Welcome to Cyber Briefing, your daily source for all things cybersecurity. We bring you the latest advisories, alerts, incidents, and news every weekday.

Adversaries are actively leveraging commercially available location data to track U.S. military personnel in conflict zones, exposing persistent gaps in operational security even when geolocation features are supposedly disabled. Meanwhile, macOS users face a novel threat from “Operation FlutterBridge,” a malvertising campaign distributing a new backdoor called FlutterShell built on the Flutter framework. On the incident front, scammers are spoofing the Police Service of Northern Ireland’s official switchboard number to impersonate officers and trick victims into sharing bank details or buying gift cards.

In the legal and regulatory sphere, California is suing Chrome Holding Co. (the corporate shell of the bankrupt 23andMe) over a 2023 data breach that exposed the genetic data of nearly 7 million customers, seeking heavy penalties for security failures and misleading data protection claims. This focus on emerging risks aligns with a recent survey showing that 43% of UK cybersecurity professionals now view AI-powered attacks as their top risk for the coming year, even as they grapple with a severe skills gap and lengthy incident recovery times. Additionally, tensions are rising in the research community after Microsoft threatened legal action against an anonymous security researcher, “Nightmare Eclipse,” who published exploits targeting Windows and a BitLocker bypass.

Listen to our podcast here ⏬

Get BlueSleuth-Lite

⚡THREAT LANDSCAPE

Pentagon Confirms Adversaries Using Commercial Location Data

The Pentagon has confirmed that adversaries are actively using commercially available location data to track and surveil U.S. military personnel in conflict zones, according to a letter from U.S. Central Command obtained by Senator Ron Wyden. Despite operational security guidance instructing troops to disable geolocation features, CENTCOM acknowledges these controls often fail to fully prevent tracking because commercial devices continue generating location data even when users believe such features are disabled. Military and intelligence officials have warned about this vulnerability for years, yet comprehensive protections are only now being implemented, with full location service controls on government devices not expected until May 2026. Read More

Operation FlutterBridge macOS Malvertising Campaign

A malvertising campaign called Operation FlutterBridge is targeting macOS users by distributing a new backdoor named FlutterShell. The malware is built using the Flutter framework, representing a novel approach to macOS threats. Mac users should be cautious when clicking advertisements and ensure their security software is updated to detect this emerging threat. Read More

Subscribe Now

🚨INCIDENTS & REAL-WORLD IMPACT

PSNI warns of phone number spoofing scam

The Police Service of Northern Ireland (PSNI) has warned the public about scammers spoofing its official switchboard number to impersonate officers and request bank details and gift card purchases. In one reported case, a caller claimed to be investigating money transfers to narcotic-related countries and asked the victim to buy gift cards as part of the investigation process, which raised suspicion. The PSNI advises never disclosing personal or financial details over the phone to unknown callers and urges anyone targeted by such fraud to contact police, their bank, and Action Fraud. Read More

Claim Your Workspace

🔓 EXECUTIVE RISK & CYBERNOMICS

UK Firms Prioritize AI Threat Preparedness

A survey of 1,500 IT and business decision-makers across five European countries found that 43% of UK cybersecurity professionals consider AI-powered attacks their biggest risk over the next 12 months, surpassing traditional threats like ransomware and phishing. The research revealed that 77% of UK businesses experienced a cyber incident in the past year, 11 percentage points higher than other surveyed European nations, while 46% cited a skills gap driven by rapidly evolving threats as their primary operational challenge. Despite strong incident detection capabilities (94% within 24 hours), recovery often takes more than 10 days for over a quarter of incidents, highlighting persistent resilience gaps. Read More

Get Help

🛡️ POLICY, REGULATION & LEGAL SIGNALS

California sues 23andMe over 2023 genetic data breach

California has sued Chrome Holding Co., the remaining corporate shell of bankrupt DNA testing company 23andMe, over a 2023 data breach that exposed genetic information of nearly 7 million customers through credential stuffing attacks and a coding flaw in the DNA Relatives feature. The breach affected 855,541 Californians, and the state is seeking penalties of $1,000 to $7,500 per violation for alleged security failures and misleading statements about data protection practices. Affected customers should change reused passwords, enable multi-factor authentication, and remain vigilant for phishing attempts, though stolen genetic data cannot be recovered or changed like traditional credentials. Read More

💻 CAREER ENABLEMENT

Microsoft Threatens Security Researcher

A security researcher known as Nightmare Eclipse published exploits targeting Microsoft Windows, including a BitLocker bypass vulnerability. Microsoft responded by threatening legal action against the anonymous researcher. The dispute has sparked debate within the security community about responsible disclosure practices and corporate responses to independent security research. Read More

Click Here To Read

Copyright © 2026 CyberMaterial. All Rights Reserved.

Follow CyberMaterial on:

Substack, LinkedIn, Twitter, Reddit, Instagram, Facebook, YouTube, and Medium