Critical

Booz Allen’s Vellox brings AI vs. AI defense to protect critical infrastructure and national security

Help Net Security

Overview

Booz Allen Hamilton has introduced a new cyber defense suite called Vellox, designed to tackle the increasing threats posed by AI-driven cyberattacks. Their latest threat report, titled 'When Cyberattacks Happen at AI Speed', indicates that the speed of cyberattacks is outpacing response efforts, with the average time for attackers to move from initial access to compromising additional systems dropping to under 30 minutes by 2025. This rapid escalation highlights the urgent need for advanced defenses, especially for critical infrastructure and national security. The Vellox suite aims to counteract these threats by utilizing AI technologies to enhance defensive measures. As cyber threats continue to evolve and become more sophisticated, tools like Vellox may be essential for organizations looking to protect their systems and data.

Key Takeaways

  • Timeline: Newly disclosed

Original Article Summary

Booz Allen Hamilton’s new Vellox suite showcases how AI-native cyber defense can counter growing threats to U.S. national security and critical infrastructure. The company’s new threat report, When Cyberattacks Happen at AI Speed, shows that AI is widening the gap between the speed of cyberattacks and time to respond. In 2025, the average breakout time from initial access to ability to move into other systems “dropped to under 30 minutes, with the fastest cases measured … More → The post Booz Allen’s Vellox brings AI vs. AI defense to protect critical infrastructure and national security appeared first on Help Net Security.

Impact

Not specified

Exploitation Status

The exploitation status is currently unknown. Monitor vendor advisories and security bulletins for updates.

Timeline

Newly disclosed

Remediation

Not specified

Additional Information

This threat intelligence is aggregated from trusted cybersecurity sources. For the most up-to-date information, technical details, and official vendor guidance, please refer to the original article linked below.

Related Topics: This incident relates to Critical.

Related Coverage

Industry Reactions to Pentagon Suspending CMMC Phase 2: Feedback Friday

SecurityWeek

The Pentagon has temporarily suspended Phase 2 of the Cybersecurity Maturity Model Certification (CMMC), which means that third-party audits required for defense contractors will not take place for now. This suspension does not eliminate the legal requirement for companies to protect Controlled Unclassified Information (CUI). Industry experts have expressed their concern that while the audits are paused, the obligation to secure sensitive information remains critical. This situation affects defense contractors and their ability to demonstrate compliance with cybersecurity standards, potentially impacting their contracts and operations. With the growing emphasis on cybersecurity in defense, the continued protection of CUI is essential for national security.

Jul 17, 2026

Hacking US Elections: The First Tranche of Declassified Election Integrity Documents

Cyber Defense Magazine

The article discusses the release of declassified documents related to the integrity of U.S. elections, which cybersecurity professionals are encouraged to review. These documents shed light on various aspects of election security, particularly in the context of hacking concerns that have been prevalent over the last decade. Researchers at DEF CON have been instrumental in examining vulnerabilities in voting systems, and the declassified records provide crucial insights into how past elections could have been compromised. Understanding these details is vital for improving future election security and ensuring public confidence in the electoral process. The implications of these findings extend beyond cybersecurity professionals, as they affect the integrity of democratic processes in the U.S.

Jul 17, 2026

New Russian Campaign Uses Fake Webex and Zoom Installers to Deploy Starland RAT

Security Affairs

Researchers at Cisco Talos have identified a new campaign by a Russian-speaking group known as UAT-11795, which is distributing fake installers for popular applications like Zoom, Webex, and MobaXterm. These malicious installers are designed to deliver the Starland Remote Access Trojan (RAT) and a memory-only implant called WLDR. The campaign has been targeting users primarily in the United States and Europe. This is concerning as it highlights the ongoing threat posed by financially motivated cybercriminals who exploit trusted software to gain access to sensitive systems. Users should be wary of downloading software from unofficial sources and ensure they are using legitimate installation files to protect against such attacks.

Jul 17, 2026

Cyberattack Disrupts Operations of Japanese Frozen Food Giant Nichirei

SecurityWeek

Nichirei, a major Japanese frozen food company, faced a cyberattack on July 13, which forced the company to disconnect its systems. As a result, operations were significantly disrupted, impacting their ability to process and distribute their products. The company is now in the process of gradually restoring its systems, but the incident raises concerns about the security of supply chains in the food industry. Cyberattacks on food companies can disrupt not only business operations but also affect food availability and consumer trust. Nichirei's experience serves as a reminder for companies in all sectors to prioritize cybersecurity to protect against similar threats.

Jul 17, 2026

New GoSerpent Malware Targets Southeast Asian Governments and Diplomats for Espionage

The Hacker News

Researchers have identified a new malware strain named GoSerpent, which has been targeting government and diplomatic entities in Southeast Asia since late 2025. Discovered by Kaspersky in February 2026, GoSerpent is designed for long-term access and intelligence gathering, indicating a sophisticated level of espionage. The malware's specific targets include various Southeast Asian governments and their associated diplomatic missions, raising concerns about national security and the potential for sensitive information to be compromised. The emergence of GoSerpent highlights the ongoing cyber threats faced by government institutions in the region, emphasizing the need for enhanced cybersecurity measures. As attacks like these become more common, governments must prioritize their defenses against such persistent threats.

Jul 17, 2026

US charges two over laundering $43 million from investment fraud

BleepingComputer

U.S. prosecutors have charged a New York couple with laundering $43 million gained from cyber investment fraud schemes. The duo is accused of being part of a larger crime ring that exploited unsuspecting investors through fake investment opportunities online. This case highlights the ongoing issues surrounding cyber fraud, where victims are often tricked into handing over their money under false pretenses. The charges serve as a reminder of the importance of vigilance when it comes to online investments and the need for law enforcement to pursue those who facilitate such crimes. With increasing sophistication in these scams, it is crucial for individuals to be aware of potential red flags when considering investment opportunities.

Jul 17, 2026