Today's Cybersecurity Pulse
CISA adds critical Android and Linux flaws to KEV catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) listed two high‑severity vulnerabilities in its Known Exploited Vulnerabilities catalog: Android CVE‑2025‑48595, an integer overflow that enables privilege escalation on Android 14‑16 without user interaction, patched in June 2026; and Linux CVE‑2022‑0492, a kernel flaw also deemed actively exploited.
Also developing:
By the numbers: Ingeteam secures $82.5M loan from EIB for renewable energy R&D
Future-Proof Your Security and Reduce Quantum Risk with Cryptographic Agility
Enterprise encryption faces imminent quantum risk, prompting a shift to post‑quantum cryptography (PQC). Because PQC algorithms are still maturing, organizations need cryptographic agility to replace and update algorithms without service disruption. Palo Alto Networks’ PAN‑OS 12.1 demonstrates this by allowing hybrid or newer cipher suites through simple configuration changes. Crypto‑agility relies on governance, automation, and modular architecture to keep systems quantum‑safe over time.
Escaping the COTS Trap
Enterprise cybersecurity teams have amassed large fleets of commercial off‑the‑shelf (COTS) tools, driving complexity, cost, and risk. While COTS promises rapid deployment and lower upfront spend, dependence creates structural lock‑in that hampers future changes and migration. The article highlights how...
CBP’s Flashcard Fiasco Points to a Deeper Problem: Security Culture Can’t Scale as Fast as Hiring
U.S. Customs and Border Protection’s Kingsville station inadvertently posted a Quizlet flashcard set containing entrance codes, gate combinations, and internal system details, leaving the information publicly accessible for about six weeks. The leak was discovered in March, prompting a swift...
Chat With Your Data: Introducing AI Assistant for Web Supply Chain Defense
Reflectiz has launched AI Assistant, a conversational AI built directly into its web supply‑chain security platform. The tool lets analysts ask natural‑language questions and receive answers drawn from live security data, eliminating the need to toggle between dashboards. It also...
All Emerging Cyber Threats Targeting Power Infrastructure at a Glance
Researchers at Morocco's Higher School of Technology examined emerging cyber threats to smart grids, highlighting AI‑driven detection and defense methods. They cataloged attacks such as DDoS, false data injection, replay, and IoT‑based intrusions, emphasizing their potential to disrupt power operations....
Beyond the Algorithm: Why Facial Recognition Risk Is Now a Boardroom Issue
Facial recognition technology (FRT) is moving from a back‑office security tool to a strategic boardroom risk. Collecting biometric data exposes firms to regulatory penalties, exemplified by Clearview AI’s £7.5 million (≈$9.5 million) fine in the UK. Boards must add FRT to risk...
Open-Source Software Malware Surging: Endor Labs
Open-source software (OSS) malware exploded in 2025, with more than 90% of OSV malware advisories issued—a 14‑fold increase over the prior two years, and 92% of NPM account takeovers occurring that year. Although 81% of organizations rank OSS malware as...
North Korean Workers Have Been Infiltrating DeFi for 7 Years: Researcher
Cybersecurity researcher Taylor Monahan disclosed that North Korean IT specialists have been embedded in more than 40 decentralized finance projects for at least seven years. The Lazarus Group, linked to the DPRK, has stolen roughly $7 billion in crypto, including high‑profile...
Why Voice Fraud Is CX’s Most Underestimated Problem
AI‑generated voice fraud is exploding, with deep‑fake scams rising 456% year‑over‑year and projected losses of $40 billion by 2027. Europe sees 13 spam calls per subscriber each month and a 15% fraud call rate in the UK, where victims lose an...
CISOs Grapple with AI Demands Within Flat Budgets
The 2026 RH‑ISAC CISO Benchmark reveals that security budgets in large organizations are inching upward, reaching 0.75 % of revenue, while overall IT spend climbs to 3.9 %. More than half of respondents expect modest 1‑10 % budget increases in 2026, but many...
