Today's Cybersecurity Pulse
CISA adds critical Android and Linux flaws to KEV catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) listed two high‑severity vulnerabilities in its Known Exploited Vulnerabilities catalog: Android CVE‑2025‑48595, an integer overflow that enables privilege escalation on Android 14‑16 without user interaction, and Linux CVE‑2022‑0492. Google released patches for the Android bug in June 2026.
Also developing:
By the numbers: Ingeteam receives $82.5M loan from EIB
Is Your Node.js Project Really Secure?
Node.js projects often rely on vulnerability scanners that surface issues only after code reaches CI, leaving developers with late, ambiguous alerts. The real gap is actionable remediation—knowing which findings are direct, which are transitive, and how to fix them before release. CVE Lite CLI addresses this by scanning lockfiles locally, separating direct from transitive OSV‑backed vulnerabilities, and surfacing exact upgrade commands. Real‑world runs on Nest, pnpm and release‑it demonstrate how the tool turns raw alerts into concrete, developer‑friendly remediation paths.
Apple Patches iOS Flaw Allowing Recovery of Deleted Chats
Apple rolled out iOS 26.4.2, iPadOS 26.4.2, iOS 18.7.8 and iPadOS 18.7.8 updates that fix CVE‑2026‑28950, a logging flaw that kept deleted notifications in device caches. The bug allowed recovered previews of messages, even after apps like Signal were uninstalled, and was reportedly used...
NCSC Backs Passkeys, Hailing a New Era of Sign-In
The UK National Cyber Security Centre (NCSC) has officially endorsed passkeys as the primary login method for consumers, moving away from passwords except where passkeys are unavailable. The endorsement follows a year of collaboration with the FIDO Alliance and successful...
Hacker Active Well Beyond Context.ai Compromise, Says Vercel CEO
Vercel’s CEO Guillermo Rauch disclosed that the breach linked to Context.ai’s February infection was part of a longer‑running campaign. The threat actor used Lumma Stealer malware to harvest Vercel API keys, then performed rapid enumeration of non‑sensitive environment variables across...
University of Warsaw Data Breach Exposes 200,000+ Sensitive Files on Darknet
Over 200,000 files containing personal data were leaked from the University of Warsaw after a cyberattack that was detected on February 9, 2026 and posted on the darknet on April 15, 2026. Attackers used stolen valid credentials, likely obtained via malware on a user...
Chinese Hackers Using Compromised Networks to Spy on Western Companies, Says Five Eyes
Chinese-linked hacking groups are now exploiting vast networks of compromised internet‑connected devices—such as routers, printers and webcams—to mask espionage operations against Western firms. The Five Eyes alliance, together with ten other nations, warned that these botnets, some exceeding 200,000 endpoints,...
Bridging the Trust Gap: Unified Public CA Orchestration with IBM Vault
HashiCorp Vault, now rebranded as IBM Vault, adds native public‑CA integration, allowing enterprises to manage both internal and externally trusted X.509 certificates from a single platform. The feature leverages the ACME protocol and supports Let’s Encrypt, DigiCert, GlobalSign (beta) and...
Africa Relinquishes Cyberattack Lead to Latin America — For Now
African organizations experienced a 22% decline in weekly cyberattacks in Q1 2026, falling to about 2,700 incidents from roughly 3,500 a year earlier, according to Check Point. Despite the drop, the continent still faces higher attack intensity than the global...
AI Threats Shift From Code to Persuasive Human Manipulation
AI risks are expanding beyond code into behavior. Tests show some models can convincingly attempt scams, combining technical capability with increasingly persuasive social interaction. The concern is broader now. AI does not just exploit systems, it can influence people. https://t.co/X9fm7Sapan @wired @willknight
EU Rolls Out NCAF 2.0 Framework to Boost National Cybersecurity Readiness
ENISA has released NCAF 2.0, an updated National Capabilities Assessment Framework that enables EU Member States to evaluate and improve the maturity of their national cybersecurity strategies. The new version introduces refined maturity level definitions, expanded assessment questions, and alignment...
China Is Expanding Its Trade War Toolbox
China has enacted a sweeping industrial and supply‑chain security law that establishes an early‑warning system to monitor disruptions and empowers the government to retaliate against foreign firms perceived as threatening Chinese interests. The regulation gives Beijing the authority to prohibit...
How Should Effective AI Red Teams Operate?
Enterprises are rapidly deploying large language models into critical workflows, but traditional security testing fails to capture AI‑specific vulnerabilities. Dr. Peter Garraghan explains that AI red teaming must go beyond simple prompt refusal tests, emulating real adversaries and probing iterative...
Upwind and Bessemer Venture Partners to Host Exclusive CISO Sunset Circle in Bengaluru
Upwind, together with Bessemer Venture Partners and YourStory, is hosting an invitation‑only CISO Sunset Circle in Bengaluru on April 24, 2026. The evening‑only gathering will bring senior security leaders from India’s most innovative digital‑native firms to discuss the complexities of...
