Today's Cybersecurity Pulse
CISA adds critical Android and Linux flaws to KEV catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) listed two high‑severity vulnerabilities in its Known Exploited Vulnerabilities catalog: Android CVE‑2025‑48595, an integer overflow that enables privilege escalation on Android 14‑16 without user interaction, and Linux CVE‑2022‑0492. Google released patches for the Android bug in June 2026.
Also developing:
By the numbers: Ingeteam receives $82.5M loan from EIB
Why Retailers Must Secure Transactional Emails to Combat Scam Threats
Retailers face rising fraud as scammers target transactional emails, with 85% of U.S. adults expressing concern and one in four having experienced a scam. Each consumer receives about 121 emails daily, making order confirmations and shipping notices prime phishing vectors. Implementing SPF, DKIM, and DMARC, along with dedicated IPs and partner solutions, can create a verifiable trust chain. Experts warn that secure email will become a baseline expectation in 2026, influencing brand reputation and revenue.
KYND Hires US Insurance Lead Aaron Aanenson
Cyber risk intelligence firm KYND has appointed Aaron Aanenson as Head of Insurance for North America, bolstering its leadership as demand for SME cyber‑risk insight rises. Aanenson brings over 18 years of experience in cybersecurity consulting, management consulting and insurance,...
The MSP Guide to Using AI-Powered Risk Management to Scale Cybersecurity
The guide explains how managed service providers (MSPs) can leverage AI‑powered risk management to transform fragmented cybersecurity services into a scalable, revenue‑generating model. It outlines the shift from isolated, compliance‑only offerings to a risk‑first approach that delivers continuous protection and...
Hexnode IdP Brings Device-Aware Authentication and Zero Trust to Enterprise Access
Hexnode has launched Hexnode IdP, a native identity provider embedded within its unified endpoint management (UEM) platform. The solution combines authentication, single sign‑on, MFA and role‑based access with real‑time device posture checks, allowing only compliant devices to access corporate applications....
Ghanain Man Pleads Guilty to Role in $100 Million Fraud Ring
A 40‑year‑old Ghanaian national, Derrick Van Yeboah, pleaded guilty to conspiracy to commit wire fraud. He was a senior member of a fraud operation that stole more than $100 million from U.S. victims through romance scams and business‑email‑compromise attacks between 2016...
Cyolo PRO 7.0 Expands OT-First Secure Remote Access with AI Session Intelligence
Cyolo has launched Cyolo PRO 7.0, an upgrade that extends its OT‑first secure remote access platform with AI‑driven session intelligence, passive asset and traffic discovery, and a consolidated operational dashboard. The AI engine automatically transcribes session video, categorizing user actions to speed...
Oracle Introduces Selfie Biometrics to Tackle Workforce Fraud
Oracle has launched a selfie‑based biometric authentication and liveness detection feature within its Cloud Infrastructure Identity and Access Management (IAM) Identity Assurance service. The capability creates encrypted facial vector embeddings after users enrol with a government ID, storing only the...
AI Transforms ‘Dangling DNS’ Into Automated Data Exfiltration Pipeline
Dangling DNS records—stale domain pointers left after cloud resources are shut down—are being weaponized by attackers to create automated data exfiltration pipelines for AI agents. By hijacking the abandoned hostname, threat actors embed hidden prompts that AI assistants interpret as...
Cyber Security Model
The UK Ministry of Defence has transitioned its Cyber Security Model from version 3 to version 4, introducing four new Cyber Risk Profiles (Level 0‑3) and a digital Supplier Cyber Protection Service for risk assessments and assurance questionnaires. Under CSMv4, suppliers must self‑assess...
Digital Health and Care Wales Seeks £5 Million Intelligent Audit Solution
Digital Health and Care Wales (DHCW) has launched a £4.9 million procurement for a National Intelligent Integrated Audit Solution to monitor user access across the NHS Wales single patient record, clinical applications and data repositories. The cloud‑based platform must ingest audit...
Why Enterprises Are Still Bad at Multicloud
In 2026 enterprises are spread across AWS, Azure and Google Cloud largely due to mergers, product deadlines and lock‑in avoidance, not a deliberate strategy. Multicloud adoption has outpaced the development of a unified operating model, leaving companies with three separate...
LexisNexis Brings Deepfake and Fraud Defense to Epic MyChart
LexisNexis Risk Solutions is expanding its identity‑verification suite within Epic’s Connection Hub, enabling U.S. hospitals to embed advanced security tools directly into MyChart. The integration adds AI‑driven behavioral analytics, OTP authenticators, and other modular components to protect patient health data...
90 Zero-Day Exploits Surge as Enterprises Become Prime Targets
Google GTIG: 90 zero-day flaws exploited in 2025 as enterprise targets grow https://t.co/AasF2pQ7kO #BreakingNews https://t.co/fzlSfxjbz0
March 2026 Patch Tuesday Forecast: Is AI Security an Oxymoron?
Developers are increasingly embedding AI into software, but the tools themselves are proving vulnerable, highlighted by Google’s Gemini AI flaw in Chrome (CVE‑2026‑0628) with an 8.8 CVSS score. Malicious AI‑powered browser extensions are also surfacing, harvesting data from unsuspecting users....
Challenges and Projects for the CISO in 2026
CISOs face a 2026 threat landscape where AI‑driven attacks are faster, cheaper, and more credible, forcing a shift from prevention to rapid response. Experts warn that a growing internet monoculture and quantum decryption threats will magnify breach impact. Identity verification...
Tidal Cyber Featured in SageTap H2 2025 Cybersecurity Report
Tidal Cyber, a pioneer of Threat‑Led Defense, has been featured in SageTap’s H2 2025 Cybersecurity Report, which examines verified security buying decisions from 264 leaders. The report highlights growing enterprise investment in AI‑enabled platforms that turn threat intelligence into measurable actions....
Backup Strategies Are Working, and Ransomware Gangs Are Responding with Data Theft
Business email compromise (BEC) and funds transfer fraud (FTF) accounted for 58% of cyber‑insurance claims in 2025, with BEC alone representing 31% of all claims. Average BEC loss fell 28% to $27,000 and FTF loss dropped 14% to $141,000, while...
Why Phishing Still Works Today
Gal Livschitz, senior penetration tester at Terra Security, explains how phishing has become harder to detect by leveraging HTTPS, branded look‑alike domains, and sophisticated delivery methods. He highlights the rise of QR‑based phishing in PDFs, MFA‑fatigue attacks that pressure users...
Secure Mesh Radio Technology & C2 Capabilities for UAVs & Unmanned Systems
Beechat Network Systems joins Unmanned Systems Technology as a Gold Partner, showcasing its Kaonic™ mesh radio platform for UAVs, UGVs and autonomous platforms. The solution delivers infrastructure‑free, multi‑hop networking with up to 128 encrypted hops, dual‑band SDR operation and cryptographic...
What Happens when AI Teams Compete Against Human Hackers
The NeuroGrid competition, hosted on Hack The Box, pitted 120 AI‑augmented teams against 958 human‑only teams across 36 security challenges. AI‑augmented participants completed 73% of challenges, far outpacing the 46% completion rate of human‑only teams. The advantage was strongest on...
Why CPE Security Is Now a Strategic Imperative for Telcos
Telecom operators moving to all‑IP, software‑defined networks have pushed the security perimeter to the customer premises, turning CPE devices into exposed, internet‑facing nodes. Legacy firmware, slow patch cycles and overlooked set‑top boxes create easy entry points for attackers, exposing core...
How the Iran War Could Impact States and Localities
Pro‑Iranian hacktivists have begun targeting U.S. entities after the U.S.–Israeli strikes on Iran, including a Pennsylvania township and Amazon Web Services data centers in the Middle East. The attacks are largely low‑level—website defacements, DDoS and SQL injections—but could cascade into...
Solv Protocol Offers 10% Bounty After Hacker Snatches $2.7M
Solv Protocol disclosed that a token vault was exploited, resulting in a $2.7 million loss after a hacker leveraged a smart‑contract bug to mint tokens and swap them for SolvBTC. The breach affected fewer than ten users, with 38.05 SolvBTC taken,...
X Bans Undisclosed AI War Clips for 90 Days
X Defunds The Deepfakes: Undisclosed AI War Clips To Face 90-Day Revenue Ban | Republic World https://t.co/hUVPj3L7Nj #war #wardeepfake #Deepfake #DeepfakeDetection #AIGeneratedContent #AISecurity #DigitalForensics #SyntheticMedia #MediaManipulation #CyberSecurityAwareness #Disinformation #Misinformation #AIEthics #AIRegulation #TrustInMedia #ContentAuthentication #OnlineSafety
We Need Fair and Balanced Audit Reports
Norman Marks argues that audit reports must be more than accurate; they need to be fair and balanced to preserve credibility with management and boards. He recounts an IT audit at a large financial institution where the report highlighted security...
AI-Driven Plant Networks Require Built-In Cybersecurity
Contributor Spotlight: Shantae Hansen (p. 34) — as AI gets embedded into MES/ERP + IIoT + plant networks, cybersecurity has to be “built-in,” not bolted on. Practical moves: segment OT/IT, least-privilege + MFA, disciplined patching and tested offline backups. #Cybersecurity https://t.co/zvLr3eVkMd
Audit Readiness Assessments Demystified: Importance and Relevance for Your Business
Audit readiness assessments are proactive reviews that verify an organization’s controls, policies, and evidence before an official audit. By mapping controls to frameworks such as SOC 2, ISO 27001, HIPAA, or PCI DSS, firms can pinpoint gaps, assign ownership, and remediate issues early....
From the Microsoft Dynamics GP Blogs: GP SmartList Favorites; GP Power Tools Updates; Risks of Old GP Versions; Protect GP...
Microsoft Dynamics GP’s blog roundup spotlights three key updates: SmartList Favorites, a built‑in feature that lets users save and instantly rerun customized reports, promises to slash reporting time; GP Power Tools version 2 introduces six new item‑category fields, expanding inventory customization;...
Chinese State Hackers Target Telcos with New Malware Toolkit
Chinese state‑linked APT group UAT‑9244 has been compromising telecom service providers across South America since 2024. The campaign deploys three previously undocumented malware families—TernDoor, a Windows backdoor using DLL side‑loading; PeerTime, a multi‑architecture Linux ELF backdoor that leverages BitTorrent for...
The SOC Analyst Role Is Going Up (And It Was Never Going Away)
Enterprise Security Operations Centers face overwhelming alert volumes—averaging 4,484 alerts daily, with 67% never investigated. Autonomous triage platforms such as D3 Security's Morpheus use AI to ingest, investigate, and respond to 100% of alerts, cutting false‑positive handling by 99% and...
HAT Bolsters A/NZ Enterprise Security Distie Portfolio with Tufin
Tufin has appointed HAT Distribution as its official distributor for Australia and New Zealand, expanding the vendor's footprint in the region. The partnership stresses technical enablement and architectural alignment rather than a purely transactional sales model. HAT will embed Tufin’s policy‑management...
High-Performance Envelope Encryption at Ariso.ai with Vault
Ariso.ai integrated HashiCorp Vault’s Transit engine to secure its multi‑tenant AI assistant, Ari, using envelope encryption across 21 database tables. A single master key with context‑based derivation provides organization, user, and session isolation while eliminating key sprawl. DEK caching yields...
Arc Raiders Rushes Out Emergency Fix After Its Discord Accidentally Spied On Players
Embark Studios released an emergency hotfix for Arc Raiders after its Discord SDK unintentionally logged all Discord activity, including private direct messages, on players' machines. The SDK created a full Discord gateway connection and stored events locally, prompting privacy concerns....
The Hidden Cyber Risks of Remote Work Infrastructure
Remote work’s productivity gains are shadowed by rising cyber threats, especially weak home Wi‑Fi, sophisticated phishing, and data exposure through BYOD practices. Employees lack security expertise, making self‑policing impossible and corporate controls hard to enforce outside the office. The article...
CyberPeace Foundation and Synergy Quantum Launch the Global Quantum Threat Alliance
CyberPeace Foundation and Synergy Quantum announced the Global Quantum Threat Alliance (GQTA) at the CyberPeace Summit 2.0 in New Delhi on February 10, 2026. The alliance brings together governments, industry players, and academic researchers to confront the emerging risk that...
ShinyHunters Claims Woflow Breach: What It Means for SaaS Supply Chain Security
ShinyHunters claims to have breached Woflow, a SaaS vendor serving large enterprises such as Uber, DoorDash, and Walmart, highlighting a shift toward upstream supply‑chain attacks. The alleged breach, though unconfirmed, follows a pattern of targeting integration‑heavy providers to gain downstream...
What Is Continuous Threat Exposure Management? A Risk-Driven Approach for State and Local Agencies
Continuous Threat Exposure Management (CTEM) is emerging as a risk‑driven framework for state and local governments, shifting focus from sheer vulnerability counts to business‑impact exposure. CDW outlines a five‑stage process—scoping, discovery, prioritization, validation, and mobilization—that integrates asset inventory, threat data,...
