Yossi Kardi, head of Israel’s National Cyber Directorate, concluded a week-long U.S. visit focused on strengthening cybersecurity and digital defense cooperation.

Discussions also referenced recent cyber incidents, including the breach of personal emails of Kash Patel, claimed by the “Handala” group.

#TGITM @TheGhostITM

US charges Google security engineer with Polymarket insider trading.

ChatGPhish Vulnerability Turns ChatGPT Web Summaries Into a Phishing Surface.

ShinyHunters adds Charter to trophy shelf after 4.9M customer records leak.

Malicious Sicoob NuGet Steals Banking Credentials as npm Packages Target Cloud Secrets.

New BTMOB Android Malware Enables Full Device Takeover.

Signal users targeted in backup-stealing phishing attacks.

JINX-0164 Targets Cryptocurrency Firms with Fake Recruiter Lures and macOS Malware.

CVE-2025-61622: PyFory – Insecure Pickle Deserialization to Remote Code Execution.

Hackers exploit FortiClient EMS flaw to push infostealer malware.

Carnival Data Breach Exposes Personal Data of Nearly 6 Million Customers.

Nvidia and Microsoft unveil the first Windows computers equipped with Nvidia chips.

Israeli government cyber resilience under scrutiny:

- 500% surge in cyberattacks targeting Israeli missions abroad during wartime
- 65% of Israeli ministries ignored security warnings for months on a known vulnerable tool
- Sensitive salary data of hundreds of employees exposed

Security researchers have uncovered a new attack technique that lets malicious websites spy on your browsing activity through hard drive.

CVE-2026-0257: Rapid7 Caught Attackers Abusing Forged VPN Cookies Against Multiple Customers.

27,000-Download Codex UI Tool Secretly Stole OpenAI Refresh Tokens.