klue breach triggers security vendor disclosuresLa…

Google’s Alert Center, a dashboard in the Google Admin console that displays security and administrative alerts and helps administrators identify, investigate, and respond to issues affecting their organization, is expanding the “Super Admin password reset” alert into the “Admin password reset” alert.

Monitoring password changes for all admin roles provide a higher level of oversight to respond more quickly to potential account compromises or unauthorized changes,” Google said.

Expanded visibility for privileged accountsPreviously, this alert was triggered only when a super admin’s password was reset.

The Alert Details page for an Admin password reset alert provides a summary of the activit…

Qodo has announced three new platform capabilities: Cross-Repo Code Review, Custom Rules Miner, and Skill Review Standards.

When teams encode standards as Agent Skills, but those skills aren’t connected to the review process, reviews stay generic and disconnected from the standards teams have already defined.

Cross-Repo Code Review: Catching what single-repo review missesAs engineering organizations scale, the most consequential bugs are rarely contained within a single repository.

Qodo now provides centralized management for skills that contain code review instructions, coding standards, and engineering best practices.

With skill-level controls, analytics, and attribution, engineering orga…

Brinqa BYOAI (Bring Your Own AI), a capability that enables organizations to connect any AI agent, large language model (LLM), or automation platform to Brinqa’s exposure intelligence layer.

As enterprises adopt AI, they need to ensure that AI systems use accurate, up-to-date risk data.

BYOAI connects existing AI tools to a common source of exposure intelligence, providing a consistent foundation for analysis and decision-making.

Without a common intelligence layer, AI systems often operate on fragmented data, creating inconsistent priorities, slower coordination, and reduced confidence in outcomes.

Our role is to provide the trusted exposure intelligence that powers better decisions across…

Cequence Security has announced the launch of Intent Graph and Biometric Check, two new capabilities that extend the behavioral architecture Cequence has built since its inception.

“The Intent Graph tells you what a user, bot, or AI agent is actually doing on your application, regardless of how it got there.

Cequence’s Intent Graph blocked every iteration, without any CAPTCHA, puzzle, or client challenge being shown to legitimate customers.

Biometric Check is also the first bot verification mechanism that makes the enterprise’s actual false positive rate measurable rather than estimated.

“Building effective bot defence for MCP and agentic commerce requires institutional knowledge that most …

Secure Code Warrior has introduced its new SCW AI Adoption Model, a practical framework that maps the progression of AI use in software development, from minimal AI assistance to fully autonomous agentic orchestration.

AI adoption is no longer confined to engineering: non-developer employees building applications with no-code and vibe coding tools still contribute to an organization’s risk profile.

The SCW AI Adoption Model organizes AI development into three phases: AI-Assisted, AI Native, and Agentic.

Their security skills need to evolve from code writer to creator & orchestrator,” said Pieter Danhieux, Secure Code Warrior CEO.

With the SCW AI Adoption Model, organizations can:

DigiCert has announced it is bringing independent trust validation to confidential computing environments, in collaboration with Google Cloud.

By applying the proven principles of Public Key Infrastructure (PKI) to cloud infrastructure, DigiCert will provide cryptographic verification that cloud-hosted systems and workloads are authentic, trusted, and untampered.

Acting as a neutral third-party root of trust, DigiCert uses cryptographic signatures, certificates, and identity validation to independently attest that workloads and computing environments hosted in Google Cloud are operating even more transparently.

Developed through a year-long collaboration between DigiCert and Google Cloud, t…

In this interview with Help Net Security, Jorge Aldegunde, Global Head of Railway Services at DNV, talks through what happens when old operational technology meets newer IT in monorail systems.

However, the point is well noted: railway applications would traditionally piggyback on vendor-specific SCADAS and dedicated communication systems (SDH-PDH).

New horizontal regulation (CRA, NIS2) paves the way for accountability, and yet the issue remains adoption and stakeholder harmonization and clarity in complex railway contracts.

Maybe this is a good angle of attack – railway cybersecurity practitioners usually come from “related” rail disciplines (safety, signalling, communications).

Vigilance …

Praxen is an open-source tool with a simple job: it checks whether an AI agent does what it claims to do.

It is the reference implementation of Agent Behavior Verification, a control model that hands each agent an authorized role and then confirms the controls hold that agent to it.

Praxen runs before deployment and on each release.

One policy across the agent lifecycleRuntime monitoring sits in a separate layer called Agent Behavior Analytics.

“Over time, we expect them to become increasingly connected as part of a broader Behavior Intelligence strategy for AI agents,” Wilson said.

Anthropic’s Fable 5 Model Jailbroken Within DaysFable 5 is the supposed safe version of Anthropic’s Mythos Preview, with guardrails to ensure that it can’t be used to create cyberattacks.

Well, that restriction was bypassed within days.

Posted on June 23, 2026 at 7:03 AM • 4 Comments

Wearables present serious privacy issues for “Average Joe” consumers, who are entrusting tech companies to safely store and protect their biometric data.

Imagine the stakes for a professional athlete, whose entire livelihood could be affected by a single biometric data point.

The coach has access to the player’s wearable data, and checks to see when they went to sleep, as well as what their heart rate looked like during the night.

What if wearable data reveals that a player isn’t as speedy as they were before, and a team uses that data against the player during contract negotiations?

What if a wearable reveals a player is favoring their leg, or is at greater risk of injury?

About Bruce SchneierI am a public-interest technologist, working at the intersection of security, technology, and people.

I've been writing about security issues on my blog since 2004, and in my monthly newsletter since 1998.

I'm a fellow and lecturer at Harvard's Kennedy School, a board member of EFF, and the Chief of Security Architecture at Inrupt, Inc.

This personal website expresses the opinions of none of those organizations.

Anthropic’s Fable and the State of AIOn June 9th, Anthropic released its Fable generative AI model.

Fable is the constrained version of Mythos, the AI model Anthropic announced in April.

Fable is just another incremental improvement in the years-long climb of AI capabilities.

But just as important as the AI model is the “harness.” This is typically not AI.

To an AI model, constraints are just things to get around and not general truisms about the world.

At least one malware developer is adding text about nuclear and biological weapons to their spyware, in an effort to stop automatic AI analysis.

Details:The _index.js payload begins with a large JavaScript block comment containing fake system instructions and policy-triggering content.

The real malware begins after the comment with a try{eval(…)} wrapper around a large character-code array and a ROT-style substitution function.

In weak pipelines, this can cause refusal behavior, prompt confusion, context pollution, or premature classification before the scanner reaches the actual malware.

YARA rules, entropy checks, AST parsing, string extraction, deobfuscation, and behavioral rules still w…

The office of management and budget (OMB) disclosed a staggering 3,611 active or planned use cases for AI across the federal government.

The Department of Energy is testing the use of AI to control nuclear reactors, targeting a way to autonomously respond to potential nuclear safety incidents.

In some cases, like the HHS system, the AI might be enforcing alignment to a policy prescription that opponents abhor.

The use of predictive methods and statistics to assign prisoner security classifications goes back decades, even if such systems are often biased and ineffective.

What matters are the details of how the AI system is used, and here the inventory is severely lacking.

About Bruce SchneierI am a public-interest technologist, working at the intersection of security, technology, and people.

I've been writing about security issues on my blog since 2004, and in my monthly newsletter since 1998.

