Today's Cybersecurity Pulse
CISA adds critical Android and Linux flaws to KEV catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) listed two high‑severity vulnerabilities in its Known Exploited Vulnerabilities catalog: Android CVE‑2025‑48595, an integer overflow that enables privilege escalation on Android 14‑16 without user interaction, and Linux CVE‑2022‑0492. Google released patches for the Android bug in June 2026.
Also developing:
By the numbers: Ingeteam receives $82.5M loan from EIB
Apple’s First Foldable iPhone Ultra Leaked, Raising Security and Repair Concerns
Leaked CAD drawings and supply‑chain hints confirm Apple is developing an iPhone Ultra foldable device that merges iPad mini internals with a clamshell hinge. The design introduces new security questions for the Secure Enclave, thermal constraints near 98 °C, and repair‑cost challenges that could reshape the premium smartphone market.
DTEX Advisory Flags AI Agents Using Telegram and WhatsApp to Steal Data
DTEX’s insider‑risk team issued an advisory warning that AI agents deployed on user endpoints can receive instructions through messaging platforms such as Telegram and WhatsApp, then silently access files, network drives and external AI services. The advisory highlights a detection...
Litecoin Patches Zero-Day Bug After 13‑Block Reorg, Network Stabilizes
The Litecoin development team confirmed that a zero‑day vulnerability in the MWEB protocol triggered a 13‑block chain reorganization on April 25, 2026. The bug was patched within hours, reversing fraudulent transactions and returning the network to normal operation.
Pete Recommends – Weekly Highlights on Cyber Security Issues, April 25, 2026
This week’s cyber‑security roundup highlights a surge in data monetization, biometric verification, and AI‑related privacy risks. Defunct startups are auctioning Slack and email archives for up to $100,000 to train reinforcement‑learning gyms, while Anthropic’s powerful Mythos model was accessed by...
AI's Growing Hacking Capabilities Raise Major Security Threat
AI has got better at hacking—how big a risk is it? https://t.co/pznks07gha via @YouTube #mythos #AIrisk #artificialintelligence #AISecurity #cybersecurity #cybersec @AlbertoEMachado @Eli_Krumova @postoff25 @Khulood_Almani @anand_narang @NutritiousMind @baski_LA @TanyaSinha_ @devaang @AlAmadi1 @jeancayeux @enilev @efipm @mvollmer1 @Nicochan33 @RagusoSergio @FrRonconi @Shi4Tech @sallyeaves @LaurentAlaus @Fabriziobustama @smaksked...
Vodafone and Google Cloud Deploy AI‑Powered Security and Concierge Services for SMBs
Vodafone Business and Google Cloud have launched a managed detection and response service and an AI Concierge tool for small‑ and medium‑size enterprises in Germany and Greece. The offerings extend the firms' $1 billion strategic partnership and create fresh consulting opportunities...
Nigeria's Central Bank Secures Backing for New Digital Banking Safeguards
The Central Bank of Nigeria’s latest digital banking framework, which caps first‑day mobile app transactions at ₦20,000 (≈$26) and mandates device binding, received formal endorsement from the Chartered Risk Management Institute of Nigeria. The institute praised the measures as a...
Netherlands Signs €0 Deal with STACKIT to Shift Government Cloud to Europe
The Netherlands has inked a contract with German cloud provider STACKIT to host government data within the EU, aiming to curb dependence on U.S. tech giants. Ministers say the move strengthens digital resilience and sparks European market growth.
Zapier Launches Enterprise AI Governance Suite, Expanding Control Across Workflows
Zapier announced a suite of AI governance controls for its enterprise customers, adding policy enforcement across no‑code workflows, AI agents, and SDK‑built apps. The rollout, driven by a survey showing 93% of AI projects stall on governance, aims to embed...
Palo Alto Unit 42 Reveals ‘Zealot’ AI‑Driven Cloud Attack That Beats Human Defenders
Palo Alto Networks’ Unit 42 disclosed a proof‑of‑concept AI system, dubbed Zealot, that can autonomously execute a full‑scale cloud intrusion from reconnaissance to data exfiltration in minutes. The experiment demonstrates that AI‑driven attacks can outpace human response, raising immediate concerns...
