Ghostwriter’s March 2026 Ukraine attacks use PDF lures and geofencing to deploy Cobalt Strike on government targets.

FrostyNeighbor, a long-running cyberespionage actor apparently aligned with the interests of Belarus, has been active recently in campaigns ...

A known Belarussian cyber-espionage group is back with a threat campaign against targets in Eastern Europe that uses spear-phishing to deliver malicious payloads to Eastern European government and ...

It sounds like science fiction, but that’s how one company is trying to tackle a real workforce challenge in Canada ...

In March 2026, someone hijacked a maintainer account for Axios, a JavaScript HTTP library downloaded more than 45 million ...

Instructure, the edtech giant behind the widely popular Canvas learning management system (LMS), has reached an "agreement" ...

Education technology giant Instructure has confirmed that a security vulnerability allowed hackers to modify Canvas login ...

TanStack had 2FA, OIDC publishing, and Sigstore provenance on every release. The Mini Shai-Hulud worm published 84 malicious ...

Weekly cybersecurity recap covering zero-days, malware, phishing, supply chain attacks, cloud threats, AI security risks, and ...

The People’s Republic of China was founded in opposition to empire. The Chinese Communist Party built its identity on anti-imperialism, presenting itself as the vanguard of a global struggle against ...

But the Trump administration’s approach is not reciprocity at all. It is coercive unilateralism dressed up as reciprocity. The United States has pursued reciprocal trade for the past 90 years, but ...

OpenAI’s Codex Chrome extension pushes the coding agent into signed-in browser work, making it more useful for real tasks while raising new questions about access, approvals, and agentic AI risk.The ...