SECURITYWEEK reports a trio of notable developments this week. Google has detailed a new advanced flow for Android sideloading that lets users install apps from unverified developers while adding friction to deter social engineering scams, with the rollout set for August.
Operation Alice is described as a 10‑day, international effort led by German authorities and supported by Europol that shut down more than 373,000 dark web domains run by a China‑based operator; the operator, aged 35, allegedly earned about €345,000 from around 10,000 victims, and authorities from 23 countries participated, leaving 440 customers under active investigation.
The UK financial regulator has finalised new rules requiring financial firms to report serious cyber incidents within 24 hours of meeting thresholds, with payment service providers facing a four‑hour deadline; according to the FCA, these rules take effect in March 2027 and Eurostat notes growing concern over third‑party involvement, with over 40% of incidents in 2025 involving a third party and a requirement to maintain and annually submit a register of material third‑party arrangements. Written by SecurityWeek News.