1. The US Congressional Budget Office confirmed unauthorized ac…
The US Congressional Budget Office confirmed unauthorized access to its networks in a suspected foreign cyberattack potentially exposing emails with congressional offices.
Category: Newsletter
2. A significant data leak from Chinese cybersecurity firm Know…
A significant data leak from Chinese cybersecurity firm Knownsec exposed cyber weapon specifications, proprietary hacking tool source code, government collaboration details, and a list of 80 compromised overseas surveillance targets.
Category: Newsletter
3. A detailed demonstration shows how an ARM-based IoT device’s…
A detailed demonstration shows how an ARM-based IoT device’s Address Space Layout Randomization (ASLR) can be bypassed using Return-Oriented Programming (ROP), enabling unauthenticated remote code execution via memory manipulation.
Category: Newsletter
4. The article advocates for redesigning systems in which AI en…
The article advocates for redesigning systems in which AI enhances meaningful signals instead of obscuring them, improving overall user experience and information delivery.
Category: Newsletter
5. Qilin ransomware group exfiltrated 300GB of data from Corner…
Qilin ransomware group exfiltrated 300GB of data from Cornerstone Staffing Solutions, including 120,000 resumes, Social Security numbers, salary data, and financial records, with threats of sophisticated phishing campaigns.
Category: Newsletter
6. EchoGram exploits gaps in training data guardrails by inject…
EchoGram exploits gaps in training data guardrails by injecting nonsensical “flip tokens” that cause false positives and bypasses in GPT-5.1, Claude, and Gemini, posing a dual threat of alert fatigue and actual malicious prompt bypasses.
Category: Newsletter
7. The RondoDox botnet leverages a vulnerability in the XWiki S…
The RondoDox botnet leverages a vulnerability in the XWiki SolrSearch endpoint, sending base64-encoded Groovy payloads via HTTP GET requests to download and execute malware. Existing IOC blocklists remain effective against this threat.
Category: Newsletter
8. Google’s Quick Share now interoperates with Apple AirDrop on…
Google’s Quick Share now interoperates with Apple AirDrop on Pixel 10 devices using direct, device-to-device Rust-implemented connections. Security requires manual recipient verification to prevent accidental data exposure.
Category: Newsletter
9. RadzaRat is an Android RAT with keylogging and persistence c…
RadzaRat is an Android RAT with keylogging and persistence capabilities, evading AV detection. Distributed openly since November, it uses free infrastructure and targets credentials and financial data. Behavioral detection and strict app policies are recommended.
Category: Newsletter
10. FoloToy’s GPT-4o-powered “Kumma” teddy bear unexpectedly gen…
FoloToy’s GPT-4o-powered “Kumma” teddy bear unexpectedly generated inappropriate content during testing, leading OpenAI to revoke the developer’s API access.
Category: Newsletter
11. Delta Dental notified about 146,000 people after an email ac…
Delta Dental notified about 146,000 people after an email account breach exposed personal information.
Category: Newsletter
12. Iberia experienced a data breach resulting from a supplier h…
Iberia experienced a data breach resulting from a supplier hack impacting security.
Category: Newsletter
13. Amazon began beta testing its Leo satellite internet service…
Amazon began beta testing its Leo satellite internet service with select enterprise customers, offering simultaneous download speeds up to 1Gbps and upload speeds of 400Mbps. Commercial rollout is expected next year.
Category: Newsletter
14. Blue Origin announced plans for the New Glenn 9×4, a super-h…
Blue Origin announced plans for the New Glenn 9×4, a super-heavy rocket variant capable of delivering 70 metric tons to Low Earth Orbit and missions to the Moon, aiming to rival SpaceX’s Starship.
Category: Newsletter
15. A three-year-old patient with Hunter syndrome has shown norm…
A three-year-old patient with Hunter syndrome has shown normal development after receiving groundbreaking gene therapy treatment that halts disease progression, offering new hope for this severe inherited condition.
Category: Newsletter