Cisco disclosed its seventh exploited SD-WAN zero-day of 2026. CVE-2026-20245 allows root command execution with no patch available yet. Here’s what defenders need to know.
A bipartisan House bill proposes sweeping oversight of frontier AI models, including mandatory third-party audits, $300M for NIST’s CAISI, and open-source security grants. It’s already drawing fire over preemption of state AI laws.
Leaks suggest OnePlus plans to push smartphone displays to 240Hz — a gaming monitor spec that raises real questions about battery life, diminishing returns, and whether anyone actually needs it.
UK startup AethexAI raised $3M pre-seed to build voice AI infrastructure purpose-built for Africa and the Middle East. They rebuilt the entire stack for markets where global tools keep failing.
A French court ordered Caisse d’Épargne to reimburse a customer who lost €5,900 to a fake advisor scam, rejecting the bank’s claim that the victim was grossly negligent.
Threat actor PCPJack turned 230 hijacked cloud servers across AWS, Google Cloud, and Azure into a covert SMTP relay network. The operation was exposed after the group left their entire toolkit — including source code and Sliver configs — on an open C2 server.
Password manager Dashlane disclosed that fewer than 20 encrypted vaults were downloaded after a brute-force attack targeting 2FA protections. The vaults are encrypted, but the incident raises questions about how the attackers bypassed two-factor authentication.
A new malware called IronWorm is spreading through npm by poisoning legitimate packages with a Rust-based stealer that uses stolen credentials to self-replicate. It deploys an eBPF rootkit and targets AI development credentials, making it one of the more sophisticated supply chain attacks in recent memory.
The Trump administration’s AI ownership plan appears to favor Anthropic’s public benefit structure as OpenAI navigates complex equity talks ahead of its IPO.
Ranger Protocol’s January 6-10 ICO could reignite interest in MetaDAO, the Solana-based governance platform that’s been looking for a fresh start.
