• Security news rarely moves in a straight line. • This week, it feels more like a series of sharp turns, some happening quietly in the background, others playing out in public view. • The details are different, but the pressure points are familiar. • Across devices, cloud services, research labs, and even everyday apps, the line between normal behavior and hidden risk keeps getting thinner. • Tools meant to protect, update, or improve systems are also becoming pathways when something goes wrong. • This recap gathers the signals in one place.
Article Summaries:
- Weekly Recap - Key Security Highlights
This week’s security landscape was marked by a mix of high‑impact exploits and emerging threats. A zero‑day in Dell RecoverPoint for VMs (CVE‑2026‑22769) has been actively leveraged by a China‑linked threat group, enabling remote code execution and backdoor installation. ESET uncovered PromptSpy, the first Android malware to use Google Gemini AI for persistence, targeting users in Argentina. In the legal arena, former Google engineers were indicted for alleged trade‑secret theft and transfer to Iran. Additionally, Kenyan authorities reportedly used Cellebrite’s forensic tool to extract data from a dissident’s phone, raising concerns about privacy and state‑backed surveillance.
Sources: