PM Apologizes to Trump after Reagan Anti-Tariff Spot
A Reagan-themed anti-tariff ad paused U.S.–Canada talks. Canada’s prime minister apologized to Trump, seeking to cool tempers, protect exporters, and restart negotiations.
Read More
Luxury Brand Impersonation Wave: 1,330 Domains
Researchers tracked 1,330 suspicious domains impersonating 23 luxury brands ahead of peak shopping. Prepare for activation waves with monitoring, takedowns, and buyer guidance.
Agent Session Smuggling: Hijacking AI-to-AI Workflows
Agent session smuggling lets a hostile AI agent exploit a live multi-agent conversation, inherit tool authority, and trigger real actions. With scoped credentials, signed steps, and guarded workflows, teams can keep speed without losing control.
Linux Kernel UAF Attacks: Admin Playbook to Reduce Exposure
Attackers actively exploit a Linux kernel use-after-free. Patch quickly, reduce local attack surface, and verify coverage with high-signal detections and a weekly baseline review.
Critical Risk: BADCANDY Re-Infection on Unpatched IOS XE
BADCANDY continues to compromise exposed Cisco IOS XE devices via CVE-2023-20198. Close the web UI exposure, patch now, rotate credentials, and verify eradication.
Pokémon & Minecraft-Branded Extensions Drop Malware on Devs
Game-themed extensions on a popular code editor pretended to add Pokémon or Minecraft flair for “vibe coders.” Instead, they executed malware on install, mined Monero, and attempted persistence. Consequently, teams should validate developer workstations, remove suspicious add-ons, rotate secrets, and harden marketplace policies before the next wave appears.
Lanscope Endpoint Manager Zero-Day Under Attack
Attackers exploit CVE-2025-61932 in Lanscope Endpoint Manager clients to run code and move laterally. Patch MR/DA endpoints now and reduce internet exposure.
GPT-5-Powered Aardvark Automates Vulnerability Fixes
Aardvark is OpenAI’s GPT-5–powered security agent that reads repositories like a human, validates exploitability in a sandbox, and proposes precise patches. Consequently, teams can cut detection and remediation time without slowing delivery.
Edge Security Upgrade: Faster Scareware and Pop-Up Blocking
Edge’s scareware sensor uses on-device AI and SmartScreen integration to shut down tech support scams fast. It exits full-screen traps, warns users, and gives admins policy control.
How Zombie APIs Resurface and Expand Attack Paths
Abandoned apps, APIs, and identities keep resurfacing. Hunt them continuously, retire them completely, and verify they stay dead—before attackers exploit them.