AT&T sues to ditch Cali copper phone lines to save billions
Telecoms giant files suit in Golden State so it doesn't have to maintain network it claims is hardly used
Security & Lifecycle News
Aggregated from vendor advisories, security research, and industry publications.
Verizon DBIR: Healthcare Fends Off Increased Social Engineering Attacks
Ransomware and vendor breaches persist. The "2026 Data Breach Investigations Report" (DBIR) highlights how evolving social engineering tactics make the sector more vulnerable.
Drupal: Critical SQL injection flaw now targeted in attacks
Drupal is warning that hackers are attempting to exploit a "highly critical" SQL injection vulnerability announced earlier this week. [...]
Why Chargebacks are Just One Piece of the Fraud Puzzle
Fraud losses don't stop at chargebacks. False declines, account takeovers, and abuse also damage revenue and trust. IPQS breaks down why fraud teams need broader visibility into ri…
Workday wants AI to punch in instead of having to hire new recruits
CEO eyes margin gains by keeping headcount flat – bold for a company selling HR software to employers
FBI warns Kali365 phishing kit is stealing Microsoft OAuth tokens at scale
MFA? No problem, says crimeware that tricks users into handing attackers the keys to M365
Canadian Man Arrested for Operating Kimwolf Botnet
Jacob Butler, 23, has been arrested in Canada and US authorities are seeking his extradition on computer hacking charges. The post Canadian Man Arrested for Operating Kimwolf Botne…
ZTE Day Indonesia 2026 strengthens AI innovation and digital infrastructure collaboration to accelerate Indonesia's digital transformation
The annual tech showcase highlights next-gen AI, cloud, and future-ready ICT solutions while uniting ecosystem partners to build the foundation for the nation's AI era
Ubiquiti patches three max severity UniFi OS vulnerabilities
Ubiquiti has released security updates to patch three maximum severity vulnerabilities in UniFi OS that can be exploited by remote attackers without privileges. [...]
SpaceX scrubs Starship launch with seconds to go
Not all bad news: Crypto billionaire signs up for a mission to Mars
Megalodon GitHub Attack Targets 5,561 Repos with Malicious CI/CD Workflows
Cybersecurity researchers have disclosed details of a new automated campaign called Megalodon that has pushed 5,718 malicious commits to 5,561 GitHub repositories within a six-hour…
Making Vulnerable Drivers Exploitable Without Hardware - The BYOVD Perspective
1 Introduction This article provides a technical analysis of how many Windows kernel mode drivers can be interacted with from user mode without the hardware they were developed fo…
ZTE unveils localized roadmap for Eurasia's digital future at GSMA M360 Eurasia 2026
Driving "affordable AI" through open ecosystems, anti-fragile infrastructure, and optimized TCO to empower local industries
Outlook has an image problem
Microsoft says classic client may lose embedded pictures thanks to wrapping bug
Techie claims Trump Mobile website was leaking thousands of people's data
Customers' info potentially handed to anyone who could send an HTTP request
Irish Rail writes down €50M after train IT project goes off the rails
State-owned operator loses confidence in delayed traffic management system as politicians compare Ireland’s latest public-sector IT fiasco to 'Groundhog Day'
BOFH: Vibe-coded solutions arrive for problems nobody has
The Boss gives common sense an AI wrapper
‘First VPN’ Cybercrime Service Disrupted, Administrator Arrested
The FBI says First VPN has been used by dozens of ransomware groups for network reconnaissance and intrusions. The post ‘First VPN’ Cybercrime Service Disrupted, Administrator Arre…
Burnham backlash: UK Digital ID plans in peril if Manchester mayor succeeds Starmer
He'll have to beat Nigel Farage in a Brexit-backing constituency first, though
US and Canada arrest and charge suspected Kimwolf botnet admin
U.S. and Canadian authorities arrested and charged a Canadian man with operating the KimWolf distributed denial-of-service (DDoS) botnet, which infected nearly two million devices …
Kimwolf DDoS Botnet Operator Arrested in Canada Over DDoS-for-Hire Attacks
The U.S. Department of Justice (DoJ) on Thursday announced the arrest of a Canadian man in connection with allegedly operating a distributed denial-of-service (DDoS) botnet known a…
xAI-Anthropic deal signals the rise of AI compute as a standalone business
New SpaceX IPO filings suggest frontier AI firms are beginning to treat compute infrastructure as a standalone commercial business, with Elon Musk’s xAI agreeing to provide large-s…
UK nuclear investors get 'high' returns for lower risk than consumers, who also foot the bill
Sizewell C could add £19 to yearly bills, spending watchdog says, but private investor may fail to keep costs down
TrendAI Patches Apex One Zero-Day Exploited in the Wild
CVE-2026-34926 is a directory traversal flaw that can be exploited against the on-premise version of Apex One. The post TrendAI Patches Apex One Zero-Day Exploited in the Wild appe…
Grafana Says Codebase and Other Data Stolen via TanStack Supply Chain Attack
Hackers accessed Grafana’s GitHub repositories after a token compromised in the TanStack attack was not rotated. The post Grafana Says Codebase and Other Data Stolen via TanStack S…
China's Webworm Uses Discord, Microsoft Graphs to Hack EU Governments
The advanced persistent threat group also relied on SOCKS proxies like SoftEther VPN, tunneling tools that act as a middleman between victim and attacker.
Marketing demanded IT add website feature that was already working
Techie regrets not taking credit for getting it done with amazing speed
CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Thursday added two security flaws impacting Langflow and Trend Micro Apex One to its Known Exploited Vulnerabili…
Cisco used AI to write security incident reports, with mixed results
You’ll need a lot of detailed prompts to get solid output - and even then it may have errors and typos
Cisco Patches CVSS 10.0 Secure Workload REST API Flaw Enabling Data Access
Cisco has rolled out updates for a maximum-severity security flaw impacting Secure Workload that could allow an unauthenticated, remote attacker to access sensitive data. Tracked …