Live Feeds
-
Transparent Tribe APT36: Weaponized Shortcuts and Adaptive Persistence Target Indian Government Entities
Transparent Tribe (APT36) launches a sophisticated multi-stage malware campaign using weaponized Windows shortcut files embedded with PDF content, targeting Indian government and academic institutions. The RAT adapts its persistence mechanisms based on installed antivirus products, enabling long-term covert access and intelligence collection.
-
MongoDB MongoBleed CVE-2025-14847: Unauthenticated Memory Leak Under Active Exploitation
A critical pre-authentication memory disclosure vulnerability in MongoDB allows attackers to leak heap memory without credentials. With 87,000+ vulnerable instances globally and active exploitation confirmed, CISA has mandated patches for Federal agencies by January 19, 2026.
-
Russia’s Claimed Capture of Pokrovsk Comes at a Steep Cost
Russia has claimed control of Pokrovsk, a crucial logistical hub in eastern Ukraine, after a prolonged and costly battle. Ukraine denies a full capture, as both sides report significant casualties in what is seen as a strategically vital conflict.
-
Scottish Council Two Years into Ransomware Recovery
The Scottish Comhairle nan Eilean Siar, or Council for the Western Isles, is now two years deep into recovering from a major ransomware attack that hit them in early November 2023. The direct financial fallout from this cyber incident has already exceeded 1 million euros. The attack highlighted inadequate continuity plans, unresolved IT infrastructure weaknesses,…
-
Regions Calling: Life With No Internet Is the New Normal
Life without consistent internet is the new norm in many Russian regions. Frequent mobile outages and restrictions are transforming daily life far beyond Moscow, forcing a return to cash and impacting financial aid for soldiers and their families.
-
ThreatsDay Bulletin: AI Malware, Voice Bot Flaws, Crypto Laundering, IoT Attacks — and 20 More Stories
This week’s cybersecurity bulletin highlights the re-emergence of Mirai-based botnets targeting IoT devices, a surge in sophisticated phishing attacks leveraging AI, and efforts by Singapore to curb government impersonation scams. It also covers privacy upgrades to the Tor Project, new malware techniques, and a major money laundering network takedown.
-
U.S. Army buys more Bradley A4s from BAE Systems
The U.S. Army has awarded BAE Systems a $390 million contract modification to procure additional Bradley A4 fighting vehicles, expanding its fleet of modernized armored platforms. These upgrades enhance lethality, protection, and onboard systems, supporting the Army’s commitment to equipping its Armored Brigade Combat Teams.
-
Malicious Blender Files Used to Spread Malware
Cybersecurity experts are warning about malicious Blender files being used to spread malware that steals sensitive data. These files, found on platforms like CGTrader, leverage embedded Python scripts to initiate infections when opened. Security firm Morphisec first reported on this Russian-linked campaign, noting its use of malicious .blend files to deploy the StealC V2 data-stealing…
-
3 SOC Challenges You Need to Solve Before 2026
Cybersecurity is facing a pivotal shift by 2026 as threat actors increasingly use AI for attacks. This includes scaling operations, automating reconnaissance, and crafting hyper-realistic social engineering campaigns. One major challenge for Security Operations Centers (SOCs) is the rise of evasive threats. Attackers use sophisticated tactics like ClickFix campaigns, abusing LOLBins, and multi-stage phishing with…
-
France Conducts High-Intensity Armored Drills in UAE
France recently concluded intense armored drills in the UAE, showcasing its military readiness in desert conditions. The exercises spanned three days and involved Leclerc tanks, CAESAR artillery, and VBCI infantry fighting vehicles. These high-intensity maneuvers were part of the Franco-Emirati Gulf 25 exercise in Abu Dhabi. French forces maintain a forward presence in the Gulf…