Latest Internet & Cybersecurity News
Dragos and UAE Cyber Security Council launch OT Cybersecurity Centre of Excellence
Dragos announced a public–private partnership with the UAE Cyber Security Council to create an OT Cybersecurity Centre of Excellence in the UAE, aiming to strengthen industrial resilience and national cyber sovereignty. The initiative will help localize advanced cybersecurity capabilities, build a skilled OT/ICS workforce, and provide a hands-on environment for attack-and-defense training.
Critical NGINX vulnerability is now being actively exploited
Security researchers say attackers have begun exploiting CVE-2026-42945, a critical heap buffer overflow in NGINX’s ngx_http_rewrite_module. The flaw can lead to remote code execution when ASLR is disabled, and exploitation started only days after patches and proof-of-concept code were released.
Pre-Stuxnet fast16 malware confirmed as sabotage tool against nuclear simulations
New analysis by Symantec and Carbon Black confirms the Lua-based fast16 malware was designed to corrupt nuclear weapons testing simulations. The malware targeted LS-DYNA and AUTODYN and activated only under specific high-explosive simulation conditions, indicating a highly specialized sabotage capability.
ESET expands its private cybersecurity portfolio globally
ESET announced the global rollout of ESET PRIVATE, a tailored security offering for large enterprises and public-sector organizations. The portfolio includes high-speed scanning, air-gapped environment protection, OT security support, customized threat intelligence, and managed security services.
UAE and Nozomi Networks deepen critical infrastructure cybersecurity collaboration
The UAE Cybersecurity Council and Nozomi Networks recently announced a partnership to strengthen protection for critical infrastructure and industrial sectors. The effort focuses on OT and IoT visibility, advanced threat detection, and intelligence-driven security for energy, utilities, transport, manufacturing, and smart infrastructure.
OT cybersecurity training and resilience are becoming a strategic priority
The Dragos-UAE Centre of Excellence highlights how governments are increasingly treating OT security as a national resilience issue rather than a niche technical function. The center is intended to simulate real-world industrial attacks and defenses, helping practitioners develop practical skills for protecting essential services.
F5 NGINX ecosystem faces pressure after critical flaw disclosure
The NGINX issue is particularly significant because it affects both NGINX Plus and NGINX Open Source, broadening the potential impact across internet-facing services. With PoC code already circulating and exploitation observed in the wild, defenders are being urged to prioritize patching and review exposure urgently.
Researchers warn of highly targeted cyber sabotage techniques
Fast16 demonstrates how malware can be engineered for extremely narrow operational goals, such as altering simulation outputs rather than causing broad disruption. The analysis underscores continued concern about state-linked or advanced sabotage operations aimed at strategic sectors like nuclear research.
Industrial cybersecurity partnerships are accelerating across the Middle East
The UAE announcements from Dragos and Nozomi Networks suggest a growing regional push to build sovereign cyber capabilities for industrial systems. These partnerships reflect rising concern over critical infrastructure protection as OT, IoT, and digital transformation converge.
Cybersecurity vendors are emphasizing customized, high-trust deployments
ESET’s PRIVATE launch shows demand is rising for bespoke security tools that can operate in complex, regulated, or disconnected environments. The offering is positioned for organizations needing tailored controls, including those running mixed IT/OT estates or air-gapped networks.