Circle's Judge‑order Rule Blocks $285 M Hack Freeze
Circle had the ability to freeze over $285M in stolen USDC from the Drift hack. They declined — their policy requires a judge’s order first. @tayvano_ explains why that’s the wrong call, and how Tether does it differently. Timestamps: 🚀 0:00 Introduction 🏦 11:21...
Securely Integrate AI Agents Into Your Workforce
AI agents are joining the workforce, so how should organizations manage and secure them? https://t.co/4tsBSzKgf5
AI‑Powered Counter‑Drone Systems Target Data‑Center Threats to Health Records
Sentradel is marketing AI‑driven counter‑drone systems to data‑center operators after Iranian Shahed drones hit three AWS sites in March 2026. The proposal comes as global data‑center capital spending nears $1 trillion, and the cost of a single kamikaze drone ranges from...
Less Reliable Than Fuzzers, Yet Occasionally Luckier
They are exactly like fuzzers except not as reliable. They can get lucky faster though sometimes.
Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab
German authorities have identified 31‑year‑old Russian Daniil Maksimovich Shchukin as the elusive “UNKN” who led the notorious ransomware groups GandCrab and REvil. Prosecutors say Shchukin and associate Anatoly Kravchuk extorted nearly €2 million (≈$2.2 million) in two dozen attacks, causing over €35 million...
Leadership Gaps Fuel Cloud Security Breaches, Says Analyst Firozan
Faranak Firozan, a cloud‑security analyst, warned that leadership failures, not technology gaps, are the primary driver of recent high‑profile cloud breaches. In a Santa Clara briefing on April 5, 2026, she argued that unclear priorities, fragmented accountability and misaligned incentives...
UK Ransomware Ban Threatens FinTech Firms Amid 88% Cybercrime Surge
Britain’s pending ransomware‑payment ban arrives as cybercrime incidents have surged 88% to 1.46 million, outpacing police staffing growth of 31%. The clash between tighter rules and limited enforcement threatens fintech firms that process payments and manage compliance.
Pasig Mayor Warns Public vs AI Video Using His Face
Pasig City Mayor Vico Sotto used social media to alert residents that an AI‑generated video featuring his likeness is promoting an illegal gambling website. He warned that deepfake videos are increasingly realistic, making it harder for victims to distinguish authentic...
From RAG to Zero‑Trust: Verifying Hostile LLM Memory
“i came in thinking I’d build a RAG system. i left with a zero-trust verification pipeline that treats the LLM’s parametric memory as hostile.” 👀 🔗 https://t.co/nFZBhpfUKq https://t.co/HYoRr2wYhf
LinkedIn Scams: An Ecosystem of Identity Theft and Fraud
LinkedIn scams go beyond fake posts or “I’m grateful” stories; they form an ecosystem of identity abuse, data harvesting, and financial fraud.
![Using A VPN Could Subject You To Government Surveillance, Senators Warn [Roundup]](https://hixhlmpcokxhartfkpyi.supabase.co/storage/v1/object/public/images/thumbnails/39247618a8a8ee27b3202d48d0cd6919.webp)
Using A VPN Could Subject You To Government Surveillance, Senators Warn [Roundup]
U.S. senators have cautioned that using commercial VPNs, many of which are foreign‑owned, could inadvertently waive privacy protections and expose Americans to government surveillance. The Department of Homeland Security notes billions are spent each year on such services, highlighting potential...
Funniest/Most Insightful Comments Of The Week At Techdirt
Techdirt’s weekly roundup highlighted the most insightful and funniest reader comments, ranging from a security analysis of the White House’s new app to sharp legal critiques of the Murthy ruling. The editorial spotlight featured a deep dive into Virginia’s controversial...
Alcatraz Raises $50 Million Series B for AI‑Powered Facial Authentication in Commercial Buildings
Alcatraz, the Cupertino‑based AI security startup, announced a $50 million Series B led by BlackPeak Capital, Cogito Capital and Taiwania Capital. The funding will accelerate its Rock™ facial authentication system, which replaces badges and PINs with privacy‑first AI, across data centers,...
