Nutanix's Tech Day London 2026 offers infrastructure insights
SPONSORED POST: Come join this working afternoon for infrastructure teams
Security & Lifecycle News
Aggregated from vendor advisories, security research, and industry publications.
NY man charged after harassing college student with AI-generated nudes
A New York man faces cyberstalking charges after allegedly sharing AI-generated nude images and fabricated racist messages using fake social media profiles to harass a Georgia coll…
Use of HMRC's taxing IR35 status tool drops 71% in two years
Data suggests firms are turning away from CEST as critics say it fails to reflect recent court rulings
Cisco to Acquire WideField Security to Boost Splunk’s Agentic SOC
WideField will accelerate Agentic SOC capabilities by expanding the lens on threat investigation to include identity, credentials, sessions, and blast radius. The post Cisco to Acq…
CISA warns Fortinet users to secure devices after FortiBleed leak
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) urged Fortinet customers to secure their devices after nearly 74,000 firewall and VPN credentials were exposed in a…
15,000 WordPress Websites Cleaned Up in SocGholish Botnet Takedown
Law enforcement and private partners took down 106 SocGholish C&C servers and domains as part of Operation Endgame. The post 15,000 WordPress Websites Cleaned Up in SocGholish Botn…
Apple Patches Beats Studio Buds Flaw Letting Nearby Attackers Spy via Microphone
Apple has updated its Beats Studio Buds wireless earbuds to patch a high-severity vulnerability that could be exploited by nearby hackers to eavesdrop on users. The vulnerability,…
Users claimed they’d never seen a spell checker and panicked at the sight of red squiggles
Techie couldn’t help but be a little blunt when the support call came in – but has no regrets!
Splunk Enterprise Vulnerability Exploited in Attacks Days After Disclosure
CISA has given federal agencies only three days to patch CVE-2026-20253, which can be exploited for unauthenticated remote code execution. The post Splunk Enterprise Vulnerability …
Gentlemen ransomware uses multiple EDR killers to disable defenses
The Gentlemen ransomware-as-a-service (RaaS) is actively developing and maintaining a suite of endpoint detection and response (EDR) killers to help affiliates evade detection in a…
2,000 retired Google Pixel phones get a second life as a private cloud
You might say the system packs two kilapixels of compute
Novo Nordisk Breach Exposes Software Development Pipeline Risk
A leaked GitHub token underscores what most organizations get wrong: Treating secrets management as a tooling problem rather than an identity problem.
Operation Escaneo Signals Shift in LatAm Threat Landscape
The threat group's curious business model may combine opportunistic monetization alongside intel collection, without much coordination between the two.
Nintendo confirms data stolen in WebMD subsidiary cyberattack
Nintendo of America has confirmed to BleepingComputer that threat actors stole survey data from the third-party TinyPulse service used internally, but its systems were not compromi…
FIFA Bug Exposes World Cup Streams to Remote Takeover
A hacker could have "Rickrolled" the World Cup — or worse — thanks to FIFA's unenforced Entra access controls.
Midjourney pivots from AI image generation to body scanning medical spa where patients bathe in 'golden light'
The underlying technology is real...and borrowed from a partner the company failed to mention
‘Popa’ Botnet Linked to Publicly-Traded Israeli Firm
For the past four years, a sprawling Android-based botnet called Popa has forced millions of consumer TV boxes to relay Internet traffic linked to advertising fraud, account takeov…
F5 Patches Two Critical NGINX Open Source Flaws Enabling Remote Code Execution
F5 has released security updates to address two critical security flaws in NGINX Open Source that could be exploited to achieve code execution on affected systems. The vulnerabili…
Committed skeptic finds himself warming to new Amazon AI products that actually don't suck
Ed's note to Corey: Blink once if you're safe, twice if you're in danger
Majority of Internet-Accessible REDCap Servers Outdated
These servers are regularly targeted by China-linked UNC6508 for initial access and backdoor deployment. The post Majority of Internet-Accessible REDCap Servers Outdated appeared f…
Citrix now lets you run virtual desktops like a cost-conscious private equityeer
Soaring PC prices make alternatives to hardware refreshes interesting
Salesforce Data Thefts Continue via Klue App Compromise
Klue's Battlecards is now the third integrated application that has been compromised to steal customers' Salesforce data, and victims include Huntress, the cybersecurity vendor.
USB worm spreads crypto-stealing malware via Windows shortcut files
Threat actors targeting cryptocurrency wallets have been distributing clipboard-stealing malware with self-spreading capabilities and using the Tor network to conceal communication…
Canonical reveals Myna, its local speech-to-text app
Bird-branded AI will ride on Stonking Stingray
LIU017: Chris Lapp: Becoming “THE GUY” (or GIRL)
Chris Lapp is an Emmy award-winning network engineer, focused on AI, media, and entertainment. Chris is also known as “The Guy”, the one you call when the problem is sitting betwee…
ThreatsDay Bulletin: Claude Chat Abuse, NastyC2 npm Packages, Device-Code Phishing + 25 More Stories
The internet did not break this week. It got used exactly as designed, which is worse. Searches were siphoned through shady browser add-ons. AI chat links turned into malware deli…
NASA payload to ride commercial Mars orbiter from rocket biz yet to reach orbit
Aeolus mission promises better Martian weather models, assuming Relativity Space can get its Terran R off the ground
N4N058: Future-Proofing Your Career for the AI Era (Sponsored)
In this sponsored episode by Cisco we explore how agentic AI is transforming network operations and what it means for your career. Robert Barton, an AI Distinguished Engineer at Ci…
ZTE and China Telecom Guangdong advance cross‑vendor IP network simulation pilots, paving the way for intelligent network operations
PARTNER CONTENT: Leveraging >95% digital twin fidelity and multi-vendor collaboration to eliminate network change risks and achieve zero-error O&M
The AI tipping point: where enterprise AI runs at scale
PARTNER CONTENT: AI's cloud journey homeward bound: enterprises prefer private clouds for scaling AI workloads.