DeFi Hacks Drain $606 Million in 18 Days, Spotlight Systemic Security Gaps
DeFi protocols lost roughly $606 million across 12 incidents in the first 18 days of April 2026, with Drift Protocol and Kelp DAO accounting for about 95% of the total. The rapid succession of attacks underscores growing vulnerabilities in access controls...
CrowdStrike Launches Project QuiltWorks AI Security Coalition with Accenture, EY, IBM and Others
CrowdStrike announced Project QuiltWorks, a coalition with Accenture, EY, IBM Cybersecurity Services, Kroll and OpenAI to help enterprises detect and remediate AI‑generated software vulnerabilities. The initiative adds a Frontier AI Readiness service and leverages CrowdStrike’s 10,000‑plus certified partner network, signaling...
Cisco Says Real-Time AI Defense Is Critical as Threats Accelerate
Cisco president and chief product officer Jeetu Patel announced that AI‑enabled attacks are compressing vulnerability‑to‑exploit cycles to minutes, forcing enterprises to move to real‑time, autonomous security. He cited early access to Anthropic and OpenAI models as a timing advantage for...
Commvault Expands Cloud Resilience and Clumio Backup to Google Cloud
Commvault announced that its full Cloud platform is now available on Google Cloud Marketplace and that its Clumio backup service will support Google Cloud Storage. The moves give CIOs a unified, ransomware‑protected solution for AI and analytics workloads across multi‑cloud...
CISA Flags Persistent FIRESTARTER Backdoor on Cisco ASA Firewalls in Federal Network
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has identified a persistent FIRESTARTER backdoor on Cisco ASA firewalls used by a federal civilian agency. The malware survived patches for CVE‑2025‑20333 and CVE‑2025‑20362, prompting an updated emergency directive and a nationwide...
How Anthropic’s Mythos Model Is Forcing the Crypto Industry to Rethink Everything About Security
Anthropic’s Mythos AI model is prompting DeFi firms to broaden security beyond smart‑contract code to the underlying infrastructure such as key‑management, bridges and oracle networks. By simulating adversarial behavior and chaining minor flaws, Mythos can expose systemic, cascading failures across...
COAI DigiCom Summit Calls for AI‑Led Networks and Tougher Anti‑Fraud Measures in India
At the COAI DigiCom Summit 2026, regulators and industry leaders pressed for AI‑led telecom networks, a hybrid fiber‑and‑FWA broadband model and tighter anti‑fraud systems. The push comes as fixed‑line subscriptions reach 63 million (about 20% of households) and India eyes a...
Equifax Warns AI‑driven Fraud Could Hit $40 B by 2027, $15.9 B Lost in 2025
Equifax warned that AI‑enabled fraud cost U.S. consumers a record $15.9 billion in 2025 and could climb to $40 billion by 2027. The agency highlighted synthetic identities, deepfakes and cheap AI toolkits as the new weapons reshaping financial crime.
USCIS Names Andrew Vanjani as CIO to Accelerate Tech Modernization
U.S. Citizenship and Immigration Services swore in Andrew Vanjani as its new chief information officer, ending a year‑long vacancy. Vanjani will steer a technology overhaul focused on cybersecurity, fraud detection and modernizing the agency’s core processing systems. The move signals...
Iranian-Backed Hacks Spur Call for Data‑Driven Threat Intelligence Platforms
A New Yorker investigation highlights a wave of Iranian‑backed cyber intrusions—from a New York dam to a Pennsylvania water system—pressuring U.S. utilities and security firms to adopt sophisticated, data‑driven threat‑intelligence platforms. Experts warn that without such tools, small municipalities remain...
Your Router Silently Tracks You—18 Ways to Stop It
Your Wi-Fi router isn't "accidentally" tracking you. It's a feature, not a bug. I searched for a specific medical symptom once. 10 minutes later, my partner had an ad for it on their laptop. It’s called "IP-Bridging," and it’s happening through...
Supplier Assurance for UK SMEs: A Practical Guide to Checking Third Parties without Overcomplicating It
Clear Path Security outlines a practical supplier‑assurance framework for UK SMEs, emphasizing a proportionate, repeatable process rather than a heavyweight procurement function. The guide introduces a three‑tier risk model—high, medium, low—to focus effort on suppliers that access data, connect to...
Researchers Reveal SIM Signaling Flaw Enabling Covert Location Tracking
Citizen Lab disclosed two surveillance campaigns that abuse SS7 and Diameter signaling to locate phones without user consent. The attacks leveraged infrastructure of three telecom operators, showing that even VPNs cannot shield users from SIM‑level tracking. Industry leaders are scrambling...
