CrowdStrike and Google take down botnet used by hackers to target software developers in supply chain attacks

Cybercriminals used the Glassworm botnet to infect open source software projects with malware, and in turn hack the developers and companies that use that software.

UK High Court Issues ‘omnibus’ Order To Streamline Piracy Blocking

With pirate sites frequently evading court orders by switching names or website domains, the U.K. is moving to make it easier to make blocking orders stick.

RevEng.AI raises $15M to secure AI-generated software

RevEng.AI, a cybersecurity companyfocused on software supply chain verification, has raised $15 million in aSeries A funding round led by NATO Innovation Fund, with participation fromSands Capital, In…

‘No Future Updates’—Google Will Confirm Play Store App Deletion

Google reveals new Android warning — apps removed from Play Store no longer receive updates.

UK Visa Portal exposed thousands of applicants’ passports and selfies — then called the lawyers on us

The third-party website exposed passports, selfies, and the location data of applicants who submitted their documents as part of the U.K. visa application process. Instead of fixing the issue, the website sent attorneys.

Dutch government blocks US company from acquisition, citing ‘risk to public interest’

The move to block the acquisition of the cloud company that hosts the Dutch digital ID service comes as Europe continues to reduce its reliance on U.S. technology.

Iranian hackers blamed for breach of Los Angeles transit system that took weeks to recover

An Israeli cybersecurity firm said Iran’s government is behind Ababil of Minab, a fake hacktivist persona that has claimed a series of data breaches after the start of the war in Iran.

7-Eleven data breach affects over 185,000 people’s personal data

The data breach included names, dates-of-birth, postal addresses, and Social Security numbers, according to a state government listing.

AI shrinks zero-day exploit time from a year to a single day, heading toward one minute — Zero-Day Clock warns security window has collapsed

Zero-Day clock visualizes the effect of AI on software security and predicts that exploits will happen one minute after disclosure in 2027.