-
The threat actor known as PCPJack has hijacked cloud servers associated with Amazon Web Services (AWS), Google Cloud, and Microsoft Azure to create a covert SMTP email relay network. “Compromised business servers across the U.S., Europe, and Asia were quietly converted into SMTP proxies, verified for mail relay capability, and synced to a downstream consumer every five minutes,” Hunt.io said in
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Microsoft has disclosed three critical vulnerabilities in its Edge browser, all discovered during the Pwn2Own competition and reported by security researcher Orange Tsai of DEVCORE Research Team. The flaws, tracked as CVE-2026-45492, CVE-2026-45494, and CVE-2026-45495, were publicly disclosed on June 4, 2026, with patches already issued by Microsoft. Overview of the Vulnerability CVE-2026-45492 – Origin […]
The post Microsoft Edge Vulnerability Lets Remote Attackers Execute Arbitrary Code appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
VECT 2.0 ransomware can leave victims with files that even the attacker’s own decryptor cannot reliably restore. While researchers previously exposed a cross-platform design flaw that discards nonces for earlier parts of large files, our Windows-focused analysis shows additional implementation errors that create more recovery gaps. These errors can leave files renamed, partially encrypted, inconsistently […]
The post VECT 2.0 Ransomware Breaks Files Beyond Its Own Recovery appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Dashlane has disclosed the findings of a recent security investigation, confirming that a limited number of users were impacted by a targeted brute-force attack against its device registration system. The company emphasized that its internal infrastructure was not breached and that no evidence suggests a broader compromise beyond a small subset of accounts. Device Registration […]
The post Dashlane Reveals How Hackers Downloaded Encrypted Password Vaults appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Hours after a Blue Origin rocket blew up on a Florida launch pad last month, a SpaceX rocket lofted a military payload from a nearby site—neatly illustrating concerns about whether the commercial launch industry can actually add providers quickly enough to match the Pentagon’s accelerating demands.
The incident should be “a moment to step back and reassess the fragility of our space launch infrastructure” and how little competition exists for the nation’s military launch missions, said Todd Harrison, the American Enterprise Institute’s defense space expert.
Just two companies are certified to launch the nearly 100 National Security Space launch missions the Pentagon has budgeted for in the next five years: SpaceX and United Launch Alliance.
Several companies are working to introduce new heavy-lift rockets, which handle payloads between 22 and 55 tons. But the ill-fated Blue Origin test failed to move the New Glenn rocket closer to qualification and ULA’s Vulcan heavy rocket is still sidelined amid a probe into a solid rocket booster anomaly. That leaves Elon Musk’s SpaceX with a heavy-lift monopoly, at least for now.
That’s not where service leaders, who plan a steep increase in launches, want to be.
Just before Blue Origin’s May 28 mishap, service officials awarded a task order to the Jeff Bezos-owned company for a National Reconnaissance Office mission by late 2027 or early 2028. Soon afterward, they reiterated their plans to count on the company.
“The U.S. Space Force (USSF) and NRO remain committed partners with Blue Origin and will work with them on the New Glenn vehicle anomaly experienced during its integrated vehicle hot fire test yesterday evening,” Space Systems Command said in a May 29 press release.
AEI’s Harrison suggested the incident was a reminder not to count too heavily on plans.
“I think it hurts some of that optimism that the Space Force may have had about getting a third provider, but I think, in a practical sense, it's not as if there are near-term missions that we're depending on New Glenn,” he said. “I think it’s just taking some shine off the rosy projections for the future, that there are going to be more hiccups like this along the way.”
‘We are the primary launch provider’
Congress is also concerned about the lack of launch providers.
The House Armed Service Committee’s initial draft of the 2027 National Defense Authorization Act asks the Air Force Secretary to brief lawmakers on how the Space Force is “investing in capability and capacity” to increase the service’s launch cadence. It also asks for ideas to “accelerate development and reduce barriers to participation by nontraditional defense contractors” to meet the growing mission demand. That report is due by March 2027.
“The committee has a continued interest in maintaining and growing competition across the space enterprise, to include launch,” one HASC staffer said.
In the meantime, SpaceX dominates the market.
