-
·
The Justice Department and FBI seized 13 fake consulting websites that officials say targeted US clearance holders with paid research work designed to obtain sensitive government information.¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Military bases and installations are hardly immune to the problems of the U.S. power grid, which was struggling to handle the nation’s needs even before the AI boom added a huge new demand for electricity.
“You can reasonably take the provocative stance that in the AI race, energy actually doesn't matter, the problem's so bad. We have a problem with our critical infrastructure today in all three of those buckets”: power generation, transmission, and system use, Tori Shivanandan, president and chief operating officer at Radiant Nuclear, said Monday during Fortune’s Brainstorm Tech event in Aspen, Colo.
The Pentagon wants to know whether small nuclear reactors are part of the solution, and Shivanandan says her company can help.
“Radiant is about 18 months away from delivering our first reactor to a U.S. military base. The U.S. military is a bold first customer here. Importantly, because failures are really bad,” said Shivanandan. “Many have experienced the outage in Texas, unaware that our critical bases for the Air Force were down for not just hours but days, but also the grid fails, that's hospitals, that's livelihood.”
The company plans to deploy small nuclear reactors at Buckley Space Force Base in Aurora, Colo., and begin testing the reactor this summer at the Idaho National Laboratory, Axios Denver reported.
The Pentagon is the “largest institutional customer of power in the U.S…and they're down to which use case. When the grid is under attack, where do we need to make sure that power is up and consistent? These are use cases for one megawatt micro reactors. You can imagine across the US—both on military and off military bases. When it comes to planning for our worst days, which is happening a lot in Washington right now. They're being—with a scalpel, deciding which infrastructure we need to make sure has reliable base load power.”
Welcome
You’ve reached the Defense Business Brief, where we dig into what the Pentagon buys, who they’re buying from, and why. Send along your tips, feedback, and song recommendations to lwilliams@defenseone.com. Check out the Defense Business Brief archive here, and tell your friends to subscribe!
Commercial companies reporting for duty? House lawmakers want the Pentagon to create a “civil reserve industrial base” of commercial companies the military can lean on during peacetime and contingency operations, according to a provision in the House Armed Services Committee’s draft defense policy bill.
- If adopted, the program would sit under the Pentagon’s acquisition and sustainment shop with the goal of enhancing “the availability and responsiveness of sustainment and repair capabilities” for military operations and include “arrangements to store, maintain, and manage replenishment parts and related equipment,” according to legislative language.
- The Pentagon would “identify” commercial facilities near areas of operation, including each combatant command, and facilities in allied and partner nations.
- Companies would provide facilities and personnel.
- Another provision pushes the Army to modernize its organic industrial base. The measure calls for an updated resourcing model that reduces Army depot production costs and that those costs are competitive with the private sector. It would also limit the Army Secretary from “decreasing workload at an Army depot by more than 10 percent” without congressional notice.
Making moves + other news
- Drone boats on a rescue mission. The crew of an Apache helicopter downed near the Strait of Hormuz were rescued by a robot surface vessel built by Saronic. The 24-foot Navy drone was sent to the CENTCOM region in March and operated by Task Force 59. The boat picked up crew members and moved them to another location where they were retrieved by helicopter, Defense One’s Thomas Novelly reports.
- Raytheon is planning a $100 million expansion of its Portsmouth, R.I. facility which produces and tests Patriot missile subcomponents. The move will increase production, lower tier air and missile defense sensor testing, and ultimately help speed up deliveries, Tom Laliberty, Raytheon’s land and air defense systems president said in a news release.
- The Space Force awarded $437.7 million across two contracts to produce the first satellites for its Protected Tactical Satellite Communications (SATCOM) – Global (PTS-G) program. The satellites will provide anti-jamming and other counter measures to maintain connectivity in contested communications environments, according to a news release sent Tuesday.
- The Pentagon released its list of banned Chinese companies on Monday. E-commerce conglomerate Alibaba is a new addition, alongside Baidu and BYD, a car manufacturer, CNBC’s Anniek Bao writes. Alibaba denounced its inclusion on the list, calling it baseless and threatening legal action: “Alibaba is not a Chinese military company nor part of any military-civil fusion strategy. We will take all available legal action against attempts to misrepresent our company,” the company said in a statement.