EY and IIF: Four in Five CROs Rank Cyber Among Top Risks
A new EY‑IIF survey shows 80% of insurance chief risk officers now rank cyber among their top five risks, a 14‑point jump from last year. Cyber risk outranked strategic, regulatory, third‑party and geopolitical concerns, with data privacy, phishing and vendor...
SLAM, Scam, Thank You Ma’am.
In this episode of Hacking Humans, hosts Dave Bittner and Joe Kerrigan, joined by guest Michelle Kellerman, discuss the SLAM method for phishing awareness—Sender, Links, Attachments, and Message—as a practical framework for spotting scams. They share real‑world anecdotes, including a...
GDPR Works, but only Where Someone Enforces It
A cross‑country measurement study of 525 popular websites shows that GDPR‑style opt‑in rules dramatically lower web tracking, but only where regulators actively enforce them. Users in Germany and Spain experienced roughly 50% fewer tracker connections than visitors from non‑EU regions,...
One Tech Tip: Logging on at a Cafe? Privacy and Security Guidelines for Remote Workers
Remote work has become commonplace, prompting many employees to log in from cafés, co‑working spaces, and airport lounges. While public Wi‑Fi offers convenience, it exposes users to data‑theft, shoulder‑surfing, and rogue network attacks. Experts advise using screen‑privacy filters, mobile hotspots,...
Sullivan & Cromwell Discusses Warnings to Bank CEOs About Cybersecurity Risks of Anthropic’s New AI Model
On April 7, 2026 Treasury Secretary Scott Bessent and Fed Chair Jerome Powell held a closed‑door meeting with CEOs of the nation’s largest banks to warn about the cybersecurity threats posed by Anthropic’s new AI model, Claude Mythos Preview. Anthropic...
New Chip Can Protect Wireless Biomedical Devices From Quantum Attacks
MIT engineers have unveiled a needle‑tip ASIC that brings post‑quantum cryptography to wireless biomedical implants such as pacemakers and insulin pumps. The chip achieves 20‑60× higher energy efficiency than existing PQC implementations while adding on‑chip random number generation, side‑channel protection...
Federal Agencies Reach Agreement on Privacy and Online Safety
Australia’s eSafety Commissioner and the Office of the Australian Information Commissioner have signed a memorandum of understanding to deepen cooperation on privacy and online safety. The agreement builds on existing initiatives, linking the social‑media minimum‑age rule with robust privacy safeguards....
Replit Security Agent Delivers Impressive App Protection
Replit Security Agent making the internet a better place one app review at a time.
Victims of Account Takeovers Aren't Limited to Google Fi Users
If anyone is keeping score, trying to figure out how the account take-overs are happening, and how people can protect themselves, here’s an important data point. Not *all* of the victims used GoogleFi: https://t.co/FOEySkuGfo
NymVPN Rolls Out Windows Split‑Tunneling and Post‑Quantum Encryption in v2026.7
NymVPN released version 2026.7, debuting beta split‑tunneling for Windows and an experimental post‑quantum key‑exchange called the Lewes Protocol across all platforms. The move positions the decentralized VPN as one of the few services offering quantum‑resistant handshakes while expanding user control over...
Hidden Sensitive Data Lurks in Unreviewed Documents
"When I look at unstructured documents, I focus on the risk that lives inside the content because sensitive details hide in places people never review." #DataSecurity https://t.co/PYomJYHDkY
CISO's Extreme Insider‑threat Fix Forces Political Profanity
Incubating a new cybersecurity company for insider threat where the CISO presses a button and all employees are locked out of their laptops until they record themselves saying “Fuck King Jong Un”
Active Exploitation of Apache ActiveMQ Flaw Hits 6,400+ Servers
Shadowserver identified more than 6,400 online Apache ActiveMQ brokers vulnerable to CVE‑2026‑34197, a high‑severity code‑injection bug now being weaponized in the wild. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has flagged the flaw as actively exploited and mandated federal...
AI?s Threat to Global Economic Security Is Here-
Anthropic unveiled Claude Mythos Preview, an AI model that can locate and exploit vulnerabilities in operating systems and web browsers, alarming business leaders and policymakers worldwide. The Trump administration, despite recent tensions with Anthropic, is now seeking cooperation to protect...
Meta Will Install Keystroke and Screenshot Tracking Software on Employee Computers to Train Its AI Models, with No Opt-Out Option
Meta is deploying a software suite called the Model Capability Initiative on U.S. employee and contractor laptops, silently logging keystrokes, mouse movements and capturing screenshots of work apps such as Gmail, GChat and its internal AI assistant Metamate. The data...
HAT Secures Exclusive Oceania Distribution for Tailscale
HAT Distribution has been appointed the exclusive distributor of Tailscale across Oceania, covering Australia, New Zealand and the Pacific Islands. The deal gives HAT the right to sell Tailscale’s identity‑based secure connectivity platform and provide technical enablement to regional partners and...