What an ID Governance Consultant Wishes You Knew About Entra
In this episode of Intro Chat, identity‑governance consultant Sandra Saluti walks listeners through the fundamentals and pitfalls of Microsoft Entra ID governance. She explains how identity governance automates user lifecycle processes, ensures the right access at the right time, and...
Best of the Worst: Five Attacks That Looked Broken (and Worked)
The latest Threat Intelligence roundup highlights five phishing attacks that were riddled with sloppy errors—unfilled template variables, typo‑squatted domains, malformed URLs, and broken character encoding—yet still landed in users’ inboxes. Microsoft’s Exchange Online and other commercial gateways delivered the messages...
Fake CAPTCHA Scam Abuses Verification Clicks to Send Costly International Texts
Infoblox has uncovered a long‑running International Revenue Share Fraud scheme that disguises itself as a CAPTCHA verification. The fraud begins with typosquatted telecom domains that redirect users through a traffic distribution system to a fake CAPTCHA page. Each click on...
North Korean IT Workers Are Stealing Remote Jobs and Raking in Billions—And Americans Are Helping Them Do It
A federal judge sentenced two New Jersey men to nearly a decade in prison for running a fraud network that placed North Korean IT workers in remote positions at more than 100 U.S. companies, including Fortune 500 firms. The scheme...
IRDAI 2026 Cybersecurity Guidelines for Insurance Companies
The Insurance Regulatory and Development Authority of India (IRDAI) has issued 2026 cybersecurity guidelines that move insurers from static, checklist‑based compliance to a continuous cyber‑resilience model. The updates mandate quarterly ISRMC meetings, an independent CISO reporting to the board, and...
Discord Sleuths Gained Unauthorized Access to Anthropic’s Mythos
A group of Discord users managed to infiltrate Anthropic's highly restricted Mythos Preview AI model by analyzing data from a recent Mercur breach and guessing the model’s online location. Leveraging existing permissions from work with an Anthropic contractor, they also...
Securing the Future of AI: How Tresor Lisungu Oteko Is Bridging Cloud Systems and Post-Quantum Security
Artificial intelligence is outpacing the security frameworks that protect it, creating a critical gap for enterprises deploying AI at scale. Tresor Lisungu Oteko, a Subject Matter Expert Lead at AWS Marketplace, is addressing this gap by integrating security directly into...
EY/IIF Survey Finds Insurance CROs Flag Cybersecurity as Top Risk While AI Spending Soars
A majority of insurance chief risk officers now rank cybersecurity as the most pressing risk for the next year, according to EY’s third Global Insurance Risk Management Survey. At the same time, insurers are ramping up AI, analytics and data...
Anthropic Blames Engineering Errors for Claude Code Drop and Faces Scrutiny Over New Mythos Model
Anthropic disclosed that three engineering missteps caused a month‑long performance dip in its Claude Code tool, resetting usage limits for all subscribers. At the same time, the company’s latest Claude Mythos model is under intense examination by cybersecurity experts, regulators...
GitHub Analysis Debunks Claimed Quantum Attack on Elliptic-Curve Cryptography
A GitHub repository that claimed a quantum key‑recovery attack on elliptic‑curve cryptography using IBM Quantum hardware has been shown to work without any quantum processor. The analysis demonstrates that the reported successes on 17‑bit curves stem from classical random sampling,...
Rituals Confirms Data Breach Exposing Over 41 Million ‘My Rituals’ Members’ Personal Details
Dutch cosmetics giant Rituals disclosed that an unauthorized download in April exposed personal data of more than 41 million members of its “My Rituals” loyalty program. While passwords and payment information were not compromised, the breach includes names, email addresses, phone...
Arbitrum and Tether Freeze $415 Million in Assets, Raising Decentralization Questions
Arbitrum’s 12‑member Security Council froze roughly 30,766 ETH (about $71 million) after a KelpDAO exploit, while stablecoin issuer Tether locked $344 million of USDT on Tron following OFAC alerts. Both moves, executed off‑chain and with law‑enforcement input, have reignited criticism that crypto’s promised...
