India's cyber agency sets clock at 12 hours to tackle exploited bugs as AI turns up the heat
CERT-In says internet-facing or critical systems should be patched, mitigated, or cut off within half a day where feasible
Security & Lifecycle News
Aggregated from vendor advisories, security research, and industry publications.
Windows 11 update preview promises faster launches, puts Task Manager on NPU patrol
Just mind the known issue that can still send installs rolling back
Glassworm botnet disrupted after resilient C2 infrastructure takedown
The Glassworm botnet targeting developers in software supply-chain attacks has been disrupted after researchers took down its resilient command-and-control infrastructure relying o…
Cisco research finds standard AI safety benchmarks miss the real threat
Enterprises deploying closed AI models have generally relied on published safety benchmarks to assess risk before procurement and deployment decisions. New research from Cisco’s AI…
SecurityWeek to Host AI Risk Summit August 11-12 at the Ritz-Carlton, Half Moon Bay
Now in its third year, the AI Risk Summit is the leading conference that brings together CISOs, security leaders, AI researchers, developers, policymakers, and enterprise risk prof…
Broadcom gets early start on WiFi 8 with next-gen wireless routing kit
Better, more reliable, and cheaper? Isn't that the story every generation?
Broadcom's custom ASIC biz adds South Korea's FuriosaAI to its empire
Third-gen chips to use Broadzilla's advanced packaging, networking tech
Tony Blair and the Reform party both want AI in government, though they can't agree on what for
Former UK PM demands modernization, and right wing party channels inner Musk to call for mass job cuts in public sector
UK armed forces aims for secure comms via optical satellite links
Brit military boffins test ground station with infra-red lasers to deliver multi-gigabits downloads
Cybersecurity Evolution: How We Went From Perimeter Defense to AI-Native Security
The cybersecurity industry of 2006 barely resembled today's billion-dollar behemoth. As part of Dark Reading's 20th anniversary celebration, we trace the industry's evolution throu…
How to guarantee a speaker gig: Hack the system. Literally
Make your mark on the call-for-proposal platform
RevEng.AI Raises $15 Million to Hunt for Flaws and Backdoors in Software Binaries
Using an AI model called BinNet, RevEng hunts vulnerabilities and backdoors in released software binaries. The post RevEng.AI Raises $15 Million to Hunt for Flaws and Backdoors in …
FBI warns of in-person data theft attacks from extortion gang
The FBI warned on Tuesday that the Silent Ransom Group (SRG) extortion gang is now targeting U.S.-based law firms in in-person data theft attacks. [...]
GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure
CrowdStrike, in partnership with Google and the Shadowserver Foundation, has announced the simultaneous disruption of all command-and-control (C2) channels associated with GlassWor…
3 SOC Steps that Shut Down Incident Risks Early
Most organizations still picture cyber defense as a fortress problem: build stronger walls, add more guards, buy another detection engine. But modern incidents rarely crash through…
Romanian Hacker Sentenced to Prison in US for Selling Access to State Network
Catalin Dragomir previously pleaded guilty to selling access to an Oregon state government office’s network. The post Romanian Hacker Sentenced to Prison in US for Selling Access t…
5 Steps to Managing Shadow AI Tools Without Slowing Down Employees
When an employee installs an AI writing assistant, connects a coding copilot to their IDE, or starts summarizing meetings with a new browser tool, they are doing exactly what a pro…
GitHub Actions outage told devs 'your account is suspended'
Another day, another GitHub wobble - but the service keeps growing
Lastwall Raises $11.5 Million for Quantum-Resilient Identity Platform
The new funding, led by BDC Capital’s StrongNorth Fund, will accelerate Lastwall’s North American expansion. The post Lastwall Raises $11.5 Million for Quantum-Resilient Identity P…
The Credential Crisis: How Stolen Credentials Defeat Modern Security
As AI accelerates phishing, session hijacking, and credential abuse, security teams are racing to close the gap between attacker speed and defensive response. The post The Credenti…
Microsoft Excel champ proves he still has the formula
Diarmuid Early dominates Amsterdam qualifier as competitive spreadsheeting sets sights on Vegas finals
‘SymJack’ Attack Turns AI Coding Agents Into Supply Chain Attack Delivery Systems
Malicious repositories and disguised symlinks can trick AI coding agents into silently installing attacker-controlled MCP servers capable of stealing secrets, compromising CI pipel…
GlassWorm Botnet Disrupted
Security firms took down all four command-and-control (C&C) channels used by the GlassWorm malware. The post GlassWorm Botnet Disrupted appeared first on SecurityWeek.
Gitea Vulnerability Exposes Private Container Images without Authentication
Cybersecurity researchers have disclosed a security flaw in Gitea, an open-source, self-hosted platform for version control, that allows unauthenticated remote attackers to pull pr…
CISA gives feds 4 days to patch actively exploited cPanel plugin flaw
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has given U.S. federal agencies four days to secure their servers against a critical vulnerability in the LiteSpeed…
6G: The next gen of wireless tech nobody's ready to pay for
Standards body on track for 2028 specs drop. Telcos on track for 2028 existential crisis about 5G ROI
LA Metro Cyberattack Linked to Iranian State-Sponsored Hackers
The attack was claimed by a hacktivist group, but evidence showed it used infrastructure linked to Iranian government threat actors. The post LA Metro Cyberattack Linked to Iranian…
AWS whips out Graviton-powered Redshift instances, claims 7x speed for data warehouse
AI agents asking questions in natural language apparently issue a lot more queries than your average SQL jockey
Dutch police arrests suspect linked to Ajax football club hack
The Dutch National Police arrested a 35-year-old man suspected of hacking the professional football club Ajax Amsterdam (AFC Ajax) earlier this year. [...]
Windows 11 KB5089573 update released with performance improvements
Microsoft has released the KB5089573 preview cumulative update for Windows 11 versions 25H2 and 24H2, which comes with 30 changes, including performance and reliability improvement…