The NCSC and allied governments are pushing faster response and stronger sovereignty around AI and cyber defense
Several items in the feed show governments adapting their cyber strategy to AI-era threats, with the UK, EU, US, and other jurisdictions moving toward more centralized coordination
Microsoft 365, Entra ID, and OAuth abuse remain a top initial-access channel
Identity abuse is one of the clearest operational threats in the feed, especially around Microsoft 365 and Entra ID. Attackers are using fake passkey enrollment, device-code flow a
Roundcube, ColdFusion, SharePoint and other enterprise web stacks are under active exploitation
A major cluster of articles shows attackers moving quickly on high-value web application flaws, with CISA repeatedly adding exploited issues to its KEV catalog. Roundcube mail serv
Microsoft’s July patch tsunami and the race to compress exploitation windows
Microsoft’s July 2026 Patch Tuesday was one of the biggest security releases in company history, with coverage across hundreds of vulnerabilities and multiple already exploited i
Swiss banking and public-sector cyber agenda: NCSC, nLPD, and notification obligations keep gaining weight
Across the feed, the strongest Swiss-relevant signal is not a single breach but the steady hardening of governance expectations around cyber risk, privacy, and incident handling. T
Ransomware and extortion operations continue to target organizations worldwide
Ransomware leak sites and reporting showed continued activity from groups such as Qilin, DragonForce, Akira, Play, Incransom, and others against companies, schools, hospitals, and
Credential theft, phishing, and fake downloads remain the main path to compromise
Attackers continued to rely on phishing, fake installers, and stolen credentials as their most reliable access methods. Reports covered trojanized Webex, Zoom, and MobaXterm instal
CrowdStrike, Microsoft, and others are using AI to reframe vulnerability discovery and remediation
A series of vendor posts and interviews emphasized that frontier AI models are now finding vulnerabilities faster than traditional review and fuzzing in some contexts. Chainguard d
Passwordless identity and MFA changes are reshaping enterprise access management
Vendors are steadily shifting away from SMS and older second factors toward passkeys and hardware-backed authentication. Microsoft announced passkeys as the default sign-in experie
Security teams are racing to manage AI, MCP, and coding-agent risk in software development
A growing body of discussion centered on how AI coding agents, MCP servers, and agent histories create new software-security exposures. Researchers and practitioners warned that AI

