North Korea Uses ClickFix to Target macOS Users' Data
Microsoft Threat Intelligence uncovered a new macOS‑focused ClickFix campaign linked to the North Korean group Sapphire Sleet. The attackers pose as recruiters, schedule fake technical interviews, and convince victims to run a malicious AppleScript named “Zoom SDK Update.scpt.” The script launches a multistage payload that harvests credentials, steals cryptocurrency wallets, browsers, keychains, Apple Notes, and Telegram data, and evades macOS’s TCC consent framework. Apple has issued updates to block the associated infrastructure, while Microsoft issued mitigation guidance.
Japan Leaves WWII Ghosts Behind
Japan announced that two amphibious assault ships, a destroyer and a large ground‑troop detachment will sail to the Philippines for joint combat training. The deployment marks the first overseas combat operation by Japanese forces since World War II, reflecting a reinterpretation...
'Harmless' Global Adware Transforms Into an AV Killer
A threat actor operating as Dragon Boss Solutions LLC pushed a malicious update on March 22, 2025 that transformed its ad‑ware into a potent antivirus‑disabling payload. The update affected roughly 23,500 computers in 124 countries, with half of the victims...
Google, Pentagon Discuss Classified AI Deal
Google is in talks with the U.S. Department of Defense to let the Pentagon use its Gemini AI models in classified environments. The discussions include a contract that would permit all lawful defense applications while adding clauses to block domestic...
Picogrid Awarded Contract to Streamline XVIII Airborne Corps Battlefield Integration
Picogrid secured a contract to help the XVIII Airborne Corps integrate emerging battlefield systems, with a focus on counter‑unmanned aerial threats. The firm will field its Legion and Expeditionary Command‑and‑Control Nodes to fuse sensors, response tools, and mission software even...
Trump Says Israel and Lebanon Have Agreed to 10-Day Ceasefire
U.S. President Donald Trump announced on social media that Israel and Lebanon have agreed to a 10‑day ceasefire starting Thursday evening, and he plans to host Lebanese President Joseph Aoun and Israeli Prime Minister Benjamin Netanyahu at the White House...
Threat Exposure Management Establishes a Risk-Driven Approach for Federal Agencies
Federal agencies are adopting Continuous Threat Exposure Management (CTEM) to shift from traditional vulnerability counting to a risk‑driven security posture. CDW’s leaders describe CTEM as a five‑stage framework—scoping, discovery, prioritization, validation, and mobilization—that ties technical findings to business impact. By...
Could Bulgaria Replace Hungary as Putin’s Proxy Inside the EU?
Viktor Orbán’s electoral defeat ends Hungary’s outspoken pro‑Russian stance in the EU, raising hopes in Kyiv for stronger Western backing. Bulgaria’s parliamentary vote on April 19 could elevate former president Rumen Radev, a known Kremlin sympathizer, to a governing role. If Radev’s...
North Korea Targets macOS Users in Latest Heist
North Korean Lazarus Group offshoot Sapphire Sleet is targeting macOS users with a fake Zoom SDK update delivered via a malicious AppleScript. The campaign begins with LinkedIn recruiter scams aimed at finance professionals, then tricks victims into running the script, which...
How the Navy Can Navigate the 4th Industrial Rev.
The Navy is confronting the Fourth Industrial Revolution, where digital, physical, and biological technologies converge to reshape warfare. Authors Pat Garrett and Frank Hoffman argue that the service cannot be a passive adopter; it must steer the integration of AI,...
U.S. Army Names New MV-75 Tiltrotor 'Cheyenne II'
The U.S. Army officially designated Bell's next‑generation tiltrotor as the MV‑75 “Cheyenne II.” The aircraft is intended to replace aging UH‑60 Black Hawks and supplement the V‑22 Osprey in utility and assault roles. The program targets an initial operating capability by...
Newly Discovered PowMix Botnet Hits Czech Workers Using Randomized C2 Traffic
Researchers at Cisco Talos have uncovered a new botnet, PowMix, actively targeting Czech workers since at least December 2025. The malware is delivered through phishing emails that contain a malicious ZIP file, which drops a Windows shortcut that launches a...
Starlink Outage Hit Drone Tests, Exposing Pentagon’s Growing Reliance on SpaceX
In August 2024 a global Starlink outage crippled two dozen U.S. Navy unmanned surface vessels off California, halting communications for about an hour. Internal Navy documents show the outage exposed a single point of failure for the Pentagon’s autonomous drone...
Alarm Bells Follow New Report of Looming US Plan to Attack Cuba
A USA Today report citing unnamed sources claims the Pentagon is quietly preparing for a possible military operation against Cuba after President Donald Trump repeatedly hinted at taking the island. Trump’s recent remarks, including a flippant comment about stopping by...
Trump's Border Wall Lurches Closer to Schedule
U.S. Customs and Border Protection reports that the $46 billion Trump‑era border wall is now ahead of schedule and under budget, having completed roughly 50 miles of primary wall, 5.5 miles of buoy barriers and 13.2 miles of secondary fencing. Construction is averaging about...
Another US Aircraft Carrier Struck by Onboard Fire
A small onboard fire erupted on the Nimitz‑class carrier USS Dwight D. Eisenhower while it was undergoing a Planned Incremental Availability overhaul at Norfolk Naval Shipyard on April 14. The blaze was quickly contained by the crew and shipyard personnel,...
Officials Seize 53 DDoS-for-Hire Domains in Ongoing Crackdown
Authorities from 21 nations coordinated Operation PowerOFF to dismantle 53 DDoS‑for‑hire domains and seize related servers and databases. The crackdown yielded data on more than 3 million alleged criminal accounts and led to four arrests. Over 75,000 warning emails and letters...
State Embarks on Search for New Content Management Software Platform
The U.S. State Department issued a request for information seeking a commercial‑off‑the‑shelf cloud content‑management platform. The solution must be FedRAMP High and DoD Impact Level 4 certified, offer no‑code configuration, and include at least 1,500 pre‑built integrations with SaaS tools like...
Estonia’s CV90 IFV Pivot Reflective of Changing Battlefield Threats
Estonia has scrapped plans for a new infantry fighting vehicle fleet and will instead invest €100 million ($117.8 million) to upgrade its existing 44 CV9035NL CV90s. The unallocated portion of the program, estimated at over $400 million, is expected to fund counter‑UAS and...
CEO Interview: Underdark
Underdark operates in the cyber threat intelligence and dark‑web monitoring market, competing with larger firms such as Recorded Future, Digital Shadows, Flashpoint and Cyberint. While most rivals rely on AI‑assisted crawlers to collect data, Underdark’s core service is human intelligence—direct...
House Hands Trump a Win with Failed Iran War Powers Vote
House Democrats failed a war‑powers resolution aimed at limiting President Trump’s ability to engage Iran, losing 213‑214 in a tightly contested vote. The measure, pushed by Foreign Affairs Committee ranking member Greg Meeks, marked the third unsuccessful Democratic attempt to...
USMC Tests TRV-150C Resupply Aircraft System Aboard Amphibious Ship
The U.S. Marine Corps has finished shipboard trials of the TRV‑150C tactical resupply uncrewed aircraft system aboard an amphibious transport dock. Over two weeks at Naval Air Station Patuxent River, Marines launched and recovered the drone multiple times, proving cargo...
Northrop Grumman Receives $475m Contract to Accelerate GPI Programme
Northrop Grumman has secured an additional $475.3 million from the Missile Defense Agency to speed up its Glide Phase Interceptor (GPI) program, pushing total investment past $1.3 billion. The funding, awarded under a Prototype Project Other Transaction Agreement, targets a Preliminary Design...
How China’s Arctic Ambitions Inflate Russia’s Geopolitical Leverage
Russia’s Northern Sea Route is framed by law as a historic national artery, not an open international corridor. While China promotes the route as a "Polar Silk Road" and anticipates commercial growth, Russian statutes require prior authorization, routing, and reporting,...
Iran’s F-4 Phantom Escorts Asim Munir to Tehran — Relic Aircraft Once Used by USAF as Target Drone
Iran’s air force deployed a vintage F‑4 Phantom II to escort Pakistan Army Chief Asim Munir’s aircraft into Tehran on April 15, underscoring Tehran’s remaining Cold‑War‑era air capability. The visit coincides with fragile U.S.–Iran ceasefire talks and a push for...
Google Cloud Storage Weaponized for Clandestine Remcos RAT Delivery
Threat actors are weaponizing Google Cloud Storage to host phishing pages that silently deliver the Remcos remote‑access trojan. Emails direct victims to fake Google Drive login screens on the legitimate storage.googleapis.com domain, harvesting credentials and deploying a JavaScript loader. The...
Arms Shipments Intercepted in Belgium
Belgian authorities intercepted UK‑origin military components destined for Israel after alerts from investigative outlets and campaign groups. The cargo, including fire‑control systems and aircraft spare parts, arrived at Liège Airport on 24 March and was slated for onward flight to Tel...
Extensive MuddyWater-Like Attack Campaign Against Middle Eastern Critical Infrastructure Detailed
A threat group mirroring Iran‑backed MuddyWater launched a large‑scale campaign against Middle Eastern critical‑infrastructure entities beginning in February. Exploiting five vulnerabilities—including SmarterMail (CVE‑2025‑52691) and Langflow (CVE‑2025‑34291)—the actors breached more than 12,000 internet‑exposed systems and used brute‑force attacks on Outlook Web...
AISLE’s Open Analyzer — Finding and Fixing Vulnerabilities without Gated Frontier Models
AISLE unveiled Open Analyzer, an open‑source vulnerability scanner that leverages small, free LLMs instead of gated frontier models. The tool aims to provide a reliable source of truth by cutting false positives and negatives that plague traditional scanners. AISLE claims...
Pano Investigation: No Evidence of Russian Drones in Belgium Despite €50m Emergency Spend
The Belgian TV program Pano found no verifiable evidence of Russian drones over Belgium, contradicting Defence Minister Theo Francken’s public warnings. An emergency procurement of counter‑drone systems cost about €50 million ($55 m) and was executed without a standard tender, leading to...
Experimental Operations Unit Accelerates Collaborative Combat Aircraft Program
The Air Force’s Experimental Operations Unit (EOP) wrapped up a pivotal exercise with the Collaborative Combat Aircraft (CCA) at Edwards Air Force Base. The drill united test authorities from Air Force Materiel Command with operational leaders from Air Combat Command,...
Cuba: The Bay of Pigs Invasion 65 Years Later
On the 65th anniversary of the Bay of Pigs, the National Security Archive released a trove of declassified documents revealing President Kennedy’s contemplation of CIA restructuring after the fiasco. A secret memo shows White House aide Arthur Schlesinger studying the...
USCM, Columbia University Eye Defence-Critical Metals in Red Mud
US Critical Materials Corp. and Columbia University have signed a two‑year research pact to extract defence‑critical metals from red mud, the waste by‑product of aluminium refining. The "Mud to Metal" program will focus on gallium, scandium, titanium and rare‑earth elements,...
L3Harris Technologies Plans $1.3B Solid Rocket Motor Expansion in Virginia
L3Harris Technologies announced a $1.3 billion expansion of its solid‑rocket‑motor (SRM) manufacturing campus in Orange County, Virginia, which will more than double production space and create over 350 jobs. The effort builds on a $41.2 million upgrade launched earlier this year and...
Can the Arctic Council Survive?
The Arctic Council is grappling with a leadership vacuum after Greenland’s foreign minister resigned, leaving the rotating chairmanship unfilled. Simultaneously, renewed U.S. interest in Greenland and lingering Russia‑Ukraine tensions have heightened geopolitical pressure on the intergovernmental forum. Despite these strains,...
Cinia Taps Nokia for DDoS Protection of Critical Infrastructure
Cinia announced a new managed security service that leverages Nokia’s Deepfield Defender to provide 24/7 DDoS protection for its critical infrastructure networks. The AI‑based solution embeds detection and mitigation directly into the transport layer, giving Finnish customers real‑time threat awareness....
Two-Factor Authentication Breaks Free From the Desktop
Two-factor authentication (2FA) is expanding beyond traditional IT logins to protect physical assets such as cars, home heating systems, and medical devices. In the automotive sector, firms like Keyfree Technologies are pairing in‑vehicle hardware with mobile apps to require one‑time...
Microsoft's Original Windows Secure Boot Certificate Is Expiring
Microsoft announced that the original UEFI Secure Boot certificates, first deployed in 2011, will expire on June 24, 2024. The company is urging IT leaders to apply the updated 2023 certificates to all Windows PCs built before 2024 to maintain the hardware‑based...
What Are Security Experts Saying About OpenAI’s GPT-5.4-Cyber?
OpenAI has launched GPT‑5.4‑Cyber, a defensive‑oriented AI model, and is scaling its Trusted Access for Cyber (TAC) program to thousands of verified individual defenders and hundreds of critical‑infrastructure groups. Unlike Anthropic’s Claude Mythos, which remains limited to a handful of...
OpenAI Launches GPT-5.4-Cyber to Boost Defensive Cybersecurity
OpenAI unveiled GPT-5.4-Cyber, a defensive‑focused variant of its flagship GPT‑5.4 model, featuring binary reverse‑engineering to analyze compiled code without source access. The launch coincides with the expansion of its Trusted Access for Cyber (TAC) program, now available to thousands of...
Critical Nonproliferation Treaty Review Conference Opens April 27
Representatives from roughly 190 governments will gather in New York from April 27 to May 22 for the 11th Nuclear Nonproliferation Treaty (NPT) Review Conference, the first such meeting since the 2022 session failed to produce a consensus outcome. The conference aims...
Beyond the Rupture: Where Are China-Japan Relations Heading?
Since November 2025, Sino‑Japanese relations have plunged to a decade low after Japan’s new prime minister Takaichi Sanae’s Taiwan remarks, prompting China to impose travel bans, seafood import bans, and heightened military activity. The crisis deepened with a knife‑wielding Self‑Defense Forces...
USA Resumes Sanctions on Russian and Iranian Oil
The U.S. Treasury announced it will not renew the temporary waivers that exempted Russian and Iranian crude oil from sanctions, ending the relief on April 11 for Russia and April 19 for Iran. The waivers, introduced during the Trump era to ease...
US Has Turned Back 13 Ships in Blockade of Iran, Joint Chiefs Chairman Says
The U.S. has intercepted 13 commercial vessels since it began a naval blockade of Iran’s ports on Tuesday, according to Joint Chiefs Chairman Gen. Dan Caine. The Abraham Lincoln carrier strike group leads the operation, supported by fighters, intelligence aircraft,...
Facing the Evolving Needs of Maritime Security
Israel Aerospace Industries (IAI) is promoting its next‑generation naval suite, highlighted by the BARAK MX air‑defence system, to address a widening spectrum of maritime threats ranging from missiles and drones to sea mines and unmanned vessels. The solution blends advanced radar,...
Intercede Now Supports Idemia PS Devices for Unified FIDO, PKI Credential Management
Intercede has integrated Idemia Public Security’s newest authentication hardware into its MyID CMS 12.18 platform, enabling unified management of both FIDO and PKI credentials. The Idemia devices, built on the COSMO X platform, meet the FIPS 201 PIV standard required for...
Australia’s New National Defense Strategy Feels Written for a Bygone Era
Australia’s 2026 National Defense Strategy outlines an additional AU$53 bn (≈US$35 bn) defense budget over the next decade, aiming to lift spending to 3% of GDP. While the document largely reiterates progress from the 2024 strategy, it introduces a medium‑range surface‑to‑air missile...
The Seven Democrats Who Joined Republicans in Opposing Measure to Block Arms Sales to Israel
The Senate rejected Senator Bernie Sanders' joint resolution to block the sale of military bulldozers to Israel, with a 40‑59 vote after seven Democratic senators joined Republicans. A companion measure to halt the transfer of 12,000 1,000‑pound bombs also failed,...
Germany’s Final Type 424 SIGINT Ship Enters Production
Germany’s final Type 424 signals‑intelligence vessel entered steel‑cutting at Peene‑Werft, marking the start of construction for all three ships in the class. The 130‑metre platform will be operated jointly by the German Navy and the Cyber and Information Domain Service, replacing...
Lockheed Martin Secures $1.36 Billion for Hypersonic Missile Program
Lockheed Martin has been awarded a $1.36 billion sole‑source contract modification from the U.S. Navy’s Strategic Systems Programs to move the Common Hypersonic Glide Body (CPS) from testing to operational status. The funding, drawn from Navy and Army budgets, covers program...