Events

Cyber Security Events

• Weaponizing SBOMs: A Practical Guide for Security Practitioners
  Turn guesswork into precision with Software Bills of Materials.
• Why CISA Accepting KEV Nominations Is So Important
  CISA announced that it will be accepting nominations to its Known Exploited Vulnerabilities (KEV) catalog. 
• Cultural Fit Decides If You Will Thrive in a New Security Role
  Finding the right cultural fit can be central to succeeding in a new security position.
• Schools Blackmailed with Explicit AI Deepfakes of Students
  Images on school websites and social media accounts are being leveraged by cybercriminals to create sexually explicit deepfakes of students. 
• Security Leaders Should Prepare for World Cup Scams
  It’s likely that cybercriminals will increase scam activity leading up to and during this event. 
• Strategies, Expert Insights from the 2026 Verizon DBIR
  The overarching theme of this year’s report is “keeping a strong foundation in the face of change.”

• npm Adds 2FA-Gated Publishing and Package Install Controls Against Supply Chain Attacks
  GitHub has rolled out new controls for npm to improve the security of the software supply chain, giving maintainers the ability to explicitly approve a release prior to the packages becoming publicly available for installation. Called staged publishing, the feature is now generally available on npm. It mandates that a human maintainer pass a two-factor […]
• Packagist Supply Chain Attack Infects 8 Packages Using GitHub-Hosted Linux Malware
  A new "coordinated" supply chain attack campaign has impacted eight packages on Packagist including malicious code designed to run a Linux binary retrieved from a GitHub Releases URL. "Although the affected packages were all Composer packages, the malicious code was not added to composer.json," Socket said. "Instead, it was inserted into package.json, targeting projects that […]
• Claude Mythos AI Finds 10,000 High-Severity Flaws in Widely Used Software
  Anthropic on Friday disclosed that Project Glasswing has helped uncover more than 10,000 high- or critical-severity vulnerabilities across some of the most "systemically" important software across the world since the cybersecurity initiative went live last month. Project Glasswing is a defensive effort launched by the artificial intelligence (AI) company to secure critical global software
• Laravel-Lang PHP Packages Compromised to Deliver Cross-Platform Credential Stealer
  Cybersecurity researchers have flagged a fresh software supply chain attack campaign that has targeted multiple PHP packages belonging to Laravel-Lang to deliver a comprehensive credential-stealing framework. The affected packages include – laravel-lang/lang laravel-lang/http-statuses laravel-lang/attributes laravel-lang/actions "The timing and pattern of the newly published tags
• LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root
  A maximum-severity security vulnerability impacting LiteSpeed User-End cPanel Plugin has come under active exploitation in the wild. The flaw, tracked as CVE-2026-48172 (CVSS score: 10.0), relates to an instance of incorrect privilege assignment that an attacker could abuse to run arbitrary scripts with elevated permissions. "Any cPanel user (including an attacker or a compromised account) […]
• Drupal Core SQL Injection Bug Actively Exploited, Added to CISA KEV
  The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw impacting Drupal Core to its Known Exploited Vulnerabilities (KEV) catalog, based on evidence of active exploitation. The vulnerability in question is CVE-2026-9082 (CVSS score: 6.5), an SQL injection vulnerability affecting all supported versions of Drupal Core. "Drupal Core

Fundraising

• Philanthropists should push charities to take calculated risks, charity gardens funder urges
  Hattie Ghaui also says charities need to ‘speak the language of philanthropists’
• Regulator pledges to work ‘at pace’ to update guidance in wake of new EHRC code
  The Charity Commission says it will work as quickly as possible but must ‘carefully review our guidance against the final code once that is published by parliament’
• Fear of ‘culture wars’ holding charities back from responding to far-right threats, report suggests
  Some NGOs were prevented from action by ‘cultures of timidity’, the research says
• The essential stories from the past week
  Top charity brand unveiled, hospice accused of making ‘unnecessary redundancies’, and a far-right march unwittingly raises money for refugees
• Charity founded by former England cricket captain merges into larger counterpart
  The foundation’s staff will begin transferring to the charity from June
• Dementia charity to close and make all staff redundant
  The closure is a result of reduced statutory support, increased demand, growing debt and a difficult fundraising environment

Tech Events

• SpaceX files to go public, and the math requires a little faith
  The SpaceX S-1 is finally here, and the story it tells goes way further than rockets. The filing runs to 36 pages of risk factors alone, and the numbers inside match the ambition: a $28 trillion total addressable market, a pay package tied to establishing a Mars colony, and a valuation target that would make it the largest IPO in American […]
• You don’t need to be an AI startup to raise. Lucra has $20M to prove it. 
  Slapping “AI” on your startup’s pitch deck is basically table stakes right now. When a founder raised $20 million from Cathie Wood’s ARK Invest for an eSports gamification loyalty startup without those two letters in the spotlight, it got us wondering how the conversation even started — especially when ARK had already been burned by a company operating in the same space.  On this episode of TechCrunch’s Equity podcast, Julie […]
• VivaTech Innovation of the Year 2026
• StrictlyVC Los Angeles 2026
• Musk v. Altman is just getting started
  Elon Musk spent the better part of three days on the witness stand this week in his lawsuit against OpenAI, and it’s already getting messy. Emails, texts, and his own tweets are surfacing in court, and there are plenty more witnesses to come. Musk’s argument against OpenAI? By converting the company to a for-profit model, Sam Altman betrayed the “nonprofit for the […]
• Tim Cook is stepping down. What happens to Apple now?
  Tim Cook plans to step down from his CEO role in September, handing the reins to hardware chief John Ternus.   Ternus may be inheriting one of the most durable businesses in tech, but he’s also stepping into a very different ecosystemthan the one Cook spent decades shaping. The App Store’s 30% cut is under pressure, the behind-the-scenes power Apple once […]