A critical authentication bypass vulnerability (CVE-2026-41940) in widely used cPanel and WHM platforms is under active zero-day exploitation, with attempts seen since late February. This flaw allows attackers to gain full control over host systems and managed websites without valid credentials, posing a severe risk to an estimated 1.5 million exposed instances globally. Urgent patching and mitigation are strongly recommended.

A critical security update for Windows 11, KB5083769, is causing widespread failures in third-party backup applications across systems running Windows 11 24H2 and 25H2. This issue stems from a VSS (Volume Shadow Copy Service) timeout, severely impacting data integrity and operational continuity for affected organizations.

The U.S. Federal Bureau of Investigation (FBI) has issued a critical warning to the transportation and logistics industry regarding a dramatic surge in cyber-enabled cargo theft, projecting losses to reach nearly $725 million in the US and Canada by 2025. This alarming 60% increase in estimated losses is driven by sophisticated cybercriminals increasingly leveraging hacking and impersonation tactics to hijack high-value freight. The strategic targeting of logistics systems severely impacts supply chain integrity and introduces significant economic vulnerabilities.

Two former employees of cybersecurity incident response firms have been sentenced to four years in prison each for orchestrating BlackCat (ALPHV) ransomware attacks against U.S. companies. Leveraging their specialized knowledge, these individuals acted as affiliates, exploiting multiple victims including a drone manufacturer and a medical device firm. This case brings to light a critical insider threat within the industry tasked with digital defense.

The U.S. Army is actively seeking industry and academic partners to develop and manufacture meatless proteins directly in combat zones. This ambitious initiative aims to revolutionize field rations by enhancing food supply chain resilience and reducing logistical burdens on warfighters. It also promises to deliver tailored, high-quality nutrition to personnel in forward-deployed environments.

Romania has officially gained access to the U.S. counter-unmanned aerial system (C-UAS) marketplace, a strategic move announced by the Army. This integration into the U.S.-managed platform is part of a broader Pentagon initiative designed to accelerate the procurement of critical C-UAS technology for allied nations, addressing the rapidly evolving threat landscape posed by unmanned systems.

U.S. Army senior officers in Germany are publicly emphasizing the critical strategic benefits of their presence, coming just a day after former President Trump signaled a potential review of troop numbers in the country. They highlighted roles in adversary deterrence, vital combat training with NATO allies on European terrain, and crucial absorption of lessons from the ongoing conflict in Ukraine.

The U.S. Marine Corps is poised for a significant operational shift, accelerating the integration of unmanned systems to reshape its combat and intelligence, surveillance, and reconnaissance (ISR) capabilities. This evolution includes fielding drone wingmen for fighter jets by decade's end and transitioning to organic ISR operations, significantly reducing reliance on contractor-owned, contractor-operated (COCO) models.

A new sophisticated phishing-as-a-service (PaaS) platform named Bluekit is rapidly evolving, notably integrating an "AI Assistant" to streamline campaign generation. This comprehensive kit provides over 40 customizable templates targeting popular email, cloud, and financial services, significantly lowering the barrier for cybercriminals to launch advanced attacks. The development highlights a growing trend of AI integration in cybercrime operations.

A Brazilian tech firm specializing in DDoS protection, Huge Networks, has been exposed for allegedly enabling a powerful botnet behind an extensive campaign of massive DDoS attacks targeting other network operators in Brazil. Investigations revealed the firm's infrastructure and CEO's authentication keys were used to build and maintain the botnet. While the CEO claims a security breach and competitor sabotage, evidence points to sophisticated, long-running malicious activity.

A critical Linux local privilege escalation (LPE) flaw, codenamed 'Copy Fail' (CVE-2026-31431, CVSS 7.8), has been disclosed, enabling unprivileged local users to gain root access on major distributions. This high-severity vulnerability, introduced in a 2017 kernel commit, impacts nearly all Linux systems shipped since then, posing a significant risk to servers and endpoints. Its ease of exploitation, cross-container capabilities, and lack of reliance on race conditions make it particularly dangerous for defense and enterprise environments.

Two popular open-source packages, PyTorch Lightning and Intercom-client, were compromised in a sophisticated supply chain attack facilitating widespread credential theft. This incident, linked to the ongoing Mini Shai-Hulud campaign and threat actor TeamPCP, leveraged obfuscated JavaScript payloads and npm-based propagation. Developers are urged to take immediate mitigation steps as investigations into the breach's root cause continue.