Norwegian defense innovator Kongsberg has reported a substantial surge in its first-quarter order intake, indicating robust demand across the global defense sector. This dramatic financial upswing is primarily driven by heightened international interest in advanced weapon systems and counter-drone technologies, propelling the company toward significant strategic expansion, particularly within the United States market.

The U.S. Army is poised to fundamentally alter its approach to air defense, planning a new initiative to develop significantly more cost-effective interceptor missiles. This strategic pivot, recently outlined by Army leadership, aims to drastically reduce the per-unit cost of defensive munitions while securing complete intellectual property ownership for the service.

While the Pentagon rapidly integrates advanced agentic AI to enhance operational efficiency, these same powerful tools are poised to fundamentally transform the landscape of digital crime, potentially equipping malicious actors with capabilities previously reserved for state-sponsored operations. This development poses a significant challenge to global cybersecurity, demanding a reevaluation of defensive strategies.

A sophisticated supply chain attack has compromised government and scientific organizations worldwide through malicious code embedded in legitimate Daemon Tools software. Threat actors, believed to be Chinese-speaking, injected a backdoor into multiple iterations of the popular disk imaging tool, available for download from its official site. This ongoing campaign targets thousands of machines, selectively deploying advanced malware to high-value entities.

A newly identified Linux-based remote access trojan (RAT), dubbed Quasar Linux, poses a significant threat to the software supply chain by specifically targeting developer credentials. This sophisticated backdoor is engineered for stealthy, long-term compromise, enabling attackers to gain deep access to critical development infrastructure.

The Cybersecurity and Infrastructure Security Agency (CISA) has launched a significant initiative to bolster national critical infrastructure against sophisticated nation-state cyber threats, recognizing that adversaries have already established footholds within vital operational systems. Named CI Fortify, the program aims to ensure essential services can sustain operations for extended periods, even during active cyber warfare scenarios with disrupted external dependencies.

A recent cyber intrusion targeting a Mexican water utility revealed a sophisticated reliance on artificial intelligence, with advanced models playing a central role in guiding adversaries toward critical operational technology. Cybersecurity researchers detailed how an unidentified threat actor leveraged AI platforms to accelerate offensive operations and independently identify high-value industrial control systems within the network.

Disc Soft Limited, the creator of DAEMON Tools Lite, has confirmed that its popular software was compromised through a supply chain attack, leading to the distribution of malicious installers. The company has since released an updated, clean version, urging users of affected builds to take immediate action.

The United States Commerce Department is vigorously promoting foreign direct investment, signaling a commitment to assist international businesses with critical visa pathways if they establish manufacturing and development facilities on American soil. This strategic outreach occurs amidst a challenging global economic climate, marked by evolving trade policies and geopolitical tensions that have ripple effects on essential commodities.

A newly identified critical vulnerability in the widely adopted Node.js sandboxing library, `vm2`, poses a significant risk by enabling attackers to bypass its isolation mechanisms and execute arbitrary code on the underlying host system. This flaw could compromise numerous online platforms, automation tools, and SaaS applications that rely on `vm2` to safely run untrusted JavaScript code, potentially exposing sensitive infrastructure.

A sophisticated phishing operation is exploiting Google's advertising network to hijack credentials for GoDaddy's ManageWP platform, a critical tool for managing numerous WordPress sites. This campaign employs an advanced adversary-in-the-middle technique, allowing attackers to bypass standard security measures and capture login details, including multi-factor authentication codes, in real-time. The method positions malicious ads above legitimate search results, deceiving users seeking to access their site management dashboards.

AI agents are rapidly proliferating within enterprise environments, often outpacing the establishment of adequate governance and security controls. This presents a critical vulnerability, as these autonomous entities operate across applications and accrue permissions outside the visibility of traditional identity management systems. The unmanaged sprawl of these agents introduces a new layer of hidden operational risk.