Today's Cybersecurity Pulse
CISA adds critical Android and Linux flaws to KEV catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) listed two high‑severity vulnerabilities in its Known Exploited Vulnerabilities catalog: Android CVE‑2025‑48595, an integer overflow that enables privilege escalation on Android 14‑16 without user interaction, and Linux CVE‑2022‑0492. Google released patches for the Android bug in June 2026.
Also developing:
By the numbers: Ingeteam receives $82.5M loan from EIB
Canada’s Supreme Court Scrutinizes Facebook’s Role in Cambridge Analytica Privacy Scandal
Canada’s Supreme Court is hearing a challenge to Facebook over the Cambridge Analytica scandal. The Privacy Commissioner alleges Facebook violated PIPEDA by lacking meaningful consent and failing safeguards. Facebook argues users consented via terms and that data isn’t sensitive. Justices emphasized broader privacy expectations and potential political targeting.
US-Led Botnet Takedown Highlights IoT Risk, Boosts Cyber Stocks
US-led takedown hit four botnets on 3M+ IoT devices; US–Germany–Canada plus tech partners curbed DDoS. IoT weakness sustains cyber risk. Trade insight: overweight cybersecurity leaders.— Viktor Kopylov, PhD, CFA More insights: t.me/si14Kopylov
North Carolina Tech Worker Found Guilty of Insider Attack Netting $2.5M Ransom
A 27‑year‑old North Carolina contractor, Cameron Nicholas Curry, was convicted of six extortion counts after stealing sensitive employee and compensation data from a D.C.‑based tech firm and demanding a $2.5 million ransom. Curry accessed the data between August and December 2023,...
AI Agents Exposing Data: Need Robust Access Controls
After hearing about agents hacking McKinsey's chat bot & Meta having a "rogue" agent that gave people access to files they shouldn't have had access to. Wondering if systems like these will become a way to manage risks of agents...
My Personal Data Has Been Leaked Several Times - This Service Helped Clean It All Up
DeleteMe is a subscription‑based data‑removal service that scans the web for personal information and files opt‑out requests on behalf of users. In a ZDNET test, the platform examined 371 listings and successfully removed 44 within five days, with additional takedowns...
Leap Strategies Sees Rise in Sovereignty Queries From Mid-Market
Leap Strategies reports a surge in data sovereignty questions from Australian mid‑market firms as compliance mandates intensify. The company notes that governance, risk and compliance discussions have moved from purely legal concerns to deep technical involvement, prompting customers to consider...
French Aircraft Carrier Charles De Gaulle Tracked via Strava Activity in OPSEC Failure
Le Monde reported that a French Navy officer unintentionally disclosed the real‑time position of the aircraft carrier Charles de Gaulle by uploading a public Strava run from the deck. The data showed the carrier sailing in the Mediterranean near Cyprus...
NSE to Cut Response Time to Nanoseconds, Targeting 100 Million Trades per Second
The National Stock Exchange of India will slash system latency to the nanosecond range on April 11, enabling roughly 100 million transactions per second. CEO Ashishkumar Chauhan said the upgrade will deliver near‑real‑time finance while warning that the speed jump amplifies cyber‑risk,...
Why Disabling the SQL Server Sa Account Still Matters in 2026
Even with SQL Server’s 2026 security enhancements, the built‑in sa account remains a critical attack vector. Attack tools still assume sa exists and brute‑force its password, giving adversaries immediate sysadmin control. Because sa bypasses many modern access controls, compromising it...
Singapore, Japan Align IoT Security Frameworks for Digital Resilience
Singapore and Japan have signed a Memorandum of Cooperation to mutually recognise each other’s IoT cybersecurity labelling schemes. The agreement lets devices certified in one country obtain the other’s Level 1 label through a streamlined process, cutting duplicate testing. It also...
OpenWebUI Servers Targeted for Extensive Cryptomining
OpenWebUI, a widely used open‑source AI interface, is being exploited through CVE‑2025‑63391, a flaw that allows unauthenticated script uploads. Attackers have compromised roughly 12,000 internet‑exposed instances, injecting Python backdoors that run cryptocurrency miners and steal credentials. About half of the...