I'm a fellow and lecturer at Harvard's Kennedy School, a board member of EFF, and the Chief of Security Architecture at Inrupt, Inc.

This personal website expresses the opinions of none of those organizations.

A proposed FCC rule would kill burner phones: phones whose accounts are not attached to a particular person.

The FCC plans to do this by legally forcing the country’s telecoms to store a wealth of personal information about essentially all phone customers, including a government issued identification number and their physical address, alarming privacy advocates and civil rights activists who compare the measures to those from authoritarian countries where it can be difficult to buy a mobile phone plan without giving up your identity.

The proposed change would drastically shake up how people obtain phone plans in the U.S., and have all sorts of privacy and cybersecurity knock-on effects.

The…

Upcoming Speaking EngagementsThis is a current list of where and when I am scheduled to speak:The list is maintained on this page.

Posted on June 14, 2026 at 12:07 PM • 0 Comments

Friday Squid Blogging: Squid-Inspired Fluid PumpThis fluid pump was inspired by the way squids propel themselves through the water.

As usual, you can also use this squid post to talk about the security stories in the news that I haven’t covered.

Blog moderation policy.

Posted on June 12, 2026 at 5:05 PM • 0 Comments

Bernie Sanders’ AI Sovereign Wealth Fund PlanLet no one accuse Bernie Sanders of ducking the big questions.

As to the goal of reshaping AI in the public interest, we have proposed an AI Public Option.

Apertus is a large language model built by Swiss public servants, researchers at Swiss universities, using appropriately licensed training data and pre-existing Swiss public supercomputing infrastructure powered by renewable energy.

Don’t confuse public AI with “sovereign AI“, the notion that every country needs to invest in domestic AI infrastructure.

So why is he pursuing the sovereign wealth fund strategy when he must be aware of these risks?

The surveillance company Leonardo wants more data:A surveillance company plans to add sensors to automatic license plate readers (ALPRs) that would mean the devices, as well as capture the license plate of passing vehicles, would also sweep up unique identifiers of mobile phones, wearables, and other Bluetooth-enabled devices in those cars, potentially letting law enforcement identify specific drivers or passengers.

The technology, called SignalTrace, would turn ALPR cameras from devices focused on tracking cars to ones that can more readily track the location of particular people.

ALPR cameras have become a commonly deployed technology all across the U.S.; SignalTrace would make some of th…

About Bruce SchneierI am a public-interest technologist, working at the intersection of security, technology, and people.

I've been writing about security issues on my blog since 2004, and in my monthly newsletter since 1998.

I'm a fellow and lecturer at Harvard's Kennedy School, a board member of EFF, and the Chief of Security Architecture at Inrupt, Inc.

This personal website expresses the opinions of none of those organizations.

This is interesting:The U.S. military has likely been quietly broadcasting codes for its global encryption network using public GPS for nearly 20 years, turning each satellite into a hidden “numbers station,” according to Steven Murdoch…That means every device that uses GPS has been receiving hidden government information for years, and nobody outside the military knew it until now.

[…]Murdoch discovered that this particular sentinel was transmitted by all 31 operational satellites within a window of a few hours on May 26, 2011, potentially heralding the activation of a new operational system.

He confirmed that this timeline coincided with the rollout of the military’s Over-the-Air Distribu…

The duo were key members of a prolific cybercrime group known as Scattered Spider, and their guilty pleas came on the first day of what was expected to be a six-week trial.

In April 2026, 24-year-old British national and Scattered Spider member Tyler “Tylerb” Buchanan pleaded guilty to wire fraud conspiracy and aggravated identity theft for participating in the group’s SMS phishing spree in the summer of 2022.

The government said Buchanan, Jubair and others used the credentials harvested in that phishing campaign to steal at least $8 million in cryptocurrency from victims throughout the United States.

The U.S. Department of Justice says three alleged Scattered Spider defendants indicted alo…

This week, researchers from multiple security firms concluded that the Popa botnet is linked to NetNut, a “residential proxy” provider operated by the publicly-traded Israeli firm Alarum Technologies Ltd [NASDAQ: ALAR].

Qurium said that immediately after that disruption, several dozen new domains were registered to serve as controllers for the Popa botnet, but that one of those control domains was not new: ninjatech[.]io.

Jérôme Meyer, a security researcher at Nokia Deepfield, said the total population of devices participating in the Popa botnet may be far higher than Lumen’s estimates.

“Over 90% of our pharmaceutical and food & beverage customers have queried residential proxy indicators.

…

This post examines clues pointing to a real life identity for the administrator of The Gentlemen ransomware group.

Experts at the security firm Check Point Software have been closely covering exploits of The Gentlemen, a so-called “ransomware-as-a-service” (RaaS) offering that pays affiliates handsomely to help spread the group’s malware.

According to Check Point, the group targets Internet-facing devices (VPNs, firewalls) as their entry point, and once inside moves quickly to encrypt entire networks within hours.

Check Point says the administrator and primary operator of the ransomware group uses the nickname Zeta88 on the Russian-language cybercrime forums, and that this individual was pr…

Microsoft today released software updates to plug nearly 200 security holes across its Windows operating systems and supported software, a record number of fixes for the company’s monthly Patch Tuesday cycle.

“Some surveys put AI usage among security professionals generally at 90%, so it’s unsurprising that this volume of patches may be the norm,” Narang said.

Microsoft received heavily blowback on social media last month after it said in a blog post that it was considering taking legal action against the security researcher.

While 200 vulnerabilities may be a record for Patch Tuesday, the actual number of security flaws Microsoft addressed this month is far higher, said Rapid7’s Adam Barne…

On May 31, word began to spread on several Telegram instant message channels that Meta’s AI bot would happily add an email address to an existing account as part of the bot’s standard password reset flow.

Meta has not responded to requests for comment on the video’s claims, but the company reportedly did acknowledge the dormant Instagram account for the Obama White House was briefly compromised.

Meta’s solution was to deploy a conversational AI layer to handle common recovery workflows: relinking a lost email address, triggering a password reset, verifying account ownership.

Just like human customer support employees can be social engineered into providing unauthorized access to someone’s a…

But as KrebsOnSecurity observed in September 2025, those sanctions failed to target Stark’s remaining connection to the Internet — an Internet service provider based in the Netherlands called MIRhosting.

MIRhosting is operated by Andrey Nesterenko, a 39-year-old Russian native who runs the business out of the Netherlands.

And as our September 2025 report showed, WorkTitans was controlled by Nesterenko and a 57-year-old from Amsterdam named Youssef Zinad.

On top of that, WorkTitans was getting connectivity to the larger Internet solely through MIRhosting, where Zinad had worked previously.

“The transition to the.hosting was not intended to evade sanctions,” Nesterenko wrote.

The inquiry comes as CISA is still struggling to contain the breach and invalidate the leaked credentials.

Experts who reviewed the exposed secrets said the commit logs for the code repository showed the CISA contractor disabled GitHub’s built-in protection against publishing sensitive credentials in public repos.

CISA acknowledged the leak but has not responded to questions about the duration of the data exposure.

TruffleHog does this by monitoring a live feed that GitHub publishes which includes a record of all commits and changes to public code repositories.

