Microsoft says a Copilot bug (CW1226324) let Microsoft 365 Copilot summarize confidential emails, bypassing DLP policies.
Since Jan 21, 2026, emails in Sent Items and Drafts with sensitivity labels were processed in Copilot Chat without permission.
Since Jan 21, 2026, emails in Sent Items and Drafts with sensitivity labels were processed in Copilot Chat without permission.
MuddyWater Team launched Operation Olalampo on Jan 26, 2026, targeting organizations across MENA.
Group-IB says phishing Office macros drop new malware—GhostFetch, GhostBackDoor, HTTP_VIP, and the Rust backdoor CHAR.
Some variants use Telegram for control, with signs of AI-assisted development.
Group-IB says phishing Office macros drop new malware—GhostFetch, GhostBackDoor, HTTP_VIP, and the Rust backdoor CHAR.
Some variants use Telegram for control, with signs of AI-assisted development.
A new Go-based RAT, #Moonrise, evades AVs and escalates from one infected endpoint to network-wide compromise.
The impact includes credential theft and hidden audio/video surveillance.
The impact includes credential theft and hidden audio/video surveillance.
In the last year, there has been a 168% surge in DDoS attacks and an increase of more than 120% in application-layer attacks, with 12.2% of cyberattacks worldwide directed at Israel, according to Radware’s 2026 Global Cyber Threat report.
Operation Israel hacktivists have been running sustained distributed denial-of-service (DDoS) campaigns against Israeli government websites, critical infrastructure, and private-sector companies.
Operation Israel hacktivists have been running sustained distributed denial-of-service (DDoS) campaigns against Israeli government websites, critical infrastructure, and private-sector companies.
Forwarded from إعلام المقاومة الفلسطينية
Our team will bring you live, comprehensive coverage of the war between the United States and Israel on one side, and Iran, Hezbollah, and Yemen’s Ansarallah movement on the other.
@PsResistMedia
@PsResistMedia
Exploitation of two Ivanti EPMM RCEs (CVE-2026-1281, CVE-2026-1340) surges globally. Attackers deploying persistent backdoors. Patch fast and hunt for compromise.
Critical RCE (CVE-2026-2329, CVSS 9.3) in Grandstream GXP1600 VoIP phones could enable call eavesdropping.
Patch to firmware 1.0.7.81 immediately.
Patch to firmware 1.0.7.81 immediately.
في إحاطة سرية عام 2023، تم تحذير عدد قليل من كبار المديرين التنفيذيين في مجال التكنولوجيا، بمن فيهم المدير التنفيذي لشركة آبل، إنفيديا، إيه إم دي وكوالكوم، من أن الصين قد تهاجم تايوان بحلول عام 2027
European diplomat’s Starlink and satellite phones seized at Tehran airport.
يديعوت أحرونوت:
الهيئة الوطنية للأمن السيبراني تفحص شبهات حول حدوث اختراق إلكتروني إيراني لمؤسسة صندوق كلاليت الصحي ..
الهيئة الوطنية للأمن السيبراني تفحص شبهات حول حدوث اختراق إلكتروني إيراني لمؤسسة صندوق كلاليت الصحي ..
A former L3Harris employee was sentenced to just over 7 years for selling 8 zero-day exploits to Russian broker Operation Zero.
Prosecutors say he received up to $4M in crypto, and the theft is estimated to have cost L3Harris $35M.
Prosecutors say he received up to $4M in crypto, and the theft is estimated to have cost L3Harris $35M.
Microsoft just open-sourced LiteBox, a Rust-based sandboxing library OS.
Developed via the LVBS project, it shrinks attack surfaces by stripping the interface between apps and the host. It enables unmodified Linux programs to run securely on Windows or within isolated Linux environments.
Developed via the LVBS project, it shrinks attack surfaces by stripping the interface between apps and the host. It enables unmodified Linux programs to run securely on Windows or within isolated Linux environments.
CISA added CVE-2026-25108 to its KEV list after active exploitation. The FileZen bug allows an authenticated user to execute OS commands via crafted HTTP requests.
Impacts versions 4.2.1–4.2.8 and 5.0.0–5.0.10 when Antivirus Check is enabled. At least one incident confirmed.
Impacts versions 4.2.1–4.2.8 and 5.0.0–5.0.10 when Antivirus Check is enabled. At least one incident confirmed.
SolarWinds patched four critical 9.1 CVSS flaws in Serv-U that can lead to remote code execution as root.
SolarWinds says there’s no sign of active attacks, but earlier Serv-U flaws were used by Storm-0322.
SolarWinds says there’s no sign of active attacks, but earlier Serv-U flaws were used by Storm-0322.
A flaw in #GitHub Codespaces let attackers hide malicious Copilot instructions inside a GitHub issue.
When a developer opened a Codespace from that issue, Copilot could silently run the injected prompt and leak a privileged GITHUB_TOKEN.
The research also warns of “promptware” attacks built entirely through prompts.
When a developer opened a Codespace from that issue, Copilot could silently run the injected prompt and leak a privileged GITHUB_TOKEN.
The research also warns of “promptware” attacks built entirely through prompts.
Researchers have uncovered secret AI surveillance projects linked to KYC provider Persona and OpenAI, sending user data to the US government.
Code references include intelligence program codenames "Project SHADOW" and "Project LEGION."
Code references include intelligence program codenames "Project SHADOW" and "Project LEGION."
Cyber Dispatch™️
Researchers have uncovered secret AI surveillance projects linked to KYC provider Persona and OpenAI, sending user data to the US government. Code references include intelligence program codenames "Project SHADOW" and "Project LEGION."
Analysis of source code revealed OpenAI's user verification systems includes biometric tracking, facial scanning, political screening, and intelligence reporting.
Cyber Dispatch™️
Researchers have uncovered secret AI surveillance projects linked to KYC provider Persona and OpenAI, sending user data to the US government. Code references include intelligence program codenames "Project SHADOW" and "Project LEGION."
Researchers also discovered ONYX on Persona's government server — matching ICE's $4.2M AI surveillance tool — which scrapes social media and the dark web, builds digital footprints, tracks emotional sentiment, assigns risk scores across 300+ platforms and 28B+ data points, and flags individuals for "violent tendencies."
None of it was hidden. It was all internet-facing.
None of it was hidden. It was all internet-facing.
Forwarded from 𓂆 Palestine
Greek court sentences 4, including 2 Israelis, to 8 years over spyware scandal
A Greek court on Thursday handed down 8-year prison sentences to 4 individuals, including 2 Israelis, in connection with a major spyware scandal that rocked the government in 2022.
The case centered on the unlawful use of Predator software to target the phones of over 90 politicians, journalists, business figures, and high-ranking military officials.
Among the defendants is Tal Dilian, a former Israeli occupation soldier and founder of Intellexa, a company that specialized in providing spyware and marketed Predator in Greece.
Intellexa was sanctioned by the US in 2024 under then-president Joe Biden, marking the first time the Treasury Department imposed penalties on individuals or companies for spyware misuse. The sanctions were lifted the following year by his successor, Donald Trump.
A Greek court on Thursday handed down 8-year prison sentences to 4 individuals, including 2 Israelis, in connection with a major spyware scandal that rocked the government in 2022.
The case centered on the unlawful use of Predator software to target the phones of over 90 politicians, journalists, business figures, and high-ranking military officials.
Among the defendants is Tal Dilian, a former Israeli occupation soldier and founder of Intellexa, a company that specialized in providing spyware and marketed Predator in Greece.
Intellexa was sanctioned by the US in 2024 under then-president Joe Biden, marking the first time the Treasury Department imposed penalties on individuals or companies for spyware misuse. The sanctions were lifted the following year by his successor, Donald Trump.
Hacker group targeted Clalit, Israel’s largest healthcare organisation, exposing full patient records, oncology files, diagnostic histories, military-related medical exemptions, billing documents, clinician communications, and backend service logs.