Why Your Data Protection Program Should Be Policy-Based
Traditional data protection programs are fragmented, leading to gaps and compliance risk. PKWARE advocates a policy‑based approach that centralizes discovery, classification, encryption, masking, and redaction across all environments. By automating controls with customizable policies, organizations can scale protection, maintain productivity,...
Meta Glasses Privacy Breach Threatens AR Adoption
The biggest viral AI post across all lists today. 14,000+ retweets. Meta glasses sending intimate footage to offshore contractors is exactly the privacy nightmare everyone predicted. This could kill consumer AR adoption if not addressed immediately.
New Jersey County Says Malware Attack Took Down Phone Lines, IT Systems
Passaic County, New Jersey, confirmed a malware attack that knocked out its phone lines and crippled county IT systems on March 5, 2026. The county is collaborating with federal and state authorities to contain and investigate the breach. This incident...
Wikipedia Hit by Self-Propagating JavaScript Worm that Vandalized Pages
The Wikimedia Foundation experienced a self‑propagating JavaScript worm that briefly hijacked both user‑level and site‑wide scripts, injecting malicious loaders into MediaWiki:Common.js and dozens of user common.js files. The worm originated from a test script on Russian Wikipedia and was triggered...
Insurtech CyberCube Warns of Surging Iranian Cyber Risks to Businesses
CyberCube warned that Iranian-linked hacker groups pose a rising cyber risk to U.S. firms, especially in critical sectors, after recent U.S.-Israel military actions. Its AI-driven assessment found 12% of U.S. companies with over $1 billion in revenue at elevated risk, flagging...
What Are The Security Risks of CI/CD Plugin Architectures?
Plugin‑centric CI/CD platforms such as Jenkins rely on thousands of community‑maintained extensions, exposing pipelines to inconsistent security practices, abandoned code, and broad permission grants. In 2025 Jenkins alone recorded over seventy plugin‑related CVEs, including remote‑code‑execution flaws that lingered on exposed...
Cisco Drops 48 New Firewall Vulnerabilities, 2 Critical
Cisco disclosed 48 vulnerabilities across its ASA, Secure FTD and Secure FMC firewall portfolio, including two CVE‑2026‑20079 and CVE‑2026‑20131 that received a perfect 10‑out‑of‑10 CVSS rating. The critical flaws affect the FMC web interface, enabling authentication bypass and remote code execution with...
Early Draft Review Uncovers Fresh Views
Complex Systems this week is a tiny experiment: I did a read of a work-in-progress essay rather than the finished version with author's commentary. It's about secondary authentication/authorization, particularly for payments.
Agentic AI: Autonomous Ops Agents Beyond Simple Alerts
Think beyond co-pilots. Agentic AI in ops means agents that observe signals, reason across security and reliability data, and take guarded actions - not just summarize alerts. #ITOps #SecOps https://t.co/e3w3lXkvfc
HHS’ Office for Civil Rights Settles HIPAA Investigation of MMG Fusion, LLC Breach Affecting 15 Million Individuals
The U.S. Department of Health and Human Services Office for Civil Rights settled a HIPAA investigation with Maryland‑based software firm MMG Fusion, LLC. The settlement stems from a December 2020 cyber‑attack that exposed protected health information of roughly 15 million individuals...
IRS Alerts: New Tax Scams Evolving Beyond Phishing
From phishing emails to bogus tax credits, the IRS warns that scammers keep changing tactics. Here’s what you should know about the most common tax scams now. https://t.co/0ciX8gUJKy
FBI Arrests Suspect Linked to $46M Crypto Theft From US Marshals
The FBI, in coordination with France's elite Gendarmerie unit, arrested John Daghita on Saint Martin for allegedly stealing more than $46 million in cryptocurrency seized by the U.S. Marshals Service. Daghita, the son of a government‑contractor CEO, is accused of abusing his...
Crypto Crime Hits Record $154 Billion as Sanctioned States Turn to Blockchain
Illicit cryptocurrency activity hit a record $154 billion in 2025, driven largely by a 694% year‑over‑year surge in sanctions‑evasion flows to prohibited entities. Nation‑states such as Russia, North Korea and Iran leveraged on‑chain tokens and stablecoins to bypass financial restrictions, while...