Justice Department Disrupts Iranian Cyber Enabled Psychological Operations
The U.S. Justice Department seized four domains used by Iran’s Ministry of Intelligence and Security for cyber‑enabled psychological operations and transnational repression. The sites—Justicehomeland.org, Handala‑Hack.to, Karmabelow80.org, and Handala‑Redwanted.to—were employed to claim hack credit, publish stolen data, and issue death threats...
Scoop: Anthropic Meets with House Homeland Security Behind Closed Doors
Anthropic co‑founder Jack Clark met privately with the bipartisan House Homeland Security Committee, discussing AI model distillation and export‑control challenges. The Pentagon dispute over Anthropic’s supply‑chain risk designation was only briefly mentioned. The session was described as friendly, reflecting Anthropic’s...
AI Conundrum: Why MCP Security Can't Be Patched Away
Enterprises are rapidly wiring large language models to external services through the Model Context Protocol (MCP), unlocking powerful automation but also exposing a novel attack surface. Because MCP turns LLMs from passive responders into autonomous agents, they can execute actions...
Can Zero Trust Survive the AI Era?
Federal agencies are confronting a dual challenge: AI‑enabled attackers are slashing attack timelines to roughly 11 minutes and dramatically lowering malware development costs, while defenders must integrate AI into their security stacks. Zero Trust principles—continuous verification, least‑privilege access, and micro‑segmentation—remain...
Agents and Quantum: Cybersecurity World Confronts AI Vulnerabilities and Data Risks Amid an Expanding Threat Landscape
Enterprise adoption of AI agents is exposing new security gaps, with tests showing agents can leak confidential data and 60% of AI‑related incidents resulting in data loss. Vendors are responding: F5 introduced NGINX Agentic Observability to monitor agent‑to‑agent traffic, while...
AI‑built Apps Turn You Into Your Own Vendor
Moving from SaaS to AI-generated apps doesn't just change your tech stack—it shifts the risk. ⚠️ When you "build" with AI, you are the vendor. You own every bug, every breach, and every patch. Are you ready to be a software...
Navia Discloses Data Breach Impacting 2.7 Million People
Navia Benefit Solutions disclosed a breach that affected nearly 2.7 million individuals, exposing personal identifiers such as names, dates of birth, Social Security numbers, and contact details. The unauthorized actors accessed Navia’s systems from December 22, 2025, to January 15, 2026, with the breach discovered...
Oasis Security Secures $120M Series B to Tackle AI Agent Identity Risks
Oasis Security announced a $120 million Series B round led by Craft Ventures, with participation from Sequoia Capital, Accel and Cyberstarts, bringing total capital raised to roughly $195 million. The funding will accelerate its Agentic Access Management platform, which secures non‑human identities such...
FBI Takes Down Iran-Linked Hacker Group’s Website
The FBI appears to have seized the website of an Iran-linked hacker group that claimed responsibility for the only known significant cyberattack on a U.S. company since war between the countries started in February. https://t.co/B8Efsx5dD0
Good AI Teams Must Outpace Bad Actors' AI
The only thing that can stop a bad guy with an AI is a good guy with an AI. Or many good guys with AI. We need to find ways to incentivize that, and build our detection, defense, and intervention capacities...
Lack of CISA Leadership Amid DHS Shutdown Raises Risks, Cyber Pros Say
The U.S. Cybersecurity and Infrastructure Security Agency is operating with roughly one‑third of its staff as the DHS shutdown sidelines 1,500 employees and leaves the agency without a permanent director. Despite the staffing squeeze, CISA continues to issue critical alerts—such...
Add a Verification Selfie to Secure Your Instagram
Big IG fan? Then you definitely want to ensure that you can recover access to your Instagram account if it's hijacked. Now, before it's an issue, the smart move is to add an @Instagram Verification Selfie. Here's how... https://t.co/YVCNoanFY5 #instagram...
Post-Quantum Web Could Be Safer, Faster
The IETF’s draft Merkle tree certificates (MTCs) promise a quantum‑resistant web that is both smaller and faster than existing post‑quantum solutions. By compressing certificate data to roughly 840 bytes, MTCs cut bandwidth and latency compared with ML‑DSA signatures that can exceed...
