Today's Cybersecurity Pulse
CISA adds critical Android and Linux flaws to KEV catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) listed two high‑severity vulnerabilities in its Known Exploited Vulnerabilities catalog: Android CVE‑2025‑48595, an integer overflow that enables privilege escalation on Android 14‑16 without user interaction, patched in June 2026; and Linux CVE‑2022‑0492, a kernel flaw also deemed actively exploited.
Also developing:
By the numbers: Ingeteam secures $82.5M loan from EIB for renewable energy R&D
How to Build Secure 24/7 AI Automations With OpenClaw
OpenClaw is an open‑source AI agent that automates tasks and delivers actionable insights, now packaged with a step‑by‑step guide for secure 24/7 deployment on Google Cloud Platform. The tutorial emphasizes establishing an encrypted SSH tunnel, provisioning a scalable VM, and installing required Node.js or Python dependencies. By following the outlined procedures, users can launch a fully functional OpenClaw instance that runs continuously while protecting sensitive data. The guide also addresses common pitfalls such as SSH disconnections and integration errors, ensuring a reliable production environment.
Secure at First Silicon: Reducing Cost and Risk
Side‑channel leakage often surfaces only after first silicon, forcing expensive redesigns. The Inspector Pre‑Silicon framework embeds side‑channel analysis into RTL and gate‑level verification, generating test vectors and statistical metrics to identify leakage early. By providing actionable, module‑level insights throughout the...
Meta’s Ray-Ban Glasses Face Investigation in Kenya
Kenya's data protection authority launched an investigation into Meta's Ray‑Ban smart glasses over allegations that footage, including sensitive personal moments, is reviewed by human contractors, raising privacy concerns echoed in the US and UK. In Nigeria, persistent naira volatility—fluctuating around...
Align Security, IT, Ops for Disciplined Resilience
What does disciplined resilience look like when ResOps works? At @Commvault's ResOps Rumble at RSAC, Bill O'Connell asked a room of security leaders how many had perfect alignment across security, IT, and ops. Almost every hand dropped. @Commvault's Chris Bevil breaks down how...
SEBI Algo Trading Norms Kick in Today: 2FA, Audit Trails for Brokers Now Mandatory
The Securities and Exchange Board of India (SEBI) has activated new algorithmic trading regulations, requiring brokers to maintain comprehensive audit trails for every automated trade. Mandatory two‑factor authentication, password‑expiry policies, and daily auto‑logout must secure API access. The rules also...
Perplexity AI Accused of Embedding ‘Undetectable’ Trackers for Secretly Routing Sensitive User Data to Meta and Google
Perplexity AI is confronting a proposed class‑action lawsuit that alleges the startup embedded undetectable trackers in its search engine, routing user conversations—including those entered in Incognito mode—to Meta and Google. The complaint, filed by a Utah resident, claims the data...
Mimecast Makes Enterprise Email Security Deployable in Minutes
Mimecast introduced an API‑based email security solution that integrates directly with Microsoft 365, delivering full Secure Email Gateway protection without any MX record changes. The service can be activated within minutes, offering deep URL inspection, sandboxing, AI‑driven BEC detection, and automated...
Malware Detectors Trained on One Dataset Often Stumble on Another
Researchers at the Polytechnic of Porto evaluated machine‑learning static malware detectors across six public Windows PE datasets and four external collections. Models achieved high‑90s AUC and F1 scores on in‑distribution data, but performance fell sharply on external sets, especially the...
Supply Chain Hacks Cripple Major Security and AI Tools
Rundown of the very bad week in security: - TeamPCP (sophisticated hacking group) attacks: Hackers broke into the system that builds a oss popular security scanning tool called Trivy. This was a supply chain attack (when bad code is slipped...
Iran's Threat Highlights AI as U.S. Security Issue
if iran has threatened to attack US AI companies and data centers does that mean AI is a matter of US national security or no? asking for a friend
Want to Know Which Sites Are Selling Your Data?