“We are the primary launch provider for the U.S. government,” the private company wrote last month in its S-1 filing, part of the paperwork for its highly anticipated initial public offering.
SpaceX rockets launched 11 of last year’s 12 national-security launches, and holds the contracts for five of seven high-profile launch missions in the current fiscal year. SpaceX also launches its own satellites for the Starlink communications constellation, which has become crucial for military operations.
SpaceX has a huge lead against companies trying to take on future national security space missions, said Victoria Samson, the Secure World’s Foundation’s chief director of space security and stability.
“It does speak to how complicated these issues are, how far SpaceX is ahead of its competitors, and the, I would say, unlikelihood of any real competitor to SpaceX in the near future,” Samson said.
But SpaceX’s IPO filing also revealed weaknesses. Its launch business lost roughly $657 million last year. Despite a huge push to field orbital data centers in space, its AI segment lost $6.3 billion. The only profitable segment of the company was Starlink, with $4.4 billion in income.
And several national-security analysts noted that SpaceX is less than fully focused on military launches.
Byron Callan, a managing director at research firm Capital Alpha Partners, said in a note about SpaceX’s prospectus that “does not suggest that SpaceX is being positioned as a major defense contractor” and instead is more aligned with other technology sectors.
Harrison said that SpaceX’s other ambitions could pull focus away from its launch business.
“SpaceX today enjoys a near monopoly on military and national security space launch, and that's a vulnerability, because we're talking about a company that has evolved its focus over time from being a space launch company to being a SATCOM company to being an AI data center and space company,” he said. “Launch is an increasingly small part of the SpaceX portfolio.”
More missions, more launchpads
It’s unclear just how long it will take Blue Origin to recover from the explosion, which damaged its only launch pad.
Blue Origin CEO Dave Limp said this week on X that the company plans to have another New Glenn rocket in the skies by “the end of this year.” But SpaceX needed more than a year to repair its own launch pad after a 2016 Falcon 9 explosion.
Kiko Donchev, SpaceX’s vice president of launch, didn’t comment on Blue Origin’s timeline, but described in a post on X how extensive the investigation and cleanup process is.“In the initial days and weeks, you’re using a scalpel, not a bulldozer,” Donchev said, “Cleanup has to be done with a sense of urgency, but extreme precision. It’s literally launch pad surgery.”
The company reportedly has plans to build a second launchpad at the Space Force base and another site is in the works at Vandenberg Space Force Base in California, officials said in April.
Still, the mishap underscores how the paucity of launch pads is a bottleneck for the Space Force’s plans.This year, the service plans to launch more than 200 rockets from the Cape and Vandenberg. In the next decade, that could increase to more than 3,000 launches per year, according to the service’s ambitious “Objective Force 2040” document.
That same document also warns that increased reliance on those two bases “creates enduring vulnerability to natural hazards, operational disruption, and degraded performance during periods of peak demand.”
Last month, the Commercial Space Federation, an industry group, sounded an alarm about the increased tempo of launch missions on traditional sites.
“U.S. orbital launch demand has surpassed 180 launches per year, straining infrastructure that
must be developed years in advance of its need,” the report said, adding that the Defense Department, NASA, local governments, and private companies should “coordinate infrastructure upgrade investments” to improve launch facilities amid growing tempo.
Service leaders told Defense One in April that they’re looking at expanding launch capabilities to other sites and to more providers.
Harrison said the Blue Origin mishap also shows why the government can’t leave the expansion of launch infrastructure to for-profit companies.
“You need to invest in some excess capacity, so that you have it when you need it. It could be a rocket failure that takes out a pad, it could be a hurricane, it could be an earthquake, fire, a wildfire,” Harrison said. “But if you want to have a robust launch enterprise, then you've got to build in some redundancy and some resilience that the commercial sector, which is trying to maximize profits, would not necessarily do on its own.”
]]>¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
House Republicans axed a provision to the annual defense policy bill that would have ended the Trump administration’s practice of using the military’s uniformed lawyers from serving as immigration judges and special U.S. attorneys in Democrat-run cities.
