X-Industry

Giving businesses the freedom to do their thing while we maintain national security is much more difficult than it looks.  Two stories from last week show how much harder it is.  For two decades now, the jewels of our industry have been vanishing or turning red.  In their different ways, iRobot and ASML shed light on a crisis no one really wants to acknowledge.

Last week, iRobot filed for bankruptcy and was immediately acquired by Picea Robotics, its China-based contract manufacturer.  You may k

A slogan for the State of Michigan presents, “Say Yes to Michigan.”  Well saying yes is easier than it appears.  Plans for a massive new Oracle data center in the US State of Michigan have been left in limbo after funding talks with its key financial partner broke down.  As reported by the Financial Times, Blue Owl Capital, which has backed some of Oracle's largest data center projects, will not support the proposed $10 billion facility in Saline Township, near Ann Arbor MI.[1]

The project is in

The question was deceptively simple.  Could the light that is used to form an image on a display also be converted into something that can be felt?  At the University of California - Santa Barbara, a team of researchers spent nearly a year exploring this idea, working through theoretical models, conducting simulations, and eventually building prototypes.  Their work, described in the paper Tactile Displays Driven by Projected Light and explored in TechXplore, has led to a significant breakthroug

SentinelLABS has been researching how large language models (LLMs) are impacting cybersecurity for both defenders and adversaries.  As part of our ongoing efforts in this area and our well-established research and tracking of crimeware actors, researchers have been closely following the adoption of LLM technology among ransomware operators.  Analysts have observed that three structural shifts appear to be unfolding in parallel.

First, the barriers to entry continue to fall for those intent on cy

Artificial intelligence has become the most disruptive technology in cybersecurity.  It is transforming how defenders detect threats, how attackers build new tools, and how organizations must redesign their entire security strategy.  In 2025, AI is no longer an enhancement to security systems. It has become the core engine behind both cyber defense and cyber offense.  This shift brings opportunities, challenges, and new responsibilities for every security leader.[1]

AI is revolutionizing how def

Ministers want companies like Apple and Google to build nudity-detection algorithms directly into their operating systems, preventing users from taking photos or sharing explicit images of children unless they have verified that they are adults. 

Under the proposal, adults would need to confirm their age, potentially through biometric checks or official identification, to disable the blocks and create or access such content.[1]

People familiar with matter told the Financial Times that the measur

Coinbase Inc. lost a private arbitration complaint with damages and costs totaling $618,000 to a client who claimed to lose funds after a 2024 cyber-attack.  The complaint of Ashok Maini versus Coinbase Inc. was heard in private arbitration in the forum of the American Arbitration Association, commonly referred to as Triple A arbitration in the industry.  Arbitration complaints involving cryptocurrencies are outside the purview of FINRA Dispute Resolution because digital assets are not legally d

Hundreds of Porsche cars in Russia became undrivable after their factory-installed satellite security system malfunctioned, owners and dealers report.  Drivers in several Russian cities reported sudden engine shutdowns and fuel-delivery interruptions after Porsche cars lost satellite-alarm-module connectivity, leaving all models at risk of self-locking, according to the dealership group Rolf.  The problem appears to be caused by the Vehicle Tracking System (VTS), which is an onboard module.[1]

A

In the cybersecurity community, the ability to see a threat before it strikes defines who stays safe and who gets hit. This was the central theme of Check Point’s recent Threat Intelligence live AMA Reddit webinar, where leading experts from Check Point Research (CPR) and External Risk Management (ERM) Research (formerly Cyberint) offered rare, behind-the-scenes insights into how they track, predict, and prevent attacks at machine speed.
These experts are :

• Sergey Shykevich – Head of Threat Int

The US, DHS Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning concerning malicious cyber actors using commercial spyware programs to target messaging applications.  CISA's alert highlights that various threat actors employ sophisticated targeting and social engineering methods to deliver spyware and gain unauthorized access to users' messaging applications.  This initial access then facilitates the deployment of additional malware, leading to more extensive access to t

While analyzing one of the affiliate programs, Doctor Web’s researchers discovered a unique piece of malware with clicker functionality and called it a Trojan.ChimeraWire. This malware targets computers running Microsoft Windows and is based on the open-source projects zlsgo and Rod for automated website and web application management.