- Counterdrone company Epirus adds to its C-suite with Mark Cuyler as chief operating officer and Mark Horton as its chief people officer. Cuyler hails from Saildrone and Horton from Magic AI.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
The FBI and Justice Department seized 13 websites allegedly used by Chinese intelligence operatives to target current and former U.S. officials and military personnel with access to classified government information.
In a press release, the DOJ said the domains were designed to look like legitimate consulting firms and were used to advertise vague, well-paid consulting roles aimed at security clearance holders. The campaign, which allegedly began in November 2023, sought to entice Americans into producing research reports or sharing insider information on topics of interest to the Chinese government, according to court documents.
The seized domains included sites associated with firm names like Centrik Global Consulting, Rightinfo Consulting, Finnacle-Vesper Consulting, CYDF Consulting, Pulse Wave Global, Catalyst Global Solutions, Horizzen, GeoIndopacific, SafeSec Group and others.
The campaign relied on familiar job-market platforms and freelance sites to advertise positions such as “Senior Analyst” and “International Affairs Consultant.”
The Justice Department said the operators used aliases, fake personas, stolen identities and artificial intelligence-generated photographs to make the companies appear credible. The alleged scheme also involved encrypted messaging apps, including Telegram, overseas payments, cryptocurrency and online payment accounts registered under false names, according to an affidavit filed in support of the seizure warrants.
The takedowns mark the latest U.S. government effort to disrupt foreign intelligence schemes that blend online recruiting and financial incentives to reach Americans with access to sensitive national security information.
Waves of federal layoffs over the past year have pushed thousands of government employees and contractors into an uncertain job market. That disruption has created renewed collection opportunities for foreign intelligence services.
Nextgov/FCW reported in January that a suspected Chinese intelligence outfit contacted a former senior State Department official late last year and offered payment for an assessment of U.S. policy priorities in Venezuela. The person who contacted the former official claimed to be affiliated with a sham consulting firm that had previously surfaced in research first reported by Nextgov/FCW last September, that assessed the firm was part of a broader network of fake companies tied to China.
The U.S. has sought to further publicize targeting efforts. In a rare public disclosure, Army Deputy Chief of Staff for Intelligence Lt. Gen. Anthony R. Hale issued a memo in November warning that foreign adversaries are targeting soldiers, civilians and their families through fake companies and phony recruiters. The advisory was sent to more than a million personnel across the Army, and later to members of the media, marking an unusually direct acknowledgment of the threat.
]]>¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
This article was created in collaboration with Wondershare.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
ReversingLabs reveals how hackers exploit social media engagement metrics to deliver Vidar infostealer malware to thousands of unsuspecting users.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Cybersecurity researchers have warned of a “resurgence and expansion” of JDY, a covert network associated with China-nexus state-sponsored threat actors. “The JDY botnet comprises over 1,500 SOHO [small office and home office] and IoT devices and operates as a centrally controlled, high-performance scanner used to discover, fingerprint, and continuously map exposed services at scale,” Lumen’s
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
ServiceNow applied a security update after an API access issue exposed customer data, with affected firms notified through direct support cases.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Several senior federal technology officials responsible for agency cybersecurity and IT systems are frustrated by the lack of White House guidance on adopting Anthropic’s powerful Mythos model, several sources told Nextgov/FCW.
Agency chief information officers, or CIOs, manage swaths of digital infrastructure that supports government operations and are facing renewed pressure to better defend agency networks as officials assess how powerful AI systems could help hackers find and exploit vulnerabilities faster.
Anthropic surgically rolled out Mythos access to select organizations in early April and recently expanded this effort — dubbed Project Glasswing — to partners in industry and other nations. The model has been going through a non-public distribution process on grounds that, in the wrong hands, it can boost adversaries’ hacking capabilities.
Select parts of the U.S. government, such as the intelligence community, already have access. But many federal tech leaders have privately complained that the White House Office of the National Cyber Director hasn’t sufficiently briefed officials on plans for accessing, implementing and using the model to scan agency networks for vulnerabilities, according to five people familiar with the matter.
[Editor's note: It's been barely three months since Defense Secretary Pete Hegseth ordered Anthropic declared a national supply-chain risk and President Trump tweeted that "EVERY Federal Agency" should stop using its products. A judge has since ruled these actions "arbitrary and capricious."]
