Strengthening cyber resilience across the NHS with collaboration and innovation – NCSC Blog
How the NCSC is reducing risk, improving detection, and helping to keep vital services running. – Read More
Cyber
Another Microsoft Defender privilege escalation bug emerges days after patch – CSO Online
Days after Microsoft patched a high-severity issue affecting its Windows Defender antivirus tool through April’s Patch Tuesday, researchers warn of another vulnerability that could enable SYSTEM privileges through local escalation.…
Google Blocks 8.3B Policy-Violating Ads in 2025, Launches Android 17 Privacy Overhaul – The Hacker News
Google this week announced a new set of Play policy updates to strengthen user privacy and protect businesses against fraud, even as it revealed it blocked or removed over 8.3…
Palo Alto’s Helmut Reisinger sees a cyber sea change ahead as AI advances – CSO Online
In two decades, Palo Alto Networks has evolved from a next-generation niche player to one of the largest global cybersecurity giants today. Under its mantra of “platformization,” the company has…
NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions – The Hacker News
The National Institute of Standards and Technology (NIST) has announced changes to the way it handles cybersecurity vulnerabilities and exposures (CVEs) listed in its National Vulnerability Database (NVD), stating it…
Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts – The Hacker News
An international law enforcement operation has taken down 53 domains and arrested four people in connection with commercial distributed denial-of-service (DDoS) operations that were used by more than 75,000 cybercriminals.…
Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation – The Hacker News
A recently disclosed high-severity security flaw in Apache ActiveMQ Classic has come under active exploitation in the wild, per the U.S. Cybersecurity and Infrastructure Security Agency (CISA). To that end,…
Cisco Webex SSO flaw needs manual certificate update to fix – CSO Online
Admins who use Cisco Webex Services configured to use trust anchors within the SSO integration with Control Hub must install a new identity provider certificate to close a critical vulnerability,…
RCE by design: MCP architectural choice haunts AI agent ecosystem – CSO Online
AI agent building tools enable users to configure Model Context Protocol (MCP) servers may be exposing systems to remote code execution due to an architectural decision in Anthropic’s reference implementation.…
NIST cuts down CVE analysis amid vulnerability overload – CSO Online
Overwhelmed by an escalating volume of security flaws, the National Institute of Standards and Technology (NIST) has announced significant changes to how it handles cybersecurity vulnerabilities and exposures (CVEs). Rather…
NIST Revamps CVE Framework to Focus on High-Impact Vulnerabilities – Dark Reading
The National Institute of Standards and Technology carved a new path for vulnerability remediation by changing the way it prioritizes software flaws. – Read More
North Korea Uses ClickFix to Target macOS Users’ Data – Dark Reading
Sapphire Sleet uses fake job offers and phony Zoom updates to deliver ClickFix attacks that steal credentials and sensitive data from Macs. – Read More
‘Harmless’ Global Adware Transforms Into an AV Killer – Dark Reading
A benign looking update Dragon Boss pushed out in March 2025 established persistence via scheduled tasks and arranged for future payloads to be excluded from Windows Defender. – Read More
Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic – The Hacker News
Cybersecurity researchers have warned of an active malicious campaign that’s targeting the workforce in the Czech Republic with a previously undocumented botnet dubbed PowMix since at least December 2025. “PowMix…
Two-Factor Authentication Breaks Free from the Desktop – Dark Reading
Threat actors know how to bypass security systems outside of traditional IT environments. Implementing 2FA could provide a needed extra security barrier in the physical world. – Read More