NASA's Psyche mission set for a brief encounter with Mars
There sure are some clever people on Earth
Security & Lifecycle News
Aggregated from vendor advisories, security research, and industry publications.
Microsoft backpedals: Edge to stop loading passwords into memory
Microsoft is updating the Edge web browser to ensure it no longer loads saved passwords into process memory in clear text at startup after previously stating it was "by design." [.…
Inside the REMUS Infostealer: Session Theft, MaaS, and Rapid Evolution
Stolen browser sessions and authentication tokens are becoming more valuable than stolen passwords. Flare explains how the REMUS infostealer evolved around session theft and operat…
Four OpenClaw Flaws Enable Data Theft, Privilege Escalation, and Persistence
Cybersecurity researchers have disclosed a set of four security flaws in OpenClaw that could be chained to achieve data theft, privilege escalation, and persistence. The vulner…
Anthropic urges Uncle Sam to kneecap China's AI ambitions before 2028
Claude maker warns authoritarian regimes could set the rules unless Washington tightens chip and model controls
Microsoft to automatically roll back faulty Windows drivers
Microsoft is introducing a new capability that will allow it to remotely roll back problematic Windows drivers delivered through Windows Update. [...]
Microsoft Warns of Exchange Server Zero-Day Exploited in the Wild
Microsoft has shared mitigations for CVE-2026-42897 until a permanent patch can be released for affected Exchange Server versions. The post Microsoft Warns of Exchange Server Zero-…
Cyber Pioneers Ponder Past as Prologue
Robert "RSnake" Hansen, Katie Moussouris, Rich Mogull, Richard Stiennon, and Bruce Schneier reflect on how their favorite columns penned for Dark Reading over the past 20 years hav…
Exploited Exchange Server flaw turns OWA inboxes into script launchpads
Microsoft mitigation may bork inline images, calendar printing while admins wait for a proper patch
Cisco warns of an actively exploited SD-WAN flaw with max severity
Cisco has disclosed a max-severity authentication bypass vulnerability affecting its Catalyst SD-WAN Controller and Catalyst SD-WAN Manager platforms, warning that the flaw has alr…
Patch time for Cisco SD-WAN admins as vendor drops yet another make-me-admin zero-day
CISA hands feds super-tight deadline for this perfect-10, actively exploited flaw
American Lending Center Data Breach Affects 123,000 Individuals
The non-bank lender discovered a ransomware attack nearly one year ago, but only recently completed its investigation. The post American Lending Center Data Breach Affects 123,000 …
Bypassing On-Camera Age-Verification Checks
Some AI-based video age-verification checks can be fooled with a fake mustache.
What 45 Days of Watching Your Own Tools Will Tell You About Your Real Attack Surface
In Your Biggest Security Risk Isn't Malware — It's What You Already Trust, we made a simple argument: the most dangerous activity inside most organizations no longer looks like an …
TanStack Supply Chain Attack Hits Two OpenAI Employee Devices, Forces macOS Updates
OpenAI has disclosed that two of its employee devices in its corporate environment were impacted via the Mini Shai-Hulud supply chain attack on TanStack, but noted that no user dat…
X tells Ofcom it will finally check its moderation inbox
Comms watchdog says Musk's social media platform will now review reports of illegal hate and terror content within 24 hours... on average
OpenAI Hit by TanStack Supply Chain Attack
Two employee devices were compromised in the attack, and credential material was stolen from OpenAI code repositories. The post OpenAI Hit by TanStack Supply Chain Attack appeared …
ZTE showcases at GSMA M360 LATAM 2026, driving future business model restructuring - AI & network two-way integration
AI-integrated networks can cut costs, boost 5G efficiency, and help regional telcos shift beyond basic connectivity
OpenAI caught in TanStack npm supply chain chaos after employee devices compromised
Attackers stole a limited amount of internal credential material after malware hidden in poisoned packages reached two staff machines
Digital twins reshape network and data center management
3 things you need to know about digital twins > With AI training racks exceeding 30 kW and specialized systems spiking to 150 kW per rack, digital twins can help prevent thermal …
Fusion for the future: XLSMART and ZTE partnering for a boundless digital Indonesia
7,000 5G sites added in eight months, and now serve 73 million subscribers on Indonesia’s first blanket 5G network.
TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Code
The hacking group is encouraging miscreants to use the code in supply chain attacks, promising monetary rewards. The post TeamPCP Ups the Game, Releases Shai-Hulud Worm’s Source Co…
UK reloads artillery plans with £1B remote-control howitzer order
72 Boxer-mounted RCH 155s due from 2028 as Britain fills the gap left by AS-90s sent to Ukraine
Microsoft warns of Exchange zero-day flaw exploited in attacks
On Thursday, Microsoft shared mitigations for a high-severity Exchange Server vulnerability exploited in attacks that allow threat actors to execute arbitrary code via cross-site s…
Britain's latest civil servant is a chatbot trained on GOV.UK misery
Whitehall says the AI assistant will help citizens navigate public services faster; others may see it as a cheaper alternative to answering the phone
MPs want social media treated more like unsafe toys than harmless apps
Parliamentary committee tells ministers online safety regime is failing children and warns 'no action is not an option'
Chrome 148 Update Patches Critical Vulnerabilities
The refresh resolves critical-severity use-after-free and other types of bugs in various browser components. The post Chrome 148 Update Patches Critical Vulnerabilities appeared fi…
On-call techie decided job was done and hit the bottle – just before his pager went off
Lazy weekend of Grand Prix fun turned into a terrifying all-nighter
Cisco Patches Another SD-WAN Zero-Day, the Sixth Exploited in 2026
The zero-day, tracked as CVE-2026-20182, has been exploited in targeted attacks by a sophisticated threat actor identified as UAT-8616. The post Cisco Patches Another SD-WAN Zero-D…
On-Prem Microsoft Exchange Server CVE-2026-42897 Exploited via Crafted Email
Microsoft has disclosed a new security vulnerability impacting on-premise versions of Exchange Server that it said has come under active exploitation in the wild. The vulnerability…