France puts mobile corps command to the test in major war scenario

The small forward command post lets commanders “be in contact with the divisions, to be as close as possible to the ...

Claude Code bypasses safety rule if given too many commands

Updated Claude Code will ignore its deny rules, used to block risky actions, if burdened with a sufficiently long chain of ...

New AgingFly malware used in attacks on Ukraine govt, hospitals

A new malware family named 'AgingFly' has been identified in attacks against local governments and hospitals that steal ...
CSO Online

OpenAI patches twin leaks as Codex slips and ChatGPT spills

Command injection in Codex and a hidden outbound channel in ChatGPT exposed risks of credential theft and covert data exfiltration.
GovInfoSecurity

Breach Roundup: German Police Expose REvil, GandCrab Boss

This week, German police unmasked a REvil leader, a critical Docker flaw, Medusa ransomware surged, DPRK hackers abused ...
The Hacker News

Russian CTRL Toolkit Delivered via Malicious LNK Files Hijacks RDP via FRP Tunnels

Russian CTRL toolkit spread via malicious LNK files in February 2026, routing C2 through FRP-tunneled RDP to evade detection.
Microsoft

Cookie-controlled PHP webshells: A stealthy tradecraft in Linux hosting environments

Cookie-gated PHP webshells use obfuscation, php-fpm execution, and cron-based persistence to evade detection in Linux hosting ...
CIO

The state of AI security in 2026

While we maintain in the 2026 Threat Detection Report that AI favors defenders, it’s also helping lower the barrier of entr ...

Massive Chrome Extension Scam Exposes 20,000 Users to Data Theft

Researchers linked 108 malicious Chrome extensions to a coordinated campaign that exposed about 20,000 users to data theft, ...
Network World

Vim and GNU Emacs: Claude Code helpfully found zero-day exploits for both

A simple prompt sent Claude Code on a mission that uncovered major security vulnerabilities in popular text editors — and then suggested ways to exploit them.
pv magazine International

Cyber threats for PV: What are man-in-the-middle attacks and how do they work

Man-in-the-middle attacks are a serious threat to networked PV systems, allowing attackers to intercept, modify, or disrupt communications, potentially causing operational failures, physical damage, ...
CSO Online

Fortinet releases emergency hotfix for FortiClient EMS zero-day flaw

Exploited in the wild prior to Fortinet’s advisory, the vulnerability allows unauthenticated attackers to remotely execute ...