Trojan.ChimeraWire allows cybercriminals to simulate user actions and boost a website's behavioral ranking by artificially increasing its search engine rankings.

When programmers encounter puzzling code, their brains react in measurable ways.  Now, researchers have shown that large language models (LLMs) exhibit similar signs of confusion when reading the same code.  In a study from Saarland University and the Max Planck Institute for Software Systems, scientists compared human brain activity with LLM uncertainty and found striking alignment.  Wherever humans struggled, the models did too.  This discovery, described in the paper “How do Humans and LLMs P

Arizona Attorney General Kris Mayes is suing Temu, a large online marketplace founded in 2022.  According to a 02 December 2025 press release, Temu violated the Arizona Consumer Fraud Act through "unlawful data collection, violations of customers' privacy, and counterfeiting some of Arizona's most iconic brands."  Temu is best known for allowing primarily Chinese sellers to sell products directly to Western consumers, including those in the US.  Mayes accused Temu of harvesting sensitive user da

Consumers are urged to exercise caution this Christmas shopping season, as new research from McAfee Labs indicates a significant increase in brand impersonation by cybercriminals.  The Tech giants Apple, Nintendo, and Samsung, alongside luxury labels like Coach, Dior, and Gucci, are among the most frequently faked brands targeted by scammers.   McAfee’s analysis of festive shopping scams is based on real-world web activity data collected between October and November 2025, specifically focusing o

The slow-motion Russian invasion of Ukraine has highlighted persistent vulnerabilities in Western military readiness, specifically concerning munitions stockpiles, supply chain resilience, and procurement agility.  As the conflict continues, nations are adjusting their force posture and defense planning.  These changes aim not only to support Ukraine but also to prepare for the realities of prolonged, multi-domain warfare.

While quantum computing and automation are shaping the following stages o

In an age where artificial intelligence is increasingly trusted to judge human expression, a subtle but essential flaw has emerged.  Large language models (LLMs), the same systems that generate essays, screen job applications, and moderate online discourse, appear to evaluate content fairly, until they’re told who wrote it.  A new study by researchers Federico Germani and Giovanni Spitale at the University of Zurich, published in Science Advances, reveals that LLMs exhibit systematic bias when t

US DHS, CISA, along with authoring organizations, assess pro-Russia hacktivist groups are conducting less sophisticated, lower-impact attacks against critical infrastructure entities, compared to advanced persistent threat (APT) groups.  These attacks use minimally secured, internet-facing virtual network computing (VNC) connections to infiltrate (or gain access to) OT control devices within critical infrastructure systems.  Pro-Russia hacktivist groups: Cyber Army of Russia Reborn (CARR), Z-Pen

The Hoxhunt 2025 Cyber Threat Intelligence Report delivers a sobering message for security professionals: the most dangerous threats are no longer the most obvious ones.  As 2026 approaches, enterprises are no longer fighting clumsy, error-riddled bulk spam; they are facing a quiet revolution where sophisticated, convincing attacks blend seamlessly into daily workflows, fueled by AI and advanced token-theft toolkits.

See:  https://hoxhunt.com/guide/threat-intelligence-report

The report, based on

UDPGangster is a UDP-based backdoor associated with the MuddyWater threat group, which is known for its cyber espionage operations across the Middle East and neighboring regions.  This malware enables remote control of compromised systems by allowing attackers to execute commands, exfiltrate files, and deploy additional payloads, all communicated through UDP channels designed to evade traditional network defenses.

Researchers recently observed multiple UDPGangster campaigns targeting users in Tu

During a recent incident response engagement, researchers at the FortiGuard IR services (FGIR) responded to a ransomware attack where the threat actor heavily used anti forensic techniques to cover their tracks and to avoid their malware getting into the hands of researchers.  They attempted to achieve this by deleting files and folders they had created, clearing logs and obfuscating malware.

Link to full report:  IR-25-344-001_AutoLogger.pdf