Anthropic’s Claude Code Leak: Why the Instinct to Fire Someone Is the Lazy Response
Anthropic unintentionally released nearly 2,000 Claude Code source files, which were quickly copied and viewed 29 million times online. The company framed the incident as a human‑error packaging issue and confirmed no employee was dismissed. CEO Boris Cherny emphasized that the...
SECURITY AFFAIRS MALWARE NEWSLETTER ROUND 91
The Security Affairs Malware Newsletter Round 91 aggregates the latest high‑impact malware research, spotlighting a new macOS infostealer called Infiniti that leverages ClickFix and Python/Nuitka, and a WebSocket‑based pivoting implant named RoadK1ll. It also details a series of supply‑chain compromises of...
AI Is Making Crypto's Security Problem Even Worse, Ledger CTO Warns
Ledger’s CTO Charles Guillemet warned that artificial intelligence is dramatically reducing the cost and speed of crypto hacks, turning what was once a high‑skill, expensive endeavor into a near‑zero‑cost operation. Over the past year, crypto attacks have siphoned roughly $1.4 billion,...
Descope Leads 2026 CIAM Rankings as Enterprises Prioritize No‑Code Identity
Descope was crowned the best overall Customer Identity and Access Management (CIAM) platform for 2026, with more than 1,000 production customers including GoFundMe and Databricks. Its no‑code workflow builder, adaptive multi‑factor authentication and passwordless options are reshaping how enterprises secure...
Mikko Hyppönen Demonstrates Live Drone Hacking at Black Hat 2025, Flagging New Threat Vector
Mikko Hyppönen, a 35‑year cybersecurity veteran, hijacked a drone onstage at Black Hat 2025 in Las Vegas, turning the conference into a live showcase of emerging aerial attack techniques. The demonstration highlighted the gap between mature device security and the still‑raw field...
AI Health Advice Raises Privacy Risks Without Clear Standards
More people are turning to AI for health advice, but it comes with trade-offs. Uploading medical data can deliver useful insights, yet it also raises serious privacy concerns and risks around how that data is stored and used. The lack of...
Researchers Didn’t Want to Glamorize Cybercrims. So They Roasted Them
Researchers at Trellix launched the Dark Web Roast, a meme‑filled blog that mocks cybercrime groups to counteract industry glamorization. The series lampoons a ransomware crew’s content‑calendar extortion tactics, an exploit developer pricing a Cisco RCE bug at $70,000, and undervalued...
Drift Hack Exposes DeFi Audits Gaps and Possible NK Threat
Another week, another DeFi exploit 🫠 @omeragoldberg joined me to unpack the Drift Protocol hack: ⁉️ What went wrong? 👀 How the attack resembles the Mango DAO and Resolv exploits 🤔 Why was Circle so slow to react? ⚠️Are North Korean state actors behind the...
The Hidden Cost of Hybrid: Data Risk and Compliance Gaps in Financial Services
Hybrid working has become the default model for UK financial services, but it is fragmenting data governance and exposing firms to hidden compliance risks. The spread of personal devices, unsecured networks, and shadow‑IT tools makes it difficult to maintain audit...
Brit Flight Attendant Locked Up in Dubai After Sharing Photo of Airport Drone Attack in Group Chatt
A 25‑year‑old British flight attendant with FlyDubai was arrested and placed in Al Barsha pre‑trial detention for posting a photo of the March 7 Iranian drone strike on Dubai International Airport in a WhatsApp group. He is charged under Dubai’s 2021 cybercrime...
CBP Facility Codes Sure Seem to Have Leaked via Online Flashcards
A public Quizlet flashcard set titled “USBP Review” inadvertently disclosed four‑digit gate codes and internal procedural details for a U.S. Customs and Border Protection (CBP) facility in Kingsville, Texas. The set was taken down after WIRED alerted the platform, and...