Rep. Jason Crow, D-Colo, proposed the amendment during the House Armed Service Committee's markup of the National Defense Authorization Act on Thursday afternoon. The provision would have amended U.S. law to clarify that the judge advocate generals corps could only be assigned to military-related duties. Republican lawmakers, including HASC Chairman Mike Rogers, ultimately batted down the provision in a 31-26 vote, according to the committee’s website. It’s not clear if a similar provision is being debated in the Senate.
“Our JAGs advise commanders in some of the most consequential decisions our military makes, from combat operations, to targeting authorities, to rules of engagement, military justice, personnel matters, and international law,” Crow said. “They are a limited and specialized resource. Their time should be focused on matters that directly affect military operations, unit cohesion, command authority, and mission effectiveness. Assigning them elsewhere takes them away from this critical military work, especially in a time as is as much conflict as we are seeing right now.”
Former uniformed attorneys told Defense One that the amendment would’ve relieved overworked military lawyers. Under the Trump administration, JAGs have been assigned to oversee immigration courts, appointed as special U.S. attorneys to investigate “fraud and abuse” in Minneapolis, and prosecuted violent crimes during domestic National Guard deployments. This year, Defense Secretary Pete Hegseth has scrutinized the JAG corps with a series of wide-ranging reforms and has fired the military's top lawyers and trimmed the civilian legal staff.
Rogers, R-Ala., defended the administration’s unprecedented use of the military’s lawyers.
“This is a direct attack on the administration, which has used judge advocates in multiple ways to protect national security priorities for the president. Judge advocates have served as special assistants to U.S. attorneys for years,” he said. “That role has been expanded in the current administration to assist other agencies in defense of the homeland national security priority, and great experience and training for our uniformed officers. I trust that the Secretary of Defense, with the help of the Joint Staff, may deploy judge advocates across the United States and the world to ensure the rule of law is followed.”
Rep. Pat Fallon, R-Texas, also criticized the provision, saying Hegseth “has determined that the homeland mission is essential” and that the extra lawyers are crucial to it.
“The National Security Strategy places a great deal of emphasis on homeland defense, and in order to meet these needs, an increase in attorneys has been needed to litigate in U.S. courts and aid in the administrative hearings across the Department of Justice and Homeland,” Fallon said. “Our uniformed attorneys have the ability to surge into positions when the country needs them.”
Military legal experts have previously told Defense One that there is precedent for uniformed lawyers to prosecute U.S. citizens, but the Trump administration’s wide-spread use of the JAGs has raised fears that it could violate the Posse Comitatus Act which forbids the military to be used for federal law enforcement.
Steve Lepper, a retired Air Force lawyer and a member of a group of former JAGs that has spoken out about the administration’s legal actions, said he wasn’t surprised that the amendment wasn’t passed by the committee.
“I think it's basically restoration of the limits that posse comitatus places on the military,” Lepper said. “When you come right down to it, using the military in a prosecutorial or judicial capacity for cases that have nothing to do with the military is basically a violation of posse comitatus.”
Aaron Brynildson, a University of Mississippi law professor and retired Air Force JAG, also said that uniformed lawyers should be focused on military-related missions when serving as special U.S. attorneys
“Having been previously appointed as a SAUSA while on active duty, the sole reason JAGs should be detailed to these positions is to prosecute civilians committing criminal offenses on military bases. JAGs should not be used to prosecute immigration crimes or as fill-ins for overburdened federal prosecutors.”
Brynildson and Lepper said that the wide-ranging use of the JAGs appears to be at odds with Hegseth’s complaint in March that “military lawyers are sometimes stuck doing civilian side work.”
“What Mr. Crow offered was basically a way to achieve what Hegseth said he wants, which is JAGs to do JAG jobs,” Lepper said. “In this case, I guess the majority in the House Armed Services Committee felt that JAGs should be used for things other than what they are in the military to do.”
]]>¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Allies of Russian leader Vladimir Putin are openly advocating nuclear war and wishcasting for a diminished United States even while boasting about better trade relations.
The venue was the St. Petersburg International Economic Forum, a Putin-backed conference that took place on Wednesday against a backdrop of billowing smoke from a Ukrainian drone attack at a nearby oil terminal. The forum, which featured presentations by Russian oligarchs and elites, also attracted high-ranking Russian officials, representatives of far-right European groups, and American internet influencers.