Vibhor Kumar: PostgreSQL HA Without SSH: Why Open Source Efm_extension Matters in a Zero-Trust World
The open‑source efm_extension brings EDB Failover Manager operations into PostgreSQL via SQL, removing the need for SSH‑based control. It adds functions such as efm_cluster_status, efm_failover, efm_switchover, efm_allow_node and efm_disallow_node, with JSON output for programmatic consumption. The extension runs under a...
Bastille Wireless Threat Detection Podcast Series, Smartwatches
In this inaugural episode of the Wireless Threat Detection series, Adrian Sanabria and John Bundy examine the security implications of smartwatches, highlighting how Wi‑Fi, Bluetooth, cellular, NFC and built‑in sensors expand the attack surface for both consumers and enterprises. They...
Google Details New Advanced Sideloading Flow for Android
Google reveals details about the advanced flow for sideloading apps on Android from unverified developers https://t.co/wv1k3Sujzz
Hackers Breach Firewall Provider, Exposing 672k Personal Records
Every day, in every way, it gets worse. Marquis says 672,075 people had their names, dates of birth, postal addresses, social security numbers, bank account and card details stolen after hackers got in to their firewall provider’s system. https://t.co/Wes13lLF1N https://t.co/vnLfmf8HsP
Campus Networks Have a Security Problem. Huawei's New Solution Can Fix It.
Huawei introduced its Xinghe AI Full‑Scope Security Campus Solution at MWC26, aiming to transform campus Wi‑Fi from a connectivity utility into a comprehensive defense platform. The solution bundles four AI‑driven layers—connectivity, asset, spatial, and privacy security—featuring post‑quantum encrypted Wi‑Fi Shield,...
Google Launches Safer Android Sideloading to Block Scams
Google introduces a new way for users to sideload Android apps that still protects against scams https://t.co/1MWxIHQ54d
Identity Isn’t a Perimeter; Real Security Needs Depth
Identity is not the new perimeter. Catchy phrases are not going to make security any easier. Dig deep and learn how to do it right.
OpenClaw Developers Targeted in $5,000 Token Phishing Scam on GitHub
Security firm OX Security uncovered a GitHub‑based phishing operation that lures OpenClaw contributors with a fake $5,000 $CLAW token airdrop. The scheme embeds obfuscated JavaScript that silently drains connected crypto wallets and erases forensic traces, while the project’s founder has...
Personal AI Agents Pose Massive Data Leak Risk
If a personal agent works "on your behalf," it has your agency. That means it sees every file, email, and system you do. One bad extension is all it takes to leak the "crown jewels." Is the risk worth the reward?...
AI vs AI: New Threats Outpace Old Models
Two companies launched AI that autonomously fights other AI this week. Your threat model from last year doesn't cover this. The adversaries upgraded. Did your security posture?
How We’re Helping You Avoid Scams This Tax Season
Google is rolling out five security features to shield consumers from a 67% surge in tax‑season scams, including fraudulent calls, texts, and fake websites. Pixel phones now offer Call Screen and on‑device AI scam detection, cutting spam calls by 70%....
Identity‑Based AI Authorization Beats Binary HITL Dilemma
btw emerging consensus is that identity-based authz for ai is the most important solution for security, esp if you want to break the binary decision between HITL-everything and —dangerously-skip-permissions keycard is the leading voice in this and now supports all koding...
Ransomware Affiliate Exposes Details of 'The Gentlemen' Operation
An affiliate known as ‘hastalamuerte’ disclosed internal details of the emerging ransomware‑as‑a‑service group The Gentlemen, revealing its dual‑extortion tactics, multi‑platform targets, and sophisticated evasion methods. Group‑IB’s March 19 report shows the group exploits FortiGate VPN devices, uses PowerShell, BYOVD drivers, and...
Latest White House Cybersecurity Strategy Talks Crypto, AI, Quantum
The White House released President Trump’s Cyber Strategy for America in mid‑March, outlining six policy pillars that target critical‑infrastructure protection, emerging‑technology superiority, and a broadened offensive cyber posture. Notably, the strategy calls for securing supply‑chain integrity, promoting U.S.‑made hardware, and...
