TechNadu

Add as preferred source on Google Question: A report found that different AI security scanners analyzing the same codebase often produced inconsistent findings. How does that kind of alert instability influence developer behavior, remediation, release cycles, and the day-to-day workload of AppSec teams? Jeff Williams, CTO & Founder of Contrast Security The first thing to understand is that AI doesn’t solve alert fatigue. Left alone, it makes it worse.

Wilfredo Santiago, Chief Security and Trust Officer at Blackpoint Cyber, discusses why identity has become a critical security control for MSPs and how they can reduce the impact of a compromise. Santiago’s background includes threat hunting, cyber threat intelligence, incident response, and threat operations roles across the U.S. Navy, Department of Defense, and the private sector.

Russian authorities are reportedly exploring the idea of launching a government-operated virtual private network (VPN), a move that has sparked questions among technology experts and industry observers. The proposal was reportedly discussed during a June 8 meeting organized by Roskomnadzor, Russia’s communications regulator, according to a report from The Bell. The meeting is said to have included representatives from several major Russian technology companies.

ExpressVPN has announced a major partnership with FIFA World Cup 2026™, becoming an Official Tournament Supporter across the United States, Canada, and Europe. The agreement marks the VPN provider's largest sports sponsorship so far and will see the company promote its digital security services throughout one of the world's biggest sporting events.

Proton VPN has announced support for Baybayin, a traditional pre-colonial writing system of the Philippines, in its Windows application. The update coincides with the country's 128th Independence Day celebration on June 12 and is aimed at recognizing Proton VPN's large Filipino user base. According to the company, the addition makes Proton VPN the first major VPN service to offer Baybayin as a selectable script within its app.

Add as preferred source on Google Question: Football fandom runs on urgency, tribal loyalty, and emotional decision-making. Which fan behaviors are attackers targeting? What makes their social engineering successful? Alina Bizga, Security Analyst at Bitdefender Football fandom creates a uniquely attractive environment for social engineering, combining strong emotional investment with highly active online communities.

Add as preferred source on Google Question: Many organizations are aware of unresolved vulnerabilities and remediation backlogs. From your observations, how can ISACA’s Security Debt Index help organizations identify when unresolved security gaps are turning into larger resilience risks? What steps should security teams prioritize?

Securelist reports that hacktivist groups 4BID, Hakerskii Kit, and C.A.S. have broadened their attack geography, targeting organizations across Kazakhstan, the UAE, Egypt, and Syria, beyond their previous focus on Russian and occasional Belarusian targets. The investigation began after researchers spotted indicators of compromise inside a breached Russian organization, then traced the activity to several interconnected actors.

WhatsApp said it disrupted a new hacking campaign linked to NSO Group, accusing the surveillance software maker of violating an earlier court order that bars it from targeting WhatsApp and its users with Pegasus spyware. The Meta-owned platform said it caught and disrupted spear phishing attempts linked to NSO after an investigation prompted by user reports.

Socket Threat Research has identified a newer PyPI wave connected to the broader Mini Shai-Hulud, Miasma, and Hades supply chain attacks. This wave adds 23 newly identified PyPI package-version artifacts targeting bioinformatics and MCP developers. These add to the 37 malicious PyPI wheels covered in the earlier report. The campaign tracker now includes 471 affected artifacts across npm and PyPI, comprising 411 npm artifacts across 106 packages and 60 PyPI artifacts across 37 packages.