The people spoke on the condition of anonymity to be candid about their knowledge of issues with the White House.
The agitation varies across agencies. Some CIOs have taken issue with a lack of direction in how they would use Mythos to scan for digital flaws, while others are more concerned with why they haven’t gained access to the model altogether.
There has been “tremendous frustration” with ONCD, the first person said. The ire stems, in part, from the fact that ONCD has largely prevented government tech leaders from making decisions about AI model use, while at the same time devoting much of its energy toward engagements with industry about AI policy.
“There’s frustration watching the private sector utilize [these models]” while many agency CIOs “are arbitrarily blocked,” said the first person, adding that there’s been a “general prohibition” imposed on anyone who wants to engage with Anthropic further. They said there’s been near-complete silence from ONCD, despite many government agencies wanting to use Mythos to find unseen vulnerabilities and fix them to better defend their networks.
“Nobody briefed us on [Mythos],” the second person told Nextgov/FCW. “I think the frustration stems from there being zero communication on the topic from ONCD.”
Absent guidance from ONCD or other executive branch agencies, Anthropic held briefings for federal CIOs in early May to help them learn more about Mythos and how it would impact the broader cybersecurity landscape, Nextgov/FCW first reported.
The concerns are significant because they suggest that some of the federal government’s most target-rich agencies may lack clear direction or consistent access to a tool that could help them find and fix security flaws more quickly.
The federal enterprise is a prime target for hackers, as adversaries have for years sought access to government emails, employee records and other sensitive data.
Several top officials have made plans to leave the White House cyber office in the last few weeks, including its head of policy.
ONCD did not respond to a request for comment. Anthropic declined to comment.
The third person, who has held discussions with at least three federal CIOs, said several are asking the private sector to help them learn more about Mythos and protect their networks from AI-supported cyberattacks.
“Federal CIOs are taking a system-wide view and approach to their technology,” the third person told Nextgov/FCW. “While they are interested in frontier AI models’ capabilities to identify vulnerabilities in their networks, they know they can’t wait for access. So they’re taking steps now to coordinate with industry to accelerate their patching process, receive vulnerability disclosures as quickly as possible and operationalize a more automated remediation process.”
The fourth person cautioned that, while there are frustrations, CIOs’ concerns are not necessarily uniform across government. Pure access to powerful AI tools like Mythos is “not some magical silver bullet,” the person said, because agencies would still have to validate the vulnerabilities they flag and determine how to respond. Some CIO offices may be more eager for Mythos access than others, depending on their cybersecurity maturity and other factors, the person added.
While ONCD may be perceived as an obstacle, the office has been lobbying for broader access to frontier model capabilities in some cases, though its approach “may not be uniform,” this fourth person said.
Access dynamics could change in the coming months. The Cybersecurity and Infrastructure Security Agency is planning a binding operational directive that would push agencies to prioritize the most urgent risks to federal networks, a shift informed in part by AI-enabled cyber threats, the agency’s acting director said Tuesday.
The administration’s approach to AI has shifted in recent months as officials confront an emerging class of cyber-focused models that can rapidly identify vulnerabilities across computer networks, becoming a major driver of discussions over how AI systems could reshape defensive and offensive cyber operations.
President Donald Trump recently signed an AI security executive order that encourages developers to submit powerful new models to a 30-day government review before public release. On Friday, he signed a memorandum aimed at speeding up government use of advanced AI across the military and intelligence community.
]]>¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Fortinet, Ivanti, and SAP have released security updates to address multiple critical security vulnerabilities that could result in arbitrary code execution and information disclosure. The security flaw patched by Fortinet relates to a command injection vulnerability in FortiSandbox, FortiSandbox Cloud, and FortiSandbox PaaS WEB UI. It’s tracked as CVE-2026-25089 (CVSS score: 9.1). “An
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
A high-severity unpatched security flaw in Langflow, an open-source low-code platform to build artificial intelligence (AI) applications, has come under active exploitation in the wild, according to findings from VulnCheck. The vulnerability in question is CVE-2026-5027 (CVSS score: 8.8), a case of path traversal that could allow an attacker to write files to arbitrary locations. “The ‘POST /
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