UMMC Continues Investigating Cyberattack and Recovering From Impact.
University of Mississippi Medical Center (UMMC) shut dozens of clinics for nine days after a ransomware attack crippled its Epic EMR system. The Medusa ransomware gang later posted the breach on its leak site, claiming to have stolen more than...
SpiderOak Wins New UAS Systems Contract
SpiderOak has been awarded a contract by the U.S. Army Unmanned Aircraft Systems PMO to conduct supply‑chain analysis and cybersecurity assessments for vendors in the Drone Dominance Program. The company will apply its Advanced Cyber Threat & Resilience Assessments (ACTRA)...
The Compliance and Security Risks of Uncontrolled Hotel Communication
Hotel staff increasingly rely on personal messaging apps, creating fragmented communication channels that jeopardize guest data and operational efficiency. This lack of centralized control makes it difficult to track conversations, enforce access policies, and meet regulatory standards such as GDPR...
Threat Groups Target Cyber-Physical Systems to Disrupt Critical Infrastructure Providers
Claroty's latest report reveals a surge in attacks on cyber‑physical systems that control critical infrastructure. State‑sponsored, hacktivist and other threat groups are exploiting internet‑exposed devices, default credentials and insecure protocols to compromise SCADA and HMI platforms, often without needing software...
Water Utilities Need Hands-On Cybersecurity Help, Not Just Free Guidance, Pilot Program Finds
Microsoft, the Cyber Readiness Institute and CCTI ran a 2023‑2025 pilot to boost cybersecurity at small and medium water utilities. Of 113 utilities that expressed interest, 72 enrolled and only 43 completed the program, but utilities that received a dedicated...
Secure File Transfer Services: Types, Tools and Selection Tips
Secure file transfer services replace legacy protocols with encrypted, access‑controlled solutions that meet modern compliance demands. The market spans simple SCP tools to sophisticated Managed File Transfer platforms offering AI‑driven threat detection, audit logging, and integration with identity providers. Leading...
Russian Hackers Exploit Zimbra Flaw in Ukrainian Govt Attacks
Russian state‑backed APT28 leveraged the high‑severity Zimbra Collaboration Suite flaw CVE‑2025‑66376, a stored XSS that enables unauthenticated remote code execution, to target Ukrainian government entities. The vulnerability was patched in early November, yet attackers continue to exploit unpatched installations. The...
OWASP AIVSS Project Announces the Release of v0.8 Scoring System for Agentic AI Security Risks in Co-Publication with AIUC-1 and...
The OWASP Agentic AI Vulnerability Scoring System (AIVSS) released version 0.8 on March 19, 2026, incorporating over 1,900 public comments and new mappings to AIUC‑1, NIST AI RMF, and CSA MAESTRO. The update adds a refined quantitative model, revised core risks, enhanced usability, and...
Salt Security Launches Agentic Security Platform for the AI Stack Across LLMs, MCP Servers and APIs
Salt Security unveiled the Agentic Security Platform, a unified solution that protects the entire AI agent stack—including large language models (LLMs), MCP servers, and APIs—by mapping their interconnections into an Agentic Security Graph. The platform adds two core capabilities: Agentic...
Healthcare Compliance in Website Development (2026 Guide)
Building or redesigning a healthcare website now demands strict adherence to multiple regulations, including HIPAA, the ADA, and state privacy statutes such as CCPA. In 2026, agencies like the OCR and FTC have intensified audits, targeting insecure data transmission, unapproved...
CISO Whisperer Names 11 Vendors Leading the Shift From Tools to Outcomes at RSA Conference 2026
The CISO Whisperer has identified 11 cybersecurity vendors at RSA Conference 2026 that exemplify the industry’s move from reactive tools to outcome‑driven, AI‑powered operations. Companies such as Daylight Security, Reclaim Security and CyCognito showcase models that turn detection into automated...
Versa Extends SASE Platform with Inbound SSE and Secure Enterprise Browser
Versa announced two major extensions to its VersaONE Universal SASE platform: Inbound Security Service Edge (SSE) and a Secure Enterprise Browser. Inbound SSE routes external traffic through Versa’s cloud gateways, applying policy controls before it reaches on‑premise or cloud applications,...