In practical terms, it is likely that cybercrime groups or foreign adversaries also noticed the publication of these CISA secrets, …

A criminal complaint unsealed today in an Alaska district court charges Jacob Butler, a.k.a.

“Dort,” of Ottawa, Canada with operating the Kimwolf DDoS botnet.

“KimWolf was tied to DDoS attacks which were measured at nearly 30 Terabits per second, a record in recorded DDoS attack volume,” the Justice Department statement reads.

Synthient was among many technology companies thanked by the Justice Department today, and Synthient’s founder Ben Brundage told KrebsOnSecurity he’s relieved Butler is in custody.

The DOJ said at least one of those services collaborated with Butler’s Kimwolf botnet.

Until this past weekend, a contractor for the Cybersecurity & Infrastructure Security Agency (CISA) maintained a public GitHub repository that exposed credentials to several highly privileged AWS GovCloud accounts and a large number of internal CISA systems.

Another file exposed in their public GitHub repository — “AWS-Workspace-Firefox-Passwords.csv” — listed plaintext usernames and passwords for dozens of internal CISA systems.

“The available Git metadata alone does not prove which endpoint or device was used.”Caturegli said he validated that the exposed credentials could authenticate to three AWS GovCloud accounts at a high privilege level.

CISA has not responded to questions about the p…

Artificial intelligence platforms may be just as susceptible to social engineering as human beings, but they are proving remarkably good at finding security vulnerabilities in human-made computer code.

May’s Patch Tuesday is a welcome respite from April, which saw Microsoft fix a near-record 167 security flaws.

But at the end of April, Oracle announced it was switching to a monthly update cycle for critical security issues.

Chrome automagically downloads available security updates, but installing them requires fully restarting the browser.

For a more granular look at the Microsoft updates released today, checkout this inventory by the SANS Internet Storm Center.

The stated deadline for payment was initially set at May 6, but it was later pushed back to May 12.

The May 6 update stated that Canvas was fully operational, and that Instructure was not seeing any ongoing unauthorized activity on their platform.

Instructure responded by pulling Canvas offline and replacing the portal with the message, “Canvas is currently undergoing scheduled maintenance.

Data extortion groups like ShinyHunters will typically only remove victims from their leak sites after receiving an extortion payment or after a victim agrees to negotiate.

Last month, ShinyHunters relieved the home security giant ADT of personal information on 5.5 million customers.

For the past several years, security experts have tracked a series of massive DDoS attacks originating from Brazil and solely targeting Brazilian ISPs.

The company originated from protecting game servers against DDoS attacks and evolved into an ISP-focused DDoS mitigation provider.

But so-called “DNS reflection” attacks rely on DNS servers that are (mis)configured to accept queries from anywhere on the Web.

“We received and notified many Tier 1 upstreams regarding very very large DDoS attacks against small ISPs,” Nascimento said.

Nascimento flatly denied being involved in DDoS attacks against Brazilian operators to generate business for his company’s services.

A 24-year-old British national and senior member of the cybercrime group “Scattered Spider” has pleaded guilty to wire fraud conspiracy and aggravated identity theft.

FBI investigators tied Buchanan to the 2022 SMS phishing attacks after discovering the same username and email address was used to register numerous phishing domains seen in the campaign.

That same year, U.K. investigators found a device at Buchanan’s Scotland residence that included data stolen from SMS phishing victims and seed phrases from cryptocurrency theft victims.

Buchanan is the second known Scattered Spider member to plead guilty.

Two other alleged Scattered Spider members will soon be tried in the United Kingdom.

“This CVE can enable phishing attacks, unauthorized data manipulation, or social engineering campaigns that lead to further compromise,” Walters said.

Satnam Narang, senior staff research engineer at Tenable, said April marks the second-biggest Patch Tuesday ever for Microsoft.

Narang also said there are indications that a zero-day flaw Adobe patched in an emergency update on April 11 — CVE-2026-34621 — has seen active exploitation since at least November 2025.

Adam Barnett, lead software engineer at Rapid7, called the patch total from Microsoft today “a new record in that category” because it includes nearly 60 browser vulnerabilities.

For example, a Google Chrome update released earlier t…

Hackers linked to Russia’s military intelligence units are using known flaws in older Internet routers to mass harvest authentication tokens from Microsoft Office users, security experts warned today.

The spying campaign allowed state-backed Russian hackers to quietly siphon authentication tokens from users on more than 18,000 networks without deploying any malicious software or code.

Instead, they used known vulnerabilities to modify the Domain Name System (DNS) settings of the routers to include DNS servers controlled by the hackers.

English said the routers attacked by Forest Blizzard were reconfigured to use DNS servers that pointed to a handful of virtual private servers controlled by …

Somebody had broken into Brazil's national Civil Defence alert system and used it to send fake "Extreme Alert" notifications - the most severe category, normally reserved for warnings of imminent natural disasters - to mobile phones across at least five states, including São Paulo, Rio de Janeiro, and the Federal District.

In a statement posted on social media, Brazil's National Civil Defence confirmed that it had pulled the alert platform offline at 1:30am following the compromise.

National Secretary of Protection and Civil Defence Wolnei Wolff confirmed that the attackers managed to regain access after an initial attempt to block them from accessing the system.

Emergency alert systems wor…

Hide My Email is a privacy feature that lets users create unique, random email addresses that forward messages to your real inbox.

That means you can sign-up for websites, newsletters, and apps without exposing your personal email address.

The problem is, however, that one of the reasons that Hide My Email worked so well was because its aliases were indistinguishable from regular iCloud email addresses.

All any website or app that wants to block anonymous sign-ups now has to do is to reject any email address ending in "@private.icloud.com".

For now, if you already have existing Hide My Email addresses in use, they should continue to work without any changes on your part.

Someone is pretending to be your bank, your government, or your local planning office. And according to the FTC, they're making billions doing it. Read more in my article on the Fortra blog.

Which is the connection between your AI agent and Sentry.

And when your AI agent reads data back from one of those services, it treats it as trusted and authoritative.

And so the AI agent does what agents are supposed to do.

But if an attacker can plant text somewhere that your AI agent will read, it's possible that your AI agent will act upon it, and that may not be good.

And then whenever AI wants to access something, AI has to give a reason — why do I want that?

The US state of Maine has taken its public data breach notification portal offline after someone submitted fraudulent breach disclosures impersonating two well-known technology companies.

As Bleeping Computer reported last week, fraudulent data breach disclosures were submitted to Maine's official breach portal and publicly posted before their legitimacy could be verified, prompting the named companies to deny the claims.

However, somewhat more convincing was a fake breach notice that targeted the multiplayer social virtual reality platform VRChat.

It appears that the abuse of the system was possible because the Maine data breach reporting system lacked a proper verification mechanism.

Anyo…

According to media reports, a security blunder carelessly leaked the passport details of every player in Argentina's World Cup squad ahead of Tuesday's warm-up friendly against Iceland.

But why are passport numbers on a World Cup team sheet at all?

Under FIFA regulations, teams must provide passport numbers around an hour before a match kicks off.

So the passport numbers belong in the information handed to the referee.

Before releasing any document containing sensitive data, verify that the data has actually gone - not just covered up.

Most extortion gangs hide behind a keyboard. Silent Ransom Group will phone your staff pretending to be IT support - and if that fails, send someone to your office in person to plug in a USB stick. Read more in my article on the Fortra blog.

Yeah, I've decided I should actually know something about technology after about 15 years of covering it.

This week I'm talking about helpful AI, maybe too helpful AI, which is the Meta AI, which seems to have been giving anyone who asked nicely anyone else's password.

And continuing the AI theme, I'm going to be talking about an AI worm that appears to think for itself.

I think I'm not going to cry with offense if you say that.

You're going to spend the money and you've got the money to spend.

Evanston Township High School (ETHS), located approximately 14 miles north of Chicago, says it was hit by a ransomware attack on Sunday, June 7 2026.

No ransomware group has claimed responsibility for the attack against ETHS, and it is not known if any personal data has been exfiltrated by cybercriminals.

The sad truth is that schools are attractive targets to cybercriminals.

And, as is demonstrated by the closure of ETHS, schools often rely upon networked systems for everything from the platforms used to teach pupils to providing physical access controls.

Meanwhile, schools don't just face serious threats from organised criminal gangs but also from within their own walls.

If you've ever received an out-of-the-blue message via LinkedIn from a recruiter offering some well-paid consultancy work, intelligence agencies have a message for you: be very careful.

According to the bulletin, entitled "Safeguarding Our Secrets", Chinese intelligence officers - or third parties acting on their behalf - are posing as employees of private consultancies, think tanks, and HR firms.

According to the intelligence agencies, targets do not need security clearances to be of use to Chinese spies.

Western agencies warn that just submitting a CV containing your employer history, specialist knowledge, and details of professional contacts has am intelligence value.

The Five Eyes intel…

Hackers have been hijacking Instagram accounts at scale by exploiting Meta's AI support chatbot. And, as if that weren't bad enough, the technique required no technical skill whatsoever. Read more in my article on the Fortra blog.

This AI security flaw might be impossible to fix with Graham Cluley and special guest Tanya Janca.

Yeah, I've done some work with them in the past and they're actually sponsoring this episode of the podcast.

Turns out some quiet little permission that crept wider over 3 years, a policy exception that nobody had reviewed, the kind of thing that's invisible until it isn't.

I don't know if that was also exposed on the WebBucket, but yeah, it's additional information though, isn't it?

And I used to work at the Canadian Revenue Agency, so I know they're not following the policy because I wrote it.

Dutch police have arrested a 35-year-old man suspected of hacking into the computer systems of Amsterdam football giant Ajax, after the personal data of hundreds of thousands of supporters was put at risk.

However, it quickly emerged that the claim of a "few hundred" potential victims was wide of the mark, as it was reported that the incident could have exposed the personal details of around 300,000 registered Ajax supporters.

In short, the number of supporters whose details were exposed was around 1000 times larger than the club's initial estimate.

Ajax says that it has worked with external experts to patch the vulnerabilities, and has strengthened its security.

It is easy to imagine that …

The Play ransomware gang is claiming to have stolen data from US pillow manufacturer MyPillow, making off with private and personal confidential data.

The company denies it has been hit, and the Play ransomware gang claims otherwise.

The truth is likely to emerge quickly, as the deadline for payment listed by Play on its leak portal is reached tomorrow.

We'll know soon enough whether Friday's payment deadline from the Play ransomware group brings a data dump or a quiet anticlimax.

One thing is certain - ransomware gangs target anyone they think might pay, and strong defences are needed by all organisations.

Как защитить свой аккаунт в TelegramЧто делать, чтобы защитить свой аккаунт в Telegram от подобных схем угона?

Если вы подозреваете, что стали жертвой подобного стилера или других махинаций злоумышленников, как можно скорее завершите все сессии в Telegram: Настройки → Устройства → Активные сессии → Завершить другие сеансы.

Почему так — мы подробно рассказывали в материале Что делать, если взломали аккаунт в Telegram, перечислив в нем все способы восстановления доступа к своей учетной записи.

Во-первых, необходимо установить облачный пароль для Telegram в разделе Настройки → Конфиденциальность → Облачный пароль.

Наш менеджер паролей кроссплатформенный, поэтому войти в Telegram с использовани…

Скомпрометированная версия израильского браузера Hola для Windows (1.251.91.0) загружала на устройства пользователей криптомайнер для добычи криптовалюты Monero.

Исследователи обнаружили признаки компрометации браузера Hola в рамках процесса сертификации AppEsteem Windows Certified Application.

}exe показало, что в нем скрывался криптомайнер для добычи криптовалюты Monero.

Как злоумышленники использовали Hola Browser для майнинга MoneroКриптомайнеры — это программы, которые используют вычислительные возможности компьютера для добычи криптовалюты.

Как мы уже сказали выше, в случае заражения Hola Browser на устройства жертв загружался криптомайнер для добычи криптовалюты Monero.

Ставка на проигрышВо время чемпионата мира предсказания результатов матчей и «ставки на спорт» становятся особенно популярны — чем активно пользуются злоумышленники.

Это еще и рекордные продажи коллекционной атрибутики — наклеек, шарфиков, формы сборных, официальных мячей турнира и так далее.

На скриншоте выше злоумышленники предлагают заплатить 67 евро за коллекцию наклеек, но на маркетплейсах такой же набор обойдется как минимум вдвое дороже, а на официальном сайте Panini — втрое.

Конечно, товар вы не получите и потеряете не только деньги, но и реквизиты банковской карты.

Установите Kaspersky Premium — приложение убережет вас от зловредов, фишинга, спама, переходов на вредоносные и поддел…

Фундаментальные проблемы автономного SOC: за пределами ИИХотя использование ИИ для анализа данных и принятия решений в SOC звучит как логичная и относительно несложная в реализации идея, попытка ее внедрить ставит и обостряет проблемы, с которыми организации столкнулись при внедрении SIEM, XDR и SOAR:Качество исходных данных.

Даже когда роль ИИ сводится к предварительному сбору данных и рекомендациям, аналитики зачастую не доверяют данным и тратят время на их повторный сбор и анализ.

В SOC и ИБ в целом всегда есть плохо документированная информация: бизнес-контекст, коллективные знания и другие данные, которые помогают верно оценивать оповещения и инциденты.

Проблемы ИИ, критичные для SOCКр…

Хотя она и изолирована, но записываются эти данные в итоге на тот же SSD, с которым также работают прочие программы и веб-сайты.

Оказалось, что если вредоносная страница постоянно обращается к SSD, по задержкам при доступе к данным можно определить, что еще происходит на ПК.

Допустим, на SSD имеется достаточно большой файл, наполненный случайными данными.

Комбинация всех особенностей атаки объясняет ее название: FROST расшифровывается как Fingerprinting Remotely using OPFS-based SSD Timing, то есть удаленное наблюдение над SSD с использованием технологии OPFS.

Впрочем, суть атаки FROST не в передаче данных, а в слежке за активностью пользователя.

Злоумышленники внедряют в установочные файлы игр троян удаленного доступа под названием Argamal.

Рассказываем, как не стать жертвой нового трояна — и как безопасно и максимально анонимно смотреть пикантный контент с аниме-девочками (или без).

В другой ситуации это, наверное, сложно было бы назвать неприятной характеристикой, но Argamal, к сожалению, троян не из «скорострелов».

Через три дня компьютер подключается к GitHub, скачивает зашифрованный файл, расшифровывает его и превращает в рабочий модуль трояна.