Global Privacy Control (GPC) is a free, browser‑based privacy tool that lets users signal they do not want their personal data sold. Inspired by the 2020 California Consumer Privacy Act, GPC integrates with extensions for Brave, DuckDuckGo, Firefox Nightly, Disconnect,...
RedotPay Secures ISO/IEC 27001 Certification, Boosting Trust in Stablecoin Payments
RedotPay announced it has earned ISO/IEC 27001 certification for its information‑security management system, a milestone that validates its security‑first culture and enhances credibility with global banks and payment institutions. The certification, granted by SGS, signals robust controls for the fintech’s...
SANS Stormcast Wednesday, April 1st, 2026: Application Control Bypass; Axios NPM Module Compromise; TeamPCP vs Cloud
In this 6‑minute Stormcast episode, Johannes Ulrich discusses three urgent security topics: a technique for bypassing Palo Alto's application control by fragmenting data into 5‑byte chunks via a Netcat tunnel, the recent supply‑chain compromise of the popular npm Axios package...
Claude Code Leak Reveals Secrets Behind Its Powerful Harness
Claude Code's source files just leaked. We can finally see what makes the harness so good. Full breakdown: https://t.co/s7VRzoXdkj
Study Shows 10,000 Qubits Could Break RSA‑2048, Threatening Global Encryption
A peer‑reviewed study posted to arXiv on March 31 claims that a fault‑tolerant quantum computer needs only about 10,000 qubits to run Shor’s algorithm against RSA‑2048, and as few as 26,000 qubits could break the standard in seven months. The paper...
Google Deploys AI‑Enhanced Ransomware Detection to All Drive Users
Google announced that its AI‑powered ransomware detection and recovery suite is now enabled for all Google Drive users. The upgrade claims to spot 14 times more infections, automatically pause syncing, and offer 25‑day version restores, marking the company’s biggest consumer‑level...
Mercor Says It Was Hit by Cyberattack Tied to Compromise of Open Source LiteLLM Project
Mercor, an AI recruiting startup, confirmed a security incident tied to a supply‑chain attack on the open‑source LiteLLM library, which was linked to the hacking group TeamPCP and later claimed by extortion group Lapsus$. The breach may have exposed data,...
Workload IAM Vs. Secrets Management: A Practical Decision Guide
Most organizations begin non‑human identity security with a secrets manager, but exploding credential sprawl and the secret‑zero problem expose its limits. GitGuardian found 29 million secrets leaked on GitHub in 2025, a 34 percent rise, and Verizon still flags credential abuse as...
Australia Is Tightening the Rules on Children’s Privacy – Here’s How It Will Work
Australia is overhauling its privacy framework with the 2024 Privacy and Other Legislation Amendment Act, tasking the OAIC with a new Children’s Online Privacy Code. The draft, now open for public comment until June 5, extends to all digital services that...
Russia Moves to Slash VPN Use, Targets Apps Including Telegram
Russia's digital minister Maksut Shadaev announced a package of measures to curb VPN usage, including mandatory blocking by platforms, a proposed data surcharge, and the removal of custom VPN apps from the Apple App Store. The crackdown coincides with intensified...
Proton Launches Encrypted Workspace Suite to Challenge Google and Microsoft
Proton announced Proton Workspace, an end‑to‑end encrypted suite of productivity apps—including Drive, Docs, Sheets, Calendar and Meet—available today. Pricing starts at $14 per month (annual billing) and the company says it serves over 100,000 enterprise customers, positioning the bundle as...
Mercor AI Hacked Amid Tailscale VPN Security Concerns
Is this because Tailscale VPN got hacked? or something else? Anyway, Mercor AI got hacked.
Singapore: Tightening Oversight for a Safer Digital Environment
Singapore's Infocomm Media Development Authority (IMDA) issued Letters of Caution to two major social‑media platforms, placing them under Enhanced Supervision for failing to detect and remove child sexual exploitation material and terrorism‑related content. The action stems from the Code of...
