SecurityWeek

Fake CAPTCHA pages instruct victims to paste malicious commands in the Windows Terminal instead of the Run dialog.

Abusing DNS record management controls, the threat actor hides the location of malicious content via Cloudflare.

Threat actors replace legitimate commands on the cloned installation webpages with malicious commands.

WatchTowr reports seeing exploitation attempts for CVE-2026-20127 from numerous unique IP addresses.

Trump’s Cyber Strategy calls for stronger deterrence against cyber adversaries, modernization of federal networks, protection of critical infrastructure, and investment in technologies such as AI and post-quantum cryptography.

The malware targets browser and cryptocurrency wallet data, along with system information and user files.

Pentagon CTO Emil Michael said the military is developing procedures for enabling different levels of autonomy in warfare depending on the risk posed.

The bureau is working to determine the scope and impact of the problem, according to a notification sent to members of Congress.

The company will accelerate platform development, expand go-to-market efforts, and invest in product innovation.

Other noteworthy stories that might have slipped under the radar: Avira antivirus vulnerabilities, Transport for London data breach affects 10 million, Gaming cheat exposes North Korean hacker.

The nation-state-grade iOS exploit kit targets 23 vulnerabilities affecting iOS 13 to 17.2.1.

The vulnerability was disclosed and mitigated in 2021 but its in-the-wild exploitation has only now come to light.

Bishop replaces David McKeown, who will take on a role in the private sector after 40 years of government service. 

The attacks, observed since February, show that Iranian hackers already have a presence in the networks of US organizations.

The company has raised a total of $46 million in funding for its developer-focused encryption and orchestration platform.