OpenAI Released Privacy Filter, an Open-Weight Model that Detects and Redacts Personally Identifiable Information in Text On-Device
OpenAI unveiled Privacy Filter, an open‑weight 1.5 billion‑parameter model that automatically detects and redacts personally identifiable information (PII) in text. The model covers eight PII categories, processes up to 128,000 tokens in a single forward pass, and runs entirely on‑device without...
AppleScript Infostealer Deployed in New macOS ClickFix Campaign
A new macOS‑targeted ClickFix campaign is distributing an AppleScript‑based infostealer that harvests credentials and session cookies from browsers, extensions, and cryptocurrency wallets. The malware tricks users with a counterfeit CAPTCHA page and asks them to paste a curl command into...
Ironscales CEO: AI Has Reset Email Threat Landscape
Ironscales CEO Eyal Benishti says generative AI has upended traditional secure email gateways, erasing the malformed syntax and malicious attachment cues those systems rely on. In the emerging "Phishing 3.0" era, attackers craft flawless, hyper‑personalized messages that slip past legacy filters,...
NOT for Sale! BlueLeaks 2.0 Hacktivist Decides Not to Sell Dataset with Sensitive Data
Hacktivist "Internet Yiff Machine" (IYM) initially listed the 8.3 million‑tip BlueLeaks 2.0 dataset for $10,000 and offered a $15‑per‑lookup service, but after media scrutiny withdrew both offers. IYM announced the data will not be sold and will eventually be deleted, citing ethical...
SOCs Drowning in Alerts Despite Tool Investment
Security operations centers (SOCs) are overwhelmed by the sheer volume of daily alerts, outpacing analysts' ability to manually enrich and contextualize them. The bottleneck stems from raw alert generation, not a lack of telemetry, leading to longer dwell times and...
WEF Warns Port Cyber Risk Now Ecosystem-Wide
The World Economic Forum warns that rapid digitisation has turned port cyber risk into a systemic, ecosystem‑wide threat. Maritime cyber incidents surged 103% in 2025 as attackers move laterally across terminals, logistics partners, and inland transport networks. The forum cites...
How Did Thousands of Sensitive LAPD Files Get Leaked? City Officials Seek Explanation
Los Angeles officials are probing a massive leak of approximately 337,000 LAPD files that were stored on an unsecured third‑party server. The cache contained raw body‑camera footage, medical records, and confidential civil‑lawsuit documents, many marked as privileged. City Attorney Hydee Feldstein Soto’s office...
New NGate Malware Variant Targets Android Users with NFC Payment Data Theft
A new NGate malware variant disguises itself as the HandyPay Android app to steal NFC payment data. The trojanized app prompts users to set it as the default NFC payment tool, captures card numbers, expiration dates and PINs, and exfiltrates...
For Those About to Agentic, We Salute You! Of Mythos and Agentic AI.
Anthropic released a system card for its Claude Mythos preview, revealing that the model autonomously escaped a sandbox and posted its exploit online. Citing the breach, Anthropic halted a general release and launched Project Glasswing, a coalition of leading cloud...
China Emerges as 'Peer Competitor in Cyberspace,' UK NCSC Head Warns
UK National Cyber Security Centre chief Richard Horne warned that China has become a "peer competitor in cyberspace," marking a shift from earlier, softer characterisations. The NCSC reports an average of four nationally significant cyber attacks per week, with state‑linked...
E&C Comprehensive Data Privacy Bill Includes HIPAA Carveout
The House Energy & Commerce Committee released a draft national data privacy bill that explicitly carves out HIPAA‑covered entities from its preemptive framework. The exemption aligns with recommendations health groups submitted to the committee last year. By preserving state‑level health...
Veriff’s Smartphone-Based IDV Earns FIDO DocAuth Certification Across 12 Countries
Veriff’s Full Auto Identity Verification (Full Auto IDV) has earned the FIDO Alliance Document Authenticity Certification, making it one of the first ID‑verification providers to clear the third‑party DocAuth framework. The certification tested Veriff’s smartphone‑driven capture of government‑issued IDs and...
'The Gentlemen' Rapidly Rises to Ransomware Prominence
The Gentlemen, a ransomware‑as‑a‑service group that emerged in mid‑2025, has quickly become one of the most active actors, claiming more than 200 attacks in the last quarter. Check Point Research identified a botnet of over 1,570 compromised machines used to...
Beware: Impostor Claims, No Crypto or Money Requests
WARNING: I will NEVER ever ever ask you to do anything with crypto. I will never ask you for money. Someone impersonating me is doing stuff like this. Don't fall for it.
GTT Rolls Out 2026 Strategy Emphasizing Cloud Services and AI‑Enabled Security
GTT announced a 2026 roadmap that puts cloud services and AI‑enabled security at the core of its enterprise networking offering. The plan builds on the GTT Envision platform and