Vietnam: Advancing National Capacity to Enhance Cyber Resilience
Vietnam has approved a major project to boost its national cybersecurity protection force, aiming to rank among the top 15 in the Global Cybersecurity Index by 2030. The plan targets training 10,000 specialists, with 20% achieving international certification, and seeks...
_Brian_Jackson_Alamy.jpg?width=1280&auto=webp&quality=80&disable=upscale)
The Forgotten Endpoint: Security Risks of Dormant Devices
Consultants are left holding corporate laptops long after projects pause, creating hidden entry points into enterprise networks. A Kensington study shows 76 % of IT leaders faced device theft and 46 % suffered breaches from unsecured hardware. Organizations repeatedly fail endpoint visibility,...
Secure Rust‑based AI OS: IronClaw Protects Agent Harnesses
Agent harnesses are the final operating system. Agent harnesses or “claws” are bringing a fundamental shift in computing, becoming the next-generation operating system with AI at its core. Unlike traditional OS that require users to navigate between apps, claws boot...
Attackers Leverage AI Faster Than Defenders' Policies
“Cyber criminals are the ones using AI most effectively.” One of those quotes from RSAC that stuck with me. Not because it’s surprising, but because it’s operationally true. Attackers iterate faster. They measure outcomes better. They deploy without governance friction. Meanwhile, defenders are still debating...
Mamdani Puts New York City Government Back on TikTok
New York City mayor Zohran Mamdani announced the reversal of the 2023 TikTok ban, permitting city agencies to post on the platform under strict security protocols. The policy change follows TikTok's agreement to spin off its U.S. operations, addressing federal...
WA Local Gov Entity Lost $350,000 in Phishing Attack
A Western Australian council lost approximately US$231,000 after a phishing attack altered a supplier’s bank details in its finance system. The incident is one of 14 case studies in the WA Office of the Auditor General’s 2025 Local Government Information...
US Bounty on Iranian Hackers Reissued
The U.S. State Department has reissued a $10 million bounty for information on Iranian threat groups Handala and Parsian Afzar Rayan Borna. The reward follows the FBI’s confirmation that Handala breached Director Kash Patel’s personal email and earlier disclosures of compromised...
Agentic AI Turns One Prompt Into System‑Wide Threat
From Anarchy to Authority: Closing the Governance Gap in Agentic AI “Agentic systems collapse the traditional attack chain in that a single manipulated instruction through prompt injection, tool misuse, or data poisoning can trigger disproportionate impact. Agency enables malicious intent...
Changemaker Defends Healthcare's Evolving Cyber Frontline
Samantha Jacques, senior leader at McLaren Health Care, is spearheading a public‑private partnership through the Health Sector Coordinating Council to safeguard connected clinical environments. Her team delivers unified guidance that addresses the rising tide of cyber threats targeting hospitals and...
NordLayer Unveils Secure Browser for SMB SaaS Users, Pricing Starts at $8/Month
NordLayer has released a dedicated enterprise browser aimed at small and medium‑size businesses that rely on SaaS applications. The browser bundles data‑loss‑prevention, zero‑trust traffic routing and IP anonymization, with subscription plans beginning at $8 per user per month. The move...
CareCloud Confirms Data Breach After Eight‑Hour EHR Outage, Patient Info Potentially Exposed
CareCloud, a publicly traded healthcare‑technology firm, disclosed a cyberattack that knocked out one of its six electronic health‑record environments for eight hours on March 16, 2026. The breach may have allowed attackers to view or copy patient information, prompting a...
Google Paper Cuts Qubit Count, Sparks Quantum‑security Scramble for Bitcoin, Ethereum
Google’s Quantum AI team published a whitepaper indicating that fewer than 500,000 physical qubits could break the elliptic‑curve cryptography securing Bitcoin and Ethereum wallets. The finding compresses the timeline for a viable quantum attack from the mid‑2030s to the end...