One notable presentation was given by two of Putin’s close allies: Konstantin Malofeev, a billionaire and founder of the Tsargrad TV channel; and Alexander Dugin, who is considered a key philosophical influence on the Russian leader. They suggested that Russia might reasonably use nuclear weapons in its war on Ukraine.
“Yes,” Malofeev said later on his Telegram channel. “The use of tactical nuclear weapons in Ukraine is considered a good-case scenario in our analytical report.”
The pair argued in general that the United States is an existential threat to Russia that must be weakened. It’s a view previously articulated by Yevgeny Primakov, a former prime minister, and is believed to echo Putin’s own thinking.
The pair also outlined what they called a “good” scenario for Russia by 2036; it included a “crisis of American-centrism.” By 2050, they foresee the “demise of the imperialistic plans of Western countries.”
The Institute for the Study of War called Malofeev’s scenarios “unrealistic,” and suggested that the Kremlin may use them to portray its own and “other government officials’ rhetoric as moderate and reasonable in comparison to the extreme scenarios presented by a small cadre of ultranationalists.”
The pair are not the first prominent Russians to bandy tacit or explicit threats of nuclear war. In 2017, Russian parliamentarian Vyacheslav Alekseyevich Nikonov said that if NATO or U.S. forces were to go to Crimea, the Kremlin would be forced to use smaller nuclear weapons. But when long-range Ukrainian strikes devastated the Black Sea Fleet in Sevastopol, the Kremlin responded with drone and missile strikes—but not nukes.
In May, Russia held drills for its nuclear forces in Belarus, which led NATO Secretary-General Mark Rutte to say, "Well, [Russia] knows if that happens, the reaction is devastating."
Prospects for Russian advances on the field have dimmed since 2022. On Wednesday, Secretary of State Marco Rubio told the Senate Foreign Relations Committee, “Russia will definitely not be able to achieve the objectives it set for itself on the first day of the war; and it will likely not even be able to enforce—by military means—the demands it is currently making in negotiations."
At the forum, Russian officials and elites admitted that no easy victory was in sight. The war will last “for decades,” said Andrey Bezrukov, a former spy whose double life in the United States inspired the television show “The Americans.” “Even now we understand that a drone using Starlink can fly into any region and hit a specific target. This is a serious problem for us. We were not prepared for it,” Bezrukov said.
There was even at least one U.S. official at the St. Petersburg forum, but the intense planning and coordination that would customarily precede a U.S. delegation’s visit to Russia appears to have been lacking. The official was Rodney Mims Cook Jr., who, as the chair of the U.S. Commission of Fine Arts, is in charge of the White House ballroom makeover.
On Wednesday, Secretary of State Marco Rubio said that he had no knowledge of any high-ranking officials attending the event.
At least one Russian leader at the forum touted “strong Russian economic cooperation” between the United States and Russia. Kirill Dmitriev, who runs a Russian sovereign-wealth fund, claimed that he had just spoken with White House envoys Jared Kushner and Steve Witkoff. He seemed to suggest the governments would announce a Bering Strait tunnel project on Friday, but later tweeted that he was speaking only of an engineering contract award.
The White House has not responded to questions about the claim.
]]>¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
iFood confirms a data breach affecting 1.2 million customers in Brazil, while hackers on BreachForums claim the actual theft is much larger.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
Cisco has patched a bug in Unified Communications Manager that lets an unauthenticated attacker on the network write files to the box and, from there, climb to root. It is tracked as CVE-2026-20230, and proof-of-concept exploit code is already public. Cisco’s PSIRT says it has not seen the flaw used in attacks yet. The PoC shortens that runway. The flaw is a server-side request forgery.
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
-
A security researcher found a flaw in Anthropic’s Claude Code GitHub Action that let an attacker take over vulnerable public repositories running it, with nothing more than a single opened GitHub issue. Because Anthropic’s own action repo used the same workflow, a working attack could have pushed malicious code into the action itself and onto the projects downstream that pull it. RyotaK of GMO
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
¶¶¶¶¶