Именно поэтому мы рекомендуем хранить пароли не в текстовых файлах, а в зашифрованном контейнере менеджера паролей.

Как выявить и ограничить использование Claude и Claude CodeДетектирование: анализ на NGFW или веб-фильтре трафика к claude.ai, anthropic.com, *.anthropic.com, api.anthropic.com.

Защита: на уровне NGFW/веб-фильтра заблокировать доступ к категории «ИИ-сервисы», на уровне DNS перенаправить трафик вышеуказанных доменов Anthropic, с помощью политик браузера заблокировать различные расширения, дающие доступ к Claude.

Защита: на уровне NGFW/веб-фильтра заблокировать доступ к категории «ИИ-сервисы», на уровне DNS перенаправить трафик вышеуказанных доменов.

Защита: на уровне NGFW/веб-фильтра заблокировать доступ к категории «ИИ-сервисы», на уровне DNS перенаправить трафик вышеуказанных доменов DeepS…

У Павла Дурова и его «приватного» мессенджера появился новый конкурент, и это — барабанная дробь — Илон Маск и его сервис XChat.

Все описанные выше сложности с PIN-кодом в XChat, на самом деле, имеют под собой своеобразное основание.

Напомним, что, в отличие от WhatsApp и Signal, разработчики XChat решили хранить приватные ключи пользователей на своих серверах.

Так что в итоге с XChat?

И, конечно, хранить его, как и любые другие пароли, следует не в заметках, а в надежном менеджере паролей.

Отключение при помощи политик: в Admin Center пройти в раздел Settings → Integrated Apps, найти Copilot в списке Available Apps, выбрать Block.

Как отключить панель Copilot в EdgeДетектирование: на уровне NGFW или других сетевых журналов искать обращение к ресурсам copilot.microsoft.com, bing.com/chat, edgeservices.bing.com.

Блокировка с помощью политик: в панели управления: Apps → Additional Google services → Gemini app: OFF.

Блокировка с помощью политик: в корпоративных политиках Chrome необходимо установить: GenAILocalFoundationalModelSettings = 0, HelpMeWriteSettings = 2 (отключено), TabOrganizerSettings = 2, CreateThemesSettings = 2, DevToolsGenAiSettings = 2.

Как отключить Apple Intel…

Мы исследовали более 84 500 общественных точек доступа Wi-Fi в Мехико, Гвадалахаре и Монтеррее — и нам есть что вам рассказать об их безопасности.

Что и как мы исследовалиПройтись пешком по Мексике в поисках публичных Wi-Fi-точек было бы сложновато, хотя ради аналогичного исследования безопасности Wi-Fi в Париже мы именно так и поступили (кстати, ознакомиться с его результатами можно в материале Безопасен ли парижский Wi-Fi?).

Выяснилось, что WPS включен почти у половины (47%) точек доступа в Мехико, у 43% — в Гвадалахаре и 41% — в Монтеррее.

Поэтому наиболее безопасным вариантом станет использование сотовой связи для доступа в Интернет — и никакой Wi-Fi не понадобится.

О том, как это сдела…

Конкретные примеры современных вредоносных кампанийНесмотря на эти изменения, наши эксперты продолжают активно отслеживать новые вредоносные кампании и реагировать на современные угрозы.

Наши технологии зарегистрировали более тысячи вредоносных писем почти идентичной структуры, разосланных организациям из госсектора, строительной и промышленной отраслей, что прямо указывает на автоматизацию проводимых атак.

Примечательно, что в качестве резервного командного сервера загрузчик обращается к Solana Name Service, децентрализованному блокчейн-реестру, что существенно затрудняет блокировку инфраструктуры.

Обе группы активно применяют PowerShell-нагрузки и нацелены на российский госсектор, что ука…

Как настроить интеграцию Kaspersky Scan Engine c F5 BIG IP LTMНастройка Scan EngineKaspersky Scan Engine должен работать в режиме ICAP.

Как настроить интеграцию Kaspersky Scan Engine c NextcloudНастройка Kaspersky Scan EngineKaspersky Scan Engine должен работать в режиме HTTP.

Как настроить интеграцию Kaspersky Scan Engine c Hitachi NAS Platform 13.9Настройка Scan EngineKaspersky Scan Engine должен работать в режиме ICAP.

Как настроить интеграцию Kaspersky Scan Engine c RspamdНастройка Scan EngineKaspersky Scan Engine должен работать в режиме HTTPD.

Как настроить интеграцию Kaspersky Scan Engine c ARA JAGUAR 5000Настройка Scan EngineKaspersky Scan Engine должен работать в режиме ICAP.

В последнее время злоумышленники активно используют для фишинговых атак платформу Google AppSheet: через нее можно настроить почтовую рассылку, которая отправляется c почтового адреса, связанного с Google.

К сожалению, именно эта простота делает AppSheet привлекательным и для злоумышленников.

Ниже показано, как выглядит типичный путь от получения письма от якобы «карьерного портала Google» до кражи данных аккаунта:Аналогичные письма приходят от имени и других IT-гигантов.

Прежде всего смотрите не на отображаемое имя, а на адрес отправителя.

Куда более вероятно, что вы получите легитимную AppSheet-рассылку от имени небольшой компании или бизнеса, но уж точно не от IT-гигантов.

Поэтому неудивительно, что за прошедшие несколько месяцев исследователи кибербезопасности зафиксировали несколько случаев распространения вредоносного ПО под видом IPTV-приложений для Android.

В этом посте поговорим о том, что представляют собой IPTV-приложения, как с помощью их поддельных версий преступники распространяют вредоносное ПО, на что оно способно и, главное, как не стать жертвой.

Обычно они привлекают пользователей бесплатным или очень дешевым доступом к контенту, который может быть нелегко найти без дорогостоящих подписок — в первую очередь это трансляции различных спортивных мероприятий и, в частности, футбольных матчей.

Вместо этого поддельное приложение открывало во встроенн…

Хотя многие компании осознанно внедряют ИИ для повышения качества и эффективности, еще быстрее в них появляются ИИ-инструменты, руководством не санкционированные.

ИИ встраивают в уже применяемые компанией решения сами разработчики ПО (например, Microsoft Copilot и Gemini), а также самовольно устанавливают сотрудники.

И риски, и способы их снижения отличаются для разных видов ИИ-систем.

Мы дадим обзор этой широкой темы, сфокусировавшись на инструментах детектирования и блокировки ИИ на двух уровнях.

SalesforceВ режиме настроек (Setup) нужно воспользоваться поиском по словам connected apps и в результатах поиска нажать Manage Connected Apps.

If you’ve ever troubleshot a complex workflow run, you know the drill: click into actions, expand inputs and outputs, scan logs, backtrack, repeat.

We’ve just released Workflow Run Summaries in Cisco XDR Automate: an on-demand, AI-generated summary that explains what happened during a workflow execution, where things went wrong, and why that matters, without forcing you to manually inspect every step.

What the feature doesWith a single click on “Generate Run Summary”, Cisco XDR Automate analyzes a completed workflow run and produces a concise, human-readable explanation of its execution.

Why this matters, especially for Agentic AIAs XDR Automate Workflows are increasingly triggered by Agent…

It is the hardest attack category in email security — for any vendor, any product, any architecture.

