News / Cybersecurity

Google unveils threat-disruption team to choke attacker infrastructure

Google has created a centralized Threat Disruption team to deny cyber adversaries the infrastructure they use through legal takedowns, public exposure, sinkholing and product hardening, while explicitly avoiding offensive operations on behalf of governments. The move formalizes prior ad‑hoc disruptions (for example GridTide and residential proxy takedowns) and pairs GTIG telemetry with coordinated cross‑provider action — an approach that yields immediate defensive gains but is constrained by jurisdictional limits and adversary migration to harder-to-reach platforms.

News / Cybersecurity

Google unveils threat-disruption team to choke attacker infrastructure

QualDerm Partners: 3.1M Patient Records Exposed in December Network Intrusion

TeamPCP's CanisterWorm: npm Supply-Chain Compromise with Iran-Targeted Wiper

Databricks unveils Lakewatch, an open agent-driven security lakehouse

Oracle issues emergency patch for Identity Manager remote-code flaw

Oso & Cyera: Dormant permissions become agent risk multipliers

Intoxalock Cyberattack Strands Court-Monitored Drivers

Global Risk Institute: Canadian finance told to harden AI governance

Handala: U.S. Links Hackers to Iran’s MOIS and Seizes Domains

Google restricts AI-sourced bug reports, backs $12.5M open-source security fund

Magento Hit by Mass Defacement Campaign

Langflow: Critical RCE Exploited Within a Day of Patch

Aqua Security’s Trivy Scanner Hit by Supply‑Chain Compromise

Cisco firewall zero-day exploited by Interlock, Amazon intel shows

Zimbra: Russian APT exploits stored XSS to siphon mailbox data

Meta: Rogue AI Agent Reveals Post-Authentication Identity Gap

Microsoft Intune: CISA Orders Immediate Hardening After Stryker Breach

Stryker Breach Tied to Infostealer-Harvested Credentials and Intune Abuse

Native secures $42M to build cloud policy enforcement platform

Bitrefill Breach Tied to Lazarus Drains Wallets, Exposes 18,500 Orders

News / Cybersecurity

Google unveils threat-disruption team to choke attacker infrastructure

QualDerm Partners: 3.1M Patient Records Exposed in December Network Intrusion

TeamPCP's CanisterWorm: npm Supply-Chain Compromise with Iran-Targeted Wiper

Databricks unveils Lakewatch, an open agent-driven security lakehouse

Oracle issues emergency patch for Identity Manager remote-code flaw

Oso & Cyera: Dormant permissions become agent risk multipliers

Intoxalock Cyberattack Strands Court-Monitored Drivers

Global Risk Institute: Canadian finance told to harden AI governance

Handala: U.S. Links Hackers to Iran’s MOIS and Seizes Domains

Google restricts AI-sourced bug reports, backs $12.5M open-source security fund

Magento Hit by Mass Defacement Campaign

Langflow: Critical RCE Exploited Within a Day of Patch

Aqua Security’s Trivy Scanner Hit by Supply‑Chain Compromise

Cisco firewall zero-day exploited by Interlock, Amazon intel shows

Zimbra: Russian APT exploits stored XSS to siphon mailbox data

Meta: Rogue AI Agent Reveals Post-Authentication Identity Gap

Microsoft Intune: CISA Orders Immediate Hardening After Stryker Breach

Stryker Breach Tied to Infostealer-Harvested Credentials and Intune Abuse

Native secures $42M to build cloud policy enforcement platform

Bitrefill Breach Tied to Lazarus Drains Wallets, Exposes 18,500 Orders