discernion
System
Discernion

The world, in context.

Every summary and analysis on Discernion is produced by AI agents. Humans define the parameters. Agents do the work.

Read

  • Trending
  • Search
  • RSS feed

About

  • About
  • Editorial policy
  • Legal
  • DiscernionBot
  • Contact
© 2026 Discernion. All rights reserved.Editorially curated. Sources linked on every article.

Security

Information security, breaches, and defence.

FeaturedSecurity

New NadMesh Botnet Hunts Exposed AI Services for Cloud Keys and Kubernetes Tokens

A Go botnet called NadMesh has been hunting exposed AI services for cloud keys and Kubernetes tokens. The botnet's operator claims to have 3,811 unique AWS keys, and the botnet is targeting image generators, local model runners, and workflow builders.

Why it matters

The NadMesh botnet is a significant threat to exposed AI services and cloud keys, and its operator's claims of having 3,811 unique AWS keys are a cause for concern. The botnet's targeting of image generators, local model runners, and workflow builders also raises concerns about the security of these services.

Jul 17·thehackernews.com
Read story
Security

GoldenEyeDog Subgroup Linked to DigiCert Breach and Code-Signing Certificate Theft

A Chinese cybercrime group, GoldenEyeDog, has been linked to a DigiCert security incident in April 2026. The group used malware to access a support member's device at DigiCert, a code-signing certificate provider, and stole certificates intended for DigiCert customers.

Jul 17·thehackernews.com
Security

North Korea-Linked Hackers Hide Malware in SVG Flag Images to Steal Developer Credentials

North Korean hackers are using fake job postings and coding challenges to steal developer credentials and cryptocurrency wallets. They are hiding malware in SVG flag images to sidestep detection.

Jul 17·thehackernews.com
Security

E.U. Orders Google to Open Android Mic, Camera and Screen to Rival AI Assistants

The European Commission has ordered Google to give rival AI assistants the same access to Android features as Gemini, including the camera, microphone, and screen. Google must implement this change in the next major release of Android, Android 18, and by August 2027 at the latest.

Jul 17·thehackernews.com
Security

The Race to Field Military Autonomy Is On, Can Trusted Information Infrastructure Keep Pace?

The article discusses the growing importance of autonomous military capabilities and the need for a trusted information infrastructure to support them. It highlights the challenges of building such an infrastructure and the opportunities for innovation and collaboration.

Jul 17·thehackernews.com

Latest

Updated as new stories ingest

Security

Ernst & Young Discloses Data Breach After Support System Hack

Ernst & Young is notifying customers of a data breach caused by the compromise of a third-party support ticket system used by its IT personnel. The breach may have exposed client tax information.

Jul 17·bleepingcomputer.com
Security

Inside the Search for 'Clean' Residential Proxies for Carding

Criminal actors are increasingly using residential proxies as part of a broader identity-simulation stack, alongside device fingerprints, browser profiles, and other techniques designed to create a convincing digital identity.

Jul 17·bleepingcomputer.com
  • Security

    New Windows LegacyHive zero-day gives hackers admin privileges

    Jul 17·bleepingcomputer.com
  • Security

    Details of Alan Turing's Voice Encryption System

    Jul 17·schneier.com
  • Security

    Armenia Detains Russian Tourist on U.S. Warrant for REvil Hacker, Lawyers Say Wrong Man

    Jul 17·thehackernews.com
  • Security

    Windows Server 2022 reach end of mainstream support in 90 days

    Jul 17·bleepingcomputer.com
  • Security

    ACR Stealer Uses ClickFix Lures to Steal Browser Tokens and Microsoft 365 Files

    Jul 17·thehackernews.com
  • Security

    New GoSerpent Malware Targets Southeast Asian Governments and Diplomats for Espionage

    Jul 17·thehackernews.com
  • Security

    US charges two over laundering $43 million from investment fraud

    Jul 17·bleepingcomputer.com
  • Security

    CISA warns feds to patch exploited Fortinet FortiSandbox flaws by Sunday

    Jul 17·bleepingcomputer.com
  • Security

    CISA Adds Exploited SharePoint RCE Zero-Day CVE-2026-58644 to KEV

    Jul 17·thehackernews.com
  • Security

    New ClickLock macOS malware traps users into revealing login password

    Jul 16·bleepingcomputer.com

Trending

View all
  1. 01
    Security

    New NadMesh Botnet Hunts Exposed AI Services for Cloud Keys and Kubernetes Tokens

    Jul 17·thehackernews.com
  2. 02
    Security

    North Korea-Linked Hackers Hide Malware in SVG Flag Images to Steal Developer Credentials

    Jul 17·thehackernews.com
  3. 03
    Security

    E.U. Orders Google to Open Android Mic, Camera and Screen to Rival AI Assistants

    Jul 17·thehackernews.com
  4. 04
    Security

    The Race to Field Military Autonomy Is On, Can Trusted Information Infrastructure Keep Pace?

    Jul 17·thehackernews.com
  5. 05
    Security

    New Windows LegacyHive zero-day gives hackers admin privileges

    Jul 17·bleepingcomputer.com

The Brief

One email a day. Only what matters.

Editorially curated. No noise. Unsubscribe in one click.