This balance — 98% threat detection alongside zero hard false positives — is what the 94% Total Accuracy Rating reflects.

What Independent Validation Means for Your Security StrategyEvery email security vendor publishes detection rates.

Read the full report for more insight into ETD’s comprehensive email security capabilities.

All performance data sourced from the SE Labs Advanced Security Test Report — Email (Protection), Cisco Secure Email Threat Defense, May 2026 (v1.0).

Caption: MCP integrations exposed to the local AI workflow for SOC investigation contextAt this stage, the system was already useful.

Caption: OpenClaw using the local Ollama model backend instead of an external model providerThe distinction is important.

I installed DefenseClaw alongside the OpenClaw environment, to add inspection and audit visibility around the agentic AI workflow.

Sending DefenseClaw events into Splunk made the AI workflow feel more operational and less experimental.

At Black Hat Asia, this became a practical way to explore what private AI for SOC workflows could look like.

Cisco has been a long-standing partner in securing Black Hat conferences worldwide, providing the critical network infrastructure that ensures safe connectivity for all attendees.

At Black Hat Asia 2026, we continued this tradition while introducing significant enhancements to our security capabilities through innovative integrations.

Resource ConnectorCisco Secure Access Resource Connector was deployed to provide secure remote access to critical systems.

Resource Connector solves this problem by creating secure path to the target, which is accessible from public URL generated by Secure Access platform.

Check out the other blogs from our team at Black Hat Asia 2026.

As is tradition at every Black Hat conference, Day 1 winds down with a quick reality check – what’s done, what’s broken, and what absolutely needs to go live by tomorrow.

Corelight traffic and detections were already flowing into Cisco XDR using OCSF-based ingestion built at Black Hat Europe 2025.

That’s the lesson Black Hat reinforces every time:Progress accelerates when you ask the right person the right question.

Check out the other blogs from our team at Black Hat Asia 2026.

Driven by the needs of the community, Black Hat events showcase content directly from the community through Briefings presentations, Trainings courses, Summits, and more.

One of the first things we notice walking into the Black Hat NOC/SOC to help setup was that no one cared about who you worked for.

That goal being to discover and protect Black Hat from attacks both internally and externally.

High Score, Low Threat: A 60-Second Triage StoryThe new agentic capabilities in Cisco XDR were enabled in our Black Hat tenant – and they didn’t disappoint.

Check out the other blogs from our team at Black Hat Asia 2026.

Driven by the needs of the community, Black Hat events showcase content directly from the community through Briefings presentations, Trainings courses, Summits, and more.

Cisco celebrates our 10th year building and safeguarding the network for Black Hat Asia in Singapore.

We work with other official providers to bring the hardware, software and engineers to build and secure the Black Hat Asia network: Arista, Corelight, Jamf, MyRepublic and Palo Alto Networks.

Since 2017, Cisco has protected the Black Hat Asia network, beginning with automated malware analysis using Threat Grid.

Unveiling the Power of Integration: XDR, Splunk, Corelight, Arista and Palo Alto Networks in Action at Black Hat AsiaUplevelling Black Hat Threat HuntersCisco Secure Access with MCP Infrastructure at Black Hat Asia 2026The Essence of Black Hat – Collaboration with PartnersBlack Hat A…

The Black Hat server owners confirmed the Apache version was fully patched, ensuring no impact to Black Hat assets.

Cisco XDR correlated events and enriched them with Talos and other third-party threat intelligence feeds, confirming the issue and assigning priority.

An attendee was seen accessing a custom application hosted in their home country from the Black Hat network.

AI Reasoning AnalysisDrilled deeper into the AI reasoning behind the Cisco XDR storyboard findings.

Driven by the needs of the community, Black Hat events showcase content directly from the community through Briefings presentations, Trainings courses, Summits, and more.

It was designed to be useful whether you had a team of 500 security analysts or a single IT person wearing multiple hats.

The new mathBefore Mythos and other frontier large language models (LLMs), the vulnerability lifecycle had a rhythm that most security teams had internalized.

It also means you need incident response capability for when prevention fails.

When everything has been tested and still was not enough, emergency incident response is the capability that gets you from compromised to recovered.

Because they operate at a layer of the security stack that is independent of how fast vulnerabilities are discovered.

That is why I am excited to share that Cisco SASE with Meraki is now generally available.

You keep the Meraki experience you know, then connect it to Cisco Secure Access for cloud-delivered Security Service Edge (SSE) protection.

What We BuiltCisco SASE with Meraki connects Meraki SD-WAN sites to Cisco Secure Access, Cisco’s cloud-delivered SSE solution.

With Cisco SASE with Meraki, Meraki AutoVPN can automatically establish secure primary and backup tunnels between enrolled MX sites and Cisco Secure Access.

Cisco SASE with Meraki gives Meraki customers a fast, secure, and resilient approach to bring SD-WAN traffic into Cisco Secure Access.

This is the shift from access control to action control.

To move from access control to action control, Agent Gateway will help answer five questions before a request is allowed to proceed:Who is the agent?

With Agent Gateway, Cisco extends these capabilities into the agentic workflow.

Duo will identify the agent process itself using Duo identity, extending naturally from user MFA to agent and non-human identities.

Duo will identify the agent process itself using Duo identity, extending naturally from user MFA to agent and non-human identities.

Why we are changing our cadenceThe fundamental scale of vulnerability discovery has shifted.

Seven days before each release, PSIRT will publish the list of technologies and platforms included in that drop.

Cisco PSIRT will provide ‘bundled’ CVEs (Common Vulnerability Exposures) tied to CWE categories (Common Weakness Enumerations).

If a finding is being addressed in a scheduled release, upgrading should negate the need to implement corner-case mitigations that do not scale.

The Cisco PSIRT is the gold standard for vulnerability disclosure and will drive this revolution – with significantly expanded tooling and cadence built for the new rate of discovery.

The National Institute of Standards and Technology (NIST) finalized its first PQC standards in 2024.

Cisco’s Quantum Resilience FrameworkCisco has developed a framework to articulate multiple levels of quantum resilience – each representing distinct capabilities designed to respond to new and emerging threats to confidential communication and product integrity.

It gives organizations a foundation as they progress toward more complete levels of quantum resilience.

Level 3 extends quantum resilience into identity and attestation.

Together, these levels give customers a practical way to evaluate quantum resilience.

Secure agents as digital workersThe second imperative is to secure the agents now entering the enterprise.

At Cisco Live, we are taking the next step by making DefenseClaw enterprise-ready and integrating it into Cisco Secure Client.

Context provided by the network is what allows security teams to understand behavior, enforce trust, and respond with confidence across domains.

That is how Cisco is helping customers become more resilient—and helping security teams protect, detect and respond with confidence in the agentic era.

Ask a question and stay connected with Cisco Security on social media.

AI memory transforms an AI system from a stateless tool into a learning collaborator.

What AI memory is (and why it matters)AI systems use memory to retain and recall information across interactions.

Since AI memory attacks happen outside of their original context, defenses are often lower and forensics are harder.

Building safe AI memory is one of the most consequential challenges in AI.

Our AI memory strategy is guided by design principles for building safe memory systems.

Once inside, the threat actor shifted focus to persistence and control.

As DART correlated activity across the environment, investigators uncovered signs of a second, unrelated threat actor operating in parallel.