OpenClaw Has 500,000 Instances and No Enterprise Kill Switch
OpenClaw, an AI‑driven personal assistant, has exploded to roughly 500,000 internet‑facing instances, with more than 30,000 showing clear security gaps. A UK CEO’s unencrypted OpenClaw workspace was listed for sale on BreachForums, exposing conversations, production databases, API keys and personal...
AI Agents Turn Environment Into Attack Surface
AI agents don’t just inherit LLM risks — they amplify them. I came across an interesting paper: “AI Agent Traps.” Most discussions still focus on prompt injection. That’s already incomplete. Because once agents have: - autonomy - persistence - tool access...
Google Drive Expands AI Ransomware Detection, File Recovery to More Users
Google has moved its AI‑powered ransomware detection and built‑in file recovery for Drive from beta to general availability. The new model claims to spot 14 times more threats and automatically pauses Drive for desktop syncing when encryption activity is detected. A...
Unsolicited Loan Data Leak Exposes Flawed Third‑Party Sharing
Great. My phone number was found on the dark web in conjunction with a breach of a site I don’t even use. Third party data sharing is not cool. Apparently it is a fintech blockchain HELOC company. Definitely did not...
Essential Security Docs Most Orgs Still Miss
Cybersecurity scales with process + templates 🔐 Key docs every org needs: 🛡️ InfoSec: incident logs, access matrix, data classification 🌐 Network: DDoS plan, VPN/NAC logs, patch schedule ☁️ Cloud: config baseline, IR log, backup testing, asset inventory 🧩 AppSec: secure coding checklist, SAST logs,...
Massive JS Supply Chain Attack Threatens Laptops—Our Defense
If you’re coding on your laptop or most environments outside of Replit you might’ve been exposed to a massive JavaScript supply chain attack that can take over your computer. Here is what we do to protect our customers:
Cybersecurity Reckoning Arrives Sooner—Early 2027
Ok so the cybersecurity reckoning is happening a little faster than I expected (early 2027)
Supply Chain Attacks Threaten Trust, Server Checks Essential
Just had to check my servers to be sure, as I was working on stuff around this time frame, looks like all is ok. Supply chain attacks like this are becoming more of an issue, eroding the trust model. https://t.co/fOTLJCgCrH
Satoshi Warned of Quantum Risk, Urged Gradual Transition
JUST IN: Satoshi Nakamoto acknowledged Bitcoin quantum risk early in 2010, suggesting If it happens gradually, we can transition. https://t.co/P6PSea6doH
AI‑found Zcash Sprout Bug Fixed; Funds Remain Safe
Security Disclosure: last week a white-hat security researcher using AI found a bug in Zcash's old “Sprout” pool. Folks from ZODL and Shielded Labs worked together to fix it, and mining pools have updated. User funds are safe. Full report:...
AI Governance Gaps Enable Rogue Agent Threats
Governance around AI and data is still a significant problem. Many vendors still hesitate to talk about it. What Happens When AI Agents Go Rogue? https://t.co/5TE3g0hXng #CIO #CISO #AI #cybersecurity
Can Burning Satoshi's Coins Curb Quantum Risk?
Is burning Satoshi's coins the right path to solve [part of] the quantum threat? https://t.co/LVOy35zOxM
Quantum Threat May Reach Bitcoin Within One Block
Google now warns quantum attacks could happen within Bitcoin’s block time. Are we closer than we think? I’m speaking with Alex Pruden and Dolev Bluvstein about what this means for crypto. https://t.co/LVOy35zOxM
Elliptic Curve Crypto Underpins All Protocols—Removing It Requires Complete Rebuild
"Everything relies on elliptic curve cryptography. If you remove that foundation, you need to rebuild EVERYTHING. The issue? Most protocols use this." https://t.co/OMA9HmxIQs
Quantum Leap: 10k Atomic Qubits Threaten Crypto Security
From “millions of qubits” to ~10,000 atomic qubits. That’s a major shift. What does it mean for Bitcoin, Ethereum, and cryptography? We break it down live. https://t.co/OMA9HmxIQs