8 critical threats detected in the last 24 hours. 3 active zero-days reported. Active threat actors: Turla, Gamaredon, Play. Immediate review of affected systems recommended.
Critical
Android Update Patches Exploited Zero-Day, 123 Other Vulnerabilities
Why the browser is now the front line for AI security
Anthropic expanding access to Project Glasswing
CISA flags two-year-old Oracle flaw as actively exploited in attacks
Critical Vulnerability in HP VoIP Phones Enables Enterprise Network Breaches
Attackers exploit Palo Alto GlobalProtect flaw days after disclosure
The HazyBeacon Protocol – How Malware Weaponizes Amazon Web Services (AWS) Lambda Function URLs
Key Takeaways The Rise of Cloud-Native Command and Control (C2) Command and control (C2) infrastructure traditionally lived outside the victim environment. Malware beaconed to attacker-operated servers hosted on rented VPS infrastructure or compromised websites, and defenders focused on identifying those endpoints through IP reputation, domain intelligence, and network blocking. Cloud computing ha
Parents Sue Minnesota Hospital to Enforce HIPAA Right of Access for Minor Child’s Medical Records
The parents of a 15-year-old child have filed a lawsuit against a Minnesota hospital for failing to provide them with […] The post Parents Sue Minnesota Hospital to Enforce HIPAA Right of Access for Minor Child’s Medical Records appeared first on The HIPAA Journal .
Instagram users locked out after Meta AI abused to steal accounts
Multiple Instagram users had their accounts hijacked after attackers convinced Meta's AI-powered support tools that they were the legitimate owners. [...]
Infosecurity Europe: NCSC Urges Immediate Action to Boost Resilience as Uncertainty Persists
NCSC director of operations, Paul Chichester, says it’s time to future-proof cybersecurity today
XTrasfer and BBVA team i cross-border payments
XTransfer, the world’s leading B2B cross-border trade payment platform, and BBVA, a global financial group, have signed a Memorandum of Understanding (MOU) during Money20/20 Europe 2026 in Amsterdam to deepen cross-border payment infrastructure across Latin America and Europe.
ING complete live end-to-end European agentic payment transaction
ING, Worldline and Mastercard have carried out what they claims is Europe's first end-to-end agentic payment transaction.
Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk
A simple development setting bypassed protections designed to prevent unauthorized Android apps from accessing Microsoft account tokens, exposing billions of installations. The post Exclusive: How One Line of Code Put Billions of Microsoft Android App Downloads at Risk appeared first on SecurityWeek .
Infosecurity Europe: Cybersecurity Teams Which Don’t Leverage AI are "Doomed to Fail"
Humans still need to be part of cyber defense, but refusing to deploy AI is no longer optional against AI-enhanced cyber threats, warns Dataminr’s Joe Slowik
Franklin Templeton and MoonPay bid to expand institutional access to tokenised funds
Franklin Templeton and MoonPay today announced a strategic partnership to make tokenized financial products more accessible and usable across the onchain financial ecosystem.
Investing app Plynk revamps app
Plynk, the award-winning investing app designed to uncomplicate the investing experience and empower users with confidence-boosting tools, announced its app upgrade and rebrand alongside the launch of the dividend match, a first-of its-kind offer.
DNB Bank expands partnership with Infosys for AI-driven financial crime operations
Infosys (NSE, BSE, NYSE: INFY), a global leader in AI-first business consulting and technology services, today announced the expansion of its strategic collaboration with DNB Bank ASA (DNB), Norway’s largest bank, to modernize its Financial Crime (FinCrime) operations using NICE Actimize X-Sight Enterprise platform.
Android Update Patches Exploited Zero-Day, 123 Other Vulnerabilities
Google says the Android vulnerability CVE-2025-48595 has been exploited in limited, targeted attacks. The post Android Update Patches Exploited Zero-Day, 123 Other Vulnerabilities appeared first on SecurityWeek .
Why the browser is now the front line for AI security
AI-powered attacks and shadow AI adoption are creating new security risks inside the browser. Push Security explains why browser visibility is becoming critical for both threat detection and AI governance. [...]
Live Activity
Threat Alerts
Real-time alerts for the threats that matter to you. Choose your severity levels and threat categories.