Peter Chofield
-
Chinese DeepSeek-R1 AI Generates Insecure Code When Prompts Mention Tibet or Uyghurs
A new report highlights a concerning trend with China’s DeepSeek-R1 AI model. Research shows it generates code with significant security vulnerabilities when prompted with politically sensitive topics. Cybersecurity firm CrowdStrike found that the likelihood of insecure code increases by up to 50% for topics the Chinese Communist Party considers sensitive, introducing new risks in AI-driven…
-
UK navy intercepts Russian vessels as Moscow steps up naval activity
The UK Royal Navy has intercepted Russian naval vessels, signaling a significant rise in Moscow’s maritime activity. This development highlights increased tensions across vital international waters.
-
Matrix Push C2 Uses Browser Notifications for Fileless, Cross-Platform Phishing Attacks
Bad actors are deploying Matrix Push C2, a new command-and-control platform for sophisticated phishing attacks. This framework uses web browser notifications to deliver malicious links across various operating systems, employing a fileless approach that bypasses traditional security. Offered as “Malware-as-a-Service” (MaaS), Matrix Push C2 enables threat actors to send deceptive alerts, tricking victims into visiting…
-
Cloudflare Outage Disrupts X, ChatGPT
Cloudflare outage on November 18 disrupted major internet platforms globally. X (formerly Twitter) and ChatGPT were affected. Cloudflare investigated and resolved the widespread issue.
-
Japan’s Defense Spending Reaches Postwar Record
Japan’s defense spending hit a postwar record of ¥9.9 trillion for 2025. This marks a 60% increase over five years. The rise reflects Japan’s strategic shift toward stronger military capabilities. It addresses regional uncertainties and aims for 2% of GDP in defense by 2027.
-
Europe Unprepared for Russian Drone Attacks
Europe is unprepared for Russian drone attacks, despite increasing provocations. Integrating Ukraine’s experience is crucial for defense readiness.
-
China Sells $13K Switchblade Drone Clone
A Chinese firm unveils a $13,000 loitering munition, a Switchblade clone, expanding global drone technology accessibility and redefining military strategies.
-
Fortinet FortiWeb Zero-Day Actively Exploited
A severe security vulnerability in Fortinet’s FortiWeb web application firewall is actively exploited, allowing attackers to bypass authentication. This zero-day flaw impacts FortiWeb versions 8.0.1 and earlier. Update to 8.0.2 or later to protect against this vulnerability.
-
North Korean IT Worker Fraud Uncovered, $15M Seized
North Korean IT worker fraud scheme exposed, $15M seized.
-
Machine-Speed Security: Bridging the Exploitation Gap
Machine-Speed Security is crucial in cyber warfare and cybercrime, enabling cybersecurity systems to detect, analyze, and respond to threats at an automated, accelerated pace. This approach aims to bridge the exploitation gap between vulnerability disclosure and exploit weaponization, minimizing the window of exposure against advanced persistent threats and large-scale cyberattacks.