9 Identity-Based Threats Redefining Cybersecurity in 2026 (Beyond Credential Stuffing)
The 2026 identity threat landscape has moved beyond password‑based attacks, with AI‑driven agents, deep‑fake voice impersonations, and quantum‑era data harvesting reshaping how identities are compromised. Nine specific threats—including agentic AI hijacking, MFA‑fatigue, deep‑fake voice phishing, AI‑generated spear phishing, MCP token...
13 Hidden Costs of Password-Based Authentication (With Real ROI Math)
Passwords impose hidden, multi‑million‑dollar costs that span IT support, security breaches, compliance fines and lost revenue. A single reset averages $70, while credential‑based breaches cost $4.9 M on average and SMS OTP delivery can exceed $100 K annually. The article shows that...
10 Warning Signs Your Current Authentication Stack Is a Breach Waiting to Happen
The article outlines ten warning signs that indicate an authentication stack is vulnerable to breach, ranging from short password policies to lack of bot detection and indefinite session tokens. It provides quick diagnostics for each sign and concrete remediation steps...
15 Costliest Credential Stuffing Attack Examples of the Decade (and the Authentication Lessons They Teach)
Credential stuffing attacks have siphoned billions, triggered regulatory fines, and exposed hundreds of millions of users over the past decade. The article catalogs 15 high‑profile incidents—from Snowflake’s 165‑organization breach in 2024 to 23andMe’s $2.9 million UK fine—highlighting how reused passwords and...
AI Spam Pretends Victor Hugo Invites You
Last AI scam email of the day: Victor Hugo just emailed me to ask me to be part of his book club. Holding out for Moliere to contact me.
DeFi Veteran Fears On‑Chain Funds After Kelp DAO Hack
Five years building DeFi and @kaiynne says he’s never been more scared to have money on chain 😬 This is what the Kelp DAO hack aftermath looks like from the inside. @tayvano_ @LucaNetz @odysseas_eth: https://t.co/fnHoG3xB5V
FCC Expands Router Ban to Portable Hotspots, Grants Conditional Exemptions to Netgear and Adtran
The Federal Communications Commission announced that its foreign‑made consumer router ban now includes portable hotspot devices, while smartphones with hotspot capability remain exempt. The agency also issued conditional approvals for Netgear and Adtran routers, leaving most other brands in limbo.
Enable WhatsApp Two‑Step Verification: Simple, Better Than Nothing
Whether you just joined @WhatsApp or have been using it for years, it's a smart idea to enable two-step verification. Here's how, step by step, and why it's not as good as 2-factor authentication, but better than nothing... https://t.co/KDT8J6yjkd #whatsapp...
PoW Blockchains Repeatedly Vulnerable to Rollback Double-Spend Attacks
This isn't an isolated incident. There have been many of these rollback-and-double-spend attacks against Proof-of-Work-alone blockchains both years ago and recently, including recently against Monero and Grin.
Beware: Fake Login Alerts with Password Reset Links
Received an email from X warning you of new or unusual login attempts, with a handy 'change password' link? Beware, it's a slick new phishing attack that can trick even the most vigilant user. I've seen this with other sites...
Phishing Lockout Resolved Quickly Thanks to Community Support
Two days after falling prey to a phishing attack and getting locked out of my account, I'm back in. Sincere thanks to @X for resolving this so quickly. So grateful also to @lisaabramowicz1, @Brad_Setser, @AnnaEconomist, @baselinescene, @GagnonMacro and many others...
Kelp DAO Hack Used Spoofed RPC Node, Not Contract Exploit
The Kelp DAO hack wasn’t a contract exploit. It was a spoofed RPC node. @tayvano_ explains why that’s a harder and scarier attack vector. @kaiynne @LucaNetz @odysseas_eth Watch this: https://t.co/cBvUpFPcrk
Banking Must Adopt Post‑Quantum Standards, Embrace Cloud
If banking systems cannot evolve to post-quantum standards, they risk becoming structurally insecure. The cloud becomes the logical foundation. https://t.co/4ZvlgernJn
Unified Observability Bridges SOCs and DevOps
RT SOCs and DevOps will need shared observability for agents: data access, tool calls, MCP interactions, and risk levels in one view. #Security #DevOps @Star_CIO https://t.co/tRGwCPc4Mb
AI Guardrails Needed for Secure Non‑Custodial Privacy
Privacy and non-custodiality is extremely important to avoid your information leaking. At the same time non-custodiality has led to easier way of stealing funds. We also need additional levels of AI based security which runs on account level and can...