DART moved quickly to contain the active intrusion involving multiple threat actors and stabilize the environment, activating a structured response playbook focused on limiting threat actor impact and restoring control.

Continuous coordination with the customer, including daily briefings, ensured that containment actions were timely, aligned, and effective in reducing further threat actor movement.

Today’s modern cyberattacks can quickly evolve beyond a single incident-blending tac…

It does not block JavaScript that is rendered by a headless browser owned by an AutoGen agent on the same machine.

This work informs guidance for developers and detections for defenders across Microsoft Defender, Microsoft Defender for Cloud, Microsoft Entra and Microsoft 365.

Customers using Microsoft Defender, Microsoft Defender for Cloud, and Microsoft Entra can use these controls to detect, contain, and investigate related activity.

This work informs guidance for developers and detections for defenders across Microsoft Defender, Microsoft Defender for Cloud, Microsoft Entra and Microsoft 365.

Customers using Microsoft Defender, Microsoft Defender for Cloud, and Microsoft Entra can use t…

This year, Microsoft commissioned Forrester Consulting to conduct a Total Economic Impact™ (TEI) study for our AI-first, end-to-end security platform.

What end-to-end security deliversBased on in-depth interviews with a survey of 362 customers and 11 security decision-makers using Microsoft Security solutions, the Forrester study revealed the impact of consolidating with Microsoft Security.

Security for AI – New solutions like Microsoft Agent 365 with foundations of Microsoft Security, extend identity, governance, and control to AI agents, so customers can adopt them with confidence.

AI for Security – Microsoft Security Copilot, together with Microsoft Defender, Entra and Purview provides A…

Microsoft Threat Intelligence observed a large-scale npm supply chain attack affecting 140+ packages across the mastra and @mastra scopes on the npm registry.

Microsoft Defender Antivirus, Microsoft Defender for Endpoint, and Microsoft Defender XDR provide detections and hunting coverage for suspicious Node.js execution, malicious package behavior, reflective code loading, persistence activity and command-and-control communication.

The easy-day-js dependency was not present in any prior versions of mastra npm packages.

Microsoft Defender XDR detectionsMicrosoft Defender XDR customers can refer to the list of applicable detections below.

Advanced huntingThe following KQL queries can be used …

Clipper malware relies on stealing clipboard data and parsing it for valuable assets.

Additionally, Microsoft Defender Antivirus detects this crypto clipper as Trojan: Win32/CryptoBandits.A.

A file named “cfile” is created on the infected system as an output for payload hosted on the C2 domain.

Private Key extractionThe crypto clipper also detects cryptocurrency keys for both Ethereum and Bitcoin WIF.

Initial AccessT1091 Replication Through Removable MediaExecutionT1059 Command and Scripting Interpreter | EVAL-driven remote code execution from server taskingDiscoveryT1057 Process Discovery | Task Manager check used as an anti-analysis gatePersistenceT1053.005 Scheduled Task/Job | Scheduled …

This month’s set of discoveriesThe measure of any security system is what it catches.

Several findings involve high-severity remote code execution vulnerabilities in core infrastructure layers that are difficult to scrutinize using manual approaches alone.

We analyzed which pipeline stage contributed to each miss:Scan stage: 8 cases (15.4%), failed to identify the intended finding.

Bookmark the Security blog to keep up with our expert coverage on security matters.

Also, follow us on LinkedIn (Microsoft Security) and X (@MSFTSecurity) for the latest news and updates on cybersecurity.

This month’s set of discoveriesThe measure of any security system is what it catches.

Several findings involve high-severity remote code execution vulnerabilities in core infrastructure layers that are difficult to scrutinize using manual approaches alone.

We analyzed which pipeline stage contributed to each miss:Scan stage: 8 cases (15.4%), failed to identify the intended finding.

Bookmark the Security blog to keep up with our expert coverage on security matters.

Also, follow us on LinkedIn (Microsoft Security) and X (@MSFTSecurity) for the latest news and updates on cybersecurity.

We are excited to share that Microsoft has been named a Leader in The Forrester Wave™: Extended Detection and Response Platforms, Q2 2026.

Microsoft also received the highest possible scores across the current offering criteria of identity detection, cloud detection, SIEM replacement, Threat Intelligence, Threat hunting, Administrative controls, and Training.

Microsoft Threat Intelligence is built on a broad vantage point, analyzing 100 trillion signals each day.

Microsoft Security Copilot alert triage agent: Security Copilot agents in Defender help security operations center (SOC) teams investigate faster, automate response, and prioritize high-risk cyberthreats.

Also, follow us on LinkedI…

We are excited to share that Microsoft has been named a Leader in The Forrester Wave™: Extended Detection and Response Platforms, Q2 2026.

Microsoft also received the highest possible scores across the current offering criteria of identity detection, cloud detection, SIEM replacement, Threat Intelligence, Threat hunting, Administrative controls, and Training.

Microsoft Threat Intelligence is built on a broad vantage point, analyzing 100 trillion signals each day.

Microsoft Security Copilot alert triage agent: Security Copilot agents in Defender help security operations center (SOC) teams investigate faster, automate response, and prioritize high-risk cyberthreats.

Also, follow us on LinkedI…

See how Microsoft unifies identity and security signals to help teams prevent, detect, and respond to AI-accelerated attacks faster.

The post AI is accelerating cyberattacks—here’s how to stay ahead appeared first on Microsoft Security Blog.

Microsoft publishes quarterly email security benchmarking data comparing Microsoft Defender against secure email gateway (SEG) and integrated cloud email security (ICES) vendors using real-world threat telemetry.

Key insights from a year of email benchmarkingWith four consecutive quarters, several findings have proven to be durable insights, highlighting the sustained realities of how layered email security performs in production:1.

Below are some of the most recent highlights, that we directly attribute to the continued improvements in Microsoft Defender performance.

Security Copilot’s Email Summary further speeds investigations by turning email detection data into clear, actionable insigh…

First, ASSERT turns a broad behavior specification into an explicit concept specification, which is then converted into a granular, editable behavior taxonomy with suggested permissible and impermissible behaviors.

Next, it generates stratified test cases over the dimensions the developer declares.

The taxonomization step outputs an editable behavior taxonomy that can be validated by a policy expert.

The policy citation refers to the specific taxonomy behavior or developer-provided policy decision that the judge used to support the verdict.

ASSERT is at its most useful when behavior specifications are written down and treated as first-class inputs to evaluation.

Here, threat actors may simply seed prompt injections on websites in hope of corrupting AI systems that browse them.

Early experiments revealed a significant volume of "benign" prompt injection text, which illustrates the complexity of distinguishing between functional threats and harmless content.

Many prompt injections were found in research papers, educational blog posts, or security articles discussing this very topic.

(Source: GitHub/swisskyrepo)When searching for prompt injections naively, the majority of detections are benign content – false positives in our case.

Malicious: ExfiltrationWe were able to observe a small number of prompt injections that aim at theft of data.

Recognizing the risks associated within the complex modem firmware, Pixel 9 shipped with mitigations against a range of memory-safety vulnerabilities.

Following our previous discussion on "Deploying Rust in Existing Firmware Codebases", this post shares a concrete application: integrating a memory-safe Rust DNS(Domain Name System) parser into the modem firmware.

Hook-up Rust to modem firmwareBefore building the Rust DNS library, we defined several Rust unit tests to cover basic arithmetic, dynamic allocations, and FFI to verify the integration of Rust with the existing modem firmware code base.

Pixel modem firmware already has a well-tested and specialized global memory allocation system to…

This project represents a significant step forward in our ongoing efforts to combat session theft, which remains a prevalent threat in the modern security landscape.

Session theft typically occurs when a user inadvertently downloads malware onto their device.

Once active, the malware can silently extract existing session cookies from the browser or wait for the user to log in to new accounts, before exfiltrating these tokens to an attacker-controlled server.

How DBSC WorksDBSC protects against session theft by cryptographically binding authentication sessions to a specific device.

The issuance of new short-lived session cookies is contingent upon Chrome proving possession of the correspondi…

Staying ahead of the latest indirect prompt injection attacks is critical to our mission of securing Workspace with Gemini.

In our previous blog “Mitigating prompt injection attacks with a layered defense strategy”, we reviewed the layered architecture of our IPI defenses.

Synthetic data generationAfter we discover, curate, and catalog new attacks, we use Simula to generate synthetic data expanding these new attacks.

We partition the synthetic data described above into separate training and validation sets to ensure performance is evaluated against held-out examples.

This process leverages the newly generated synthetic attack data described on this blog, to create a robust, end-to-end evalu…

2025 marked a special year in the history of vulnerability rewards and bug bounty programs at Google: our 15th anniversary 🎉🎉🎉!

Coming back to 2025 specifically, our VRP once again confirmed the ongoing value of engaging with the external security research community to make Google and its products safer.

Vulnerability Reward Program 2025 in NumbersWant to learn more about who’s reporting to the VRP?

Tip: Want to be informed of new developments and events around our Vulnerability Reward Program?

Follow the Google VRP channel on X to stay in the loop and be sure to check out the Security Engineering blog, which covers topics ranging from VRP updates to security practices and vulnerability des…

To stay ahead of the curve, the technology industry must undertake a proactive, multi-year migration to Post-Quantum Cryptography (PQC).

To bring these critical protections to the wider developer community with minimal friction, the transition will be supported through Play App Signing.

Play App Signing leverages Google Cloud KMS, which helps ensure industry-leading compliance standards, to secure signing keys.

Empower Developers : The inclusion of ML-DSA support within Android Keystore and Play App Signing allows developers to safeguard their users and application.

: The inclusion of ML-DSA support within Android Keystore and Play App Signing allows developers to safeguard their users and …

Today we're announcing a new program in Chrome to make HTTPS certificates secure against quantum computers.

Instead, Chrome, in collaboration with other partners, is developing an evolution of HTTPS certificates based on Merkle Tree Certificates (MTCs), currently in development in the PLANTS working group.

Since MTC technology shares significant architectural similarities with CT, these operators are uniquely qualified to ensure MTCs are able to get off the ground quickly and successfully.

The Chrome Quantum-resistant Root Program will operate alongside our existing Chrome Root Program to ensure a risk-managed transition that maintains the highest levels of security for all users.

First, we…

For Majik, Scam Detection was the intervention he needed: “The warning is what made me pause and avoid a bad situation”.

As scammers evolve their tactics and create more convincing and personalized threats, we’re using the best of Google AI to stay one step ahead.

Expanding Scam Detection for Calls to Samsung DevicesTo help protect you during phone calls, Scam Detection alerts you if a caller uses speech patterns commonly associated with fraud.

Scam Detection for phone calls on Google Pixel devices is available in the U.S., Australia, Canada, India, Ireland, and the UK.

Powered by Gemini’s on-device model, Scam Detection provides intelligent protection against scam calls while ensuring that…

Upgrading Google Play’s AI-powered, multi-layered user protectionsWe’ve seen a clear impact from these safety efforts on Google Play.

As Android’s built-in defense against malware and unwanted software, Google Play Protect now scans over 350 billion Android apps daily.

This proactive protection constantly checks both Play apps and those from other sources to ensure they are not potentially harmful.

Looking aheadOur top priority remains making Google Play and Android the most trusted app ecosystems for everyone.

Thank you for being part of the Google Play and Android community as we work together to build a safer app ecosystem.

That’s why we're committed to providing multi-layered defenses that help protect you before, during, and after a theft attempt.

Today, we're announcing a powerful set of theft protection feature updates that build on our existing protections, designed to give you greater peace of mind by making your device a much harder target for criminals.

These updates are now available for Android devices running Android 16+.

More User Control for Failed Authentications: In Android 15, we launched Failed Authentication Lock, a feature that automatically locks the device's screen after excessive failed authentication attempts.

This feature is now getting a new dedicated enable/disable toggle in settings,…

These initiatives, driven by Ballots SC-080, SC-090, and SC-091, will sunset 11 legacy methods for Domain Control Validation.

What’s Domain Control Validation?

Domain Control Validation is a security-critical process designed to ensure certificates are only issued to the legitimate domain operator.

Sunsetted methods relying on email:Sunsetted methods relying on phone:Sunsetted method relying on a reverse lookup:For everyday users, these changes are invisible - and that’s the point.

These changes push the ecosystem toward standardized (e.g., ACME), modern, and auditable Domain Control Validation methods.

Partnership with ArmOur goal is to raise the bar on GPU security, ensuring the Mali GPU driver and firmware remain highly resilient against potential threats.

We partnered with Arm to conduct an analysis of the Mali driver, used on approximately 45% of Android devices.

This approach allowed us to roll out the new security policy broadly while minimizing the impact on developers.

This effort spans across Android and Android OEMs, and required close collaboration with Arm.

The Android security team is committed to collaborating with ecosystem partners to drive broader adoption of this approach to help harden the GPU.

We built on Gemini's existing protections and agent security principles and have implemented several new layers for Chrome.

To further bolster model alignment beyond spotlighting, we’re introducing the User Alignment Critic — a separate model built with Gemini that acts as a high-trust system component.

A flow chart that depicts the User Alignment Critic: a trusted component that vets each action before it reaches the browser.

The User Alignment Critic runs after the planning is complete to double-check each proposed action.

Looking forwardThe upcoming introduction of agentic capabilities in Chrome brings new demands for browser security, and we've approached this challenge with the same ri…

Android uses the best of Google AI and our advanced security expertise to tackle mobile scams from every angle.

Over the last few years, we’ve launched industry-leading features to detect scams and protect users across phone calls, text messages and messaging app chat notifications.

To help combat these types of financial scams, we launched a pilot earlier this year in the UK focused on in-call protections for financial apps.

The UK pilot of Android’s in-call scam protections has already helped thousands of users end calls that could have cost them a significant amount of money.

We’ve also started to pilot this protection with more app types, including peer-to-peer (P2P) payment apps.

Secure by DesignWe built Quick Share’s interoperability support for AirDrop with the same rigorous security standards that we apply to all Google products.

Secure Sharing Channel: The communication channel itself is hardened by our use of Rust to develop this feature.

On Android, security is built in at every layer.

On Android, security is built in at every layer.

Secure Sharing Using AirDrop's "Everyone" ModeTo ensure a seamless experience for both Android and iOS users, Quick Share currently works with AirDrop's "Everyone for 10 minutes" mode.