Seeking Tools that Scan Repos for Malicious Dependencies
What are vendors that offer scanning of PRs or repos to protect against malicious dependencies? I know of Sonar (Advanced Security), Socket .dev, JFrog. What else do you know of or use and what does it do? (At some point, you want...
Meta Halts AI Training After Data Breach Exposes Secrets
Meta freezes AI data work after breach puts training secrets at risk https://t.co/WtjqyiuUAu via @thenextweb
Hid-Omg-Detect: Linux Driver In Development To Detect Malicious HID Devices
Zubeyr Almaho is spearheading a new Linux kernel driver called hid‑omg‑detect, designed to passively monitor and flag potentially malicious HID peripherals such as compromised keyboards and mice. The driver evaluates low‑level signals like keystroke‑timing entropy, immediate post‑enumeration typing, and suspicious...
User Seeks Help Recovering Hijacked X Account
Hey @nikitabier my friend JT’s X account got taken over. It was @tcmllc I can send over any details via DM Can you help us out?
Senators Warn VPN Use May Invite Government Surveillance
Using A VPN Could Subject You To Government Surveillance, Senators Warn [Roundup] - View from the Wing https://t.co/hJwQPvAsyq
Iranian Drone Strikes Hit AWS Data Centres in UAE and Bahrain, Trigger Regional Outages
Iranian Shahed drones struck two Amazon Web Services (AWS) data centres in the United Arab Emirates on March 1 and damaged a third site in Bahrain on April 1, prompting limited service disruptions across the Gulf. The attacks mark the first deliberate...
Iran’s Charming Kitten Exploits Insiders and Low‑tech Tricks
Iran’s Charming Kitten group relies on deception, insider access, and low-tech methods to steal trade secrets and compromise systems. https://t.co/8jKdiH2bzt
Valid Finding Reveals Overlooked Cookie Injection Requirement
The finding is valid but we need to have a cookie injection on the target or its subdomains but I noticed something the AI didn’t notice…yes AI with humans or spend a lot a lot of tokens.
Russia's VPN Blockade Triggers Nationwide Banking Collapse
Telegram founder Pavel Durov said Russia's Friday effort to block VPNs overloaded the country's traffic filters and knocked out banking apps, leaving cash as the only payment method for hours. The incident highlights how aggressive internet controls can destabilize critical...
UK Tightens Energy Cybersecurity After Poland Attack
UK defining stronger energy cybersecurity rules after Poland attack #energysky -- via pv magazine global: https://t.co/UAgNu4x2di
Hope Hyperliquid Is Conducting Emergency Security Review
I really hope Hyperliquid is in a war room right now assuming they’ve already been compromised and reviewing every last thing they’ve done for the last year and a half …
Post-Quantum Cryptography: Moving From Awareness to Execution
Google’s new whitepaper moves the anticipated quantum‑break date, or “Q‑Day,” to 2029 and urges enterprises to adopt post‑quantum cryptography (PQC). The tech giant highlights that elliptic‑curve encryption could be compromised with fewer qubits than previously thought, and it showcases concrete...
New Attack Exposes Massive Vulnerability—Review Now
I called the attack “chilling” only from what details we knew on Thursday. What actually happened is orders of magnitude more chilling. READ THE WHOLE THING. If you work in this industry, you or your protocol may be a sitting...
Evidence Suggests North Korea May Have Orchestrated Drift Attack
Are North Korean state actors behind the Drift Protocol attack? @omeragoldberg says the markings are there, while sharing what it would take to confirm the speculation 👇 https://t.co/8SgvDYy6Lx
Skull Vibrations Could Become Future Biometric Passwords
Vibrations in your skull may be your next password by Rutgers University @TechXplore_com Learn more: https://t.co/oRTnakuTjb #EmergingTech #Innovation #Tech #Technology https://t.co/qvg0gNKuw2
Allowlisting CRLs in Plants: Ongoing, Working Fine
I went through a process to allowlist CRLs in our plants. It's not complete but it's been fine.