Chinese hackers took control of a target organization’s authentication stack and maintained persistence for 10 years, with full visibility into the administrative activity. Dubbed “Operation Highland,” the intrusion is attributed to the Velvet Ant cyberespionage threat group, which targeted vulnerable internet-facing systems before pivoting to a network with no direct external path. Chinese hackers of...Read More
This week’s key cybersecurity news. We compiled the week’s most important cybersecurity news. Microsoft disabled dozens of GitHub repositories after an attack on Claude Code users. Hacktivists targeted users in Ukraine via a WinRAR vulnerability. OpenClaw failed phishing tests. A disgruntled researcher continued a “war” with Microsoft after patches for earlier vulnerabilities. Microsoft disabled dozens...Read More
A DevOps.com opinion piece by a long-time OpenStack contributor warns that AI-assisted code contributions are entering production even in rigorously governed open source projects. The author reports that patches composed almost entirely by AI tools landed in a recent OpenStack release cycle, raising reviewer workload and weakening the trust models that underpin code governance. The...Read More
Teenagers under the age of 16 are to be banned from accessing “high-risk” social media apps while safer platforms will be subjected to restrictions, under a sweeping government crackdown. Under-18s will also be banned from using romantic or sexual AI chatbots after a consultation on keeping children safe online. However, sources warned the government faced...Read More
The article explicitly states that the scammers used Google’s Gemini AI chatbot to generate code for malicious websites, which were then used to send fraudulent messages to millions of users, leading to potential theft of personal information. This is a direct use of an AI system in causing harm (fraud, violation of privacy, and deception),...Read More
Summary On June 12, 2026, the ransomware group DragonForce claimed responsibility for a cyberattack againstAl Ishrak Contracting, a well-known construction company based in Dubai, UAE. The attack has raised concerns about the security measures in place within the construction industry across the region. Incident Report Field Details Target Al Ishrak Contracting Domain N/A Country UAE...Read More
In brief Iran-linked hacking group Handala claimed it breached FBI drones and accessed surveillance footage. The group threatened teams participating in the 2026 FIFA World Cup. Researchers disputed some of the evidence released by the hackers. An Iran-linked hacking group that previously made headlines for claiming it hacked FBI Director Kash Patel’s email account has...Read More
It is hard to believe the police first began investigating Jeffrey Epstein more than two decades ago given the severity and depth of the convicted sex offender’s crimes are only now really beginning to be understood. More than 21 years after Palm Beach police launched an inquiry into the disgraced financier after the family of...Read More
A Ukrainian man extradited from Ireland has pleaded guilty in the United States for his role in the Conti ransomware operation, one of the most damaging cybercrime groups active during the pandemic years. Oleksii Oleksiyovych Lytvynenko, 44, admitted to conspiracy to commit wire fraud after prosecutors said he worked with others involved in deploying Conti...Read More
This past week in digital policy was dominated by Bill C-34, the Safe Social Media Act, which includes platform regulation, an under-16 social media ban backed by mandated age verification, a new AI chatbot regulatory regime, and the creation of a powerful Digital Safety Commission. I have posted daily on the bill, including my initial...Read More