Crossbench MPs pressure Labor over gas export tax – as it happened
This blog is now closedHundreds of petrol stations across Australia run out of fuel as Albanese inks supply deal with SingaporeSA premier warns One Nation poses threat to federal Labor as Marles says party only ‘about stunts and the vibe’Get our breaking news email, free app or daily news podcastThe pollies have been asked this morning whether people should...
The AI arms race in cybersecurity: Why your SOC needs to evolve now
The threat landscape has fundamentally shifted. Adversaries are no longer just nation-states and elite criminal groups with deep pockets. They are anyone with access to AI, and that changes everything. - Read more
The endpoint tax is over: Elastic Security XDR
Introducing Elastic Security XDR. By eliminating the "endpoint tax,” our agentic security operations platform is enabling organizations to achieve total visibility and world-class prevention across their entire environment. - Read more
Hackers Compromise Trivy Scanner to Inject malicious Scripts and Steal Login Credentials
A sophisticated supply chain attack targeting the official Trivy GitHub Action (aquasecurity/trivy-action) has compromised continuous integration and continuous deployment (CI/CD) pipelines globally. Disclosed in late March 2026, this incident marks the second distinct compromise affecting the Trivy ecosystem within a single month. Threat actors successfully force-pushed 75 out of 76 existing version tags to distribute a malicious...
CVE-2026-23204 net/sched: cls_u32: use skb_header_pointer_careful()
Information published. - Read more
Trivy vulnerability scanner backdoored with credential stealer in supply chain attack
Attackers have compromised the widely used open-source Trivy vulnerability scanner, injecting credential-stealing malware into official releases and GitHub Actions used by thousands of CI/CD workflows. The breach could trigger a cascade of additional supply-chain compromises if impacted projects and organizations don’t rotate their secrets immediately. The attack, disclosed by Trivy maintainers today, results from an...
Metasploit Wrap-Up 03/20/2026
♫ I Just Called ♫ To Say ♫ 7f45 4c46 0201 0100 0000 0000 0000 0000 0300 3e00 0100♫This release contains 2 new exploit modules, 2 enhancements, and 7 bug fixes. Community contributor Chocapikk submitted both exploit modules this release: one targeting AVideo-Encoder’s getImage.php file and another targeting FreePBX. Leading the enhancements is a granularization for LDAP queries allowing the...
Fake ‘Trusted Sender’ Labels Misused in New Apple Mail Phishing Scheme
Fake “trusted sender” labels can mislead users, as scammers embed them into email bodies to disguise phishing emails and create a false sense of security.
The post Fake ‘Trusted Sender’ Labels Misused in New Apple Mail Phishing Scheme appeared first on TechRepublic. - Read more
Latest article
Criminal IP at Infosecurity Europe 2026: Introducing AITEM, the Next Chapter of Attack Surface...
Torrance, United States / California, June 11th, 2026, CyberNewswire Criminal IP by AI SPERA, a cyber threat intelligence platform delivering decision-ready intelligence and attack...
Readers reply: Experts say we should use passkeys, but can a smartphone pin really...
The long-running series in which readers answer other readers’ questions on subjects ranging from trivial flights of fancy to profound scientific and philosophical conceptsThis...
CVE-2023-5678 Excessive time spent in DH check / generation with large Q parameter value
Information published. - Read more
Weekly Metasploit Update: New Kerberos/Certificate tracing options, and multiple new modules
New Tracing OptionsAs hard as we try to ensure that Metasploit is bug free, issues inevitably come up. Whether you’re running a module on...
