Infoblox says Lurking Lizard has used fake installers, mobile apps, and lookalike domains to recruit devices into a proxy botnet.
A China-linked threat cluster has been exploiting vulnerable Roundcube servers at U.S. and Canadian universities to steal credentials and deploy backdoor malware.
The campaign has been observed since May and focuses on physics and engineering departments, administrators and professors, as well as organizations involved in astrophysics, particle physics, or national security-related research.
Researchers at cybersecurity company Proofpoint are tracking the activity under the name ‘UNK_MassTraction’ and believe to be associated with a new threat cluster.
Malicious packages on the Node Package Manager (npm) and the Python Package Index (PyPI) delivered stealer malware to developers and users of Paysafe, Skrill, and Neteller payment applications.
The threat actor published at least 17 malicious packages simultaneously, each tasked to exfiltrate credentials and access tokens to a command-and-control server hosted on Amazon Web Services (AWS).
All three payment platforms are popular, with Paysafe being mostly used by e-commerce sites and online marketplaces, gaming platforms, travel businesses, and financial services or software-as-a-service (SaaS) providers.
BeyondTrust warned customers to patch two critical security flaws in its Remote Support (RS) and Privileged Remote Access (PRA) software that could allow attackers to bypass authentication.
The first vulnerability, tracked as CVE-2026–40138, affects the company’s RS remote desktop and assistance platform (versions 25.3.2 or earlier) and the PRA enterprise cybersecurity solution (versions 25.3.2 or earlier). This vulnerability stems from an improper authentication weakness in the authentication subsystem, and successful exploitation enables attackers without privileges to bypass access controls and access targeted appliances, including accounts with elevated privileges.
The second one (CVE-2026–40139) patched this week stems from improper processing of BeyondTrust RS authentication requests, enabling unauthenticated remote attackers to gain unauthorized access to vulnerable instances.
Chuck Brooks is the president of Brooks Consulting International and one of Executive Mosaic’s GovCon Experts.
Artificial intelligence is the defining technology race of the 21st century. It is not only about constructing bigger language models or spending billions on computing infrastructure anymore. It’s about building trust. It will be those governments that can both innovate quickly and also secure their AI systems from cyberattack that will create the future digital economy, national security and the next wave of technology leadership.
This strategic reality is reflected in the White House’s recent executive order on AI innovation and security. Its goals include accelerating AI innovation, enhancing the cybersecurity of federal information systems and allowing for the safe deployment of frontier AI models. More importantly, it recognizes a premise I have preached for years: cybersecurity is no longer a supporting function to digital transformation, but the foundation on which AI innovation rests.
Quantum technologies have transitioned from theoretical physics to practical application more swiftly than many expected. Quantum computers represent a paradigm shift in computation. Quantum computing is becoming increasingly feasible, thanks to recent advancements that make it simpler to build and more effective at scaling. Quantum computing, sensing, encryption, and networking are set to provide exponential computational capabilities while concurrently disrupting cybersecurity frameworks.
Quantum computing will empower computers to analyze vast amounts of data and perform calculations at unprecedented speeds. It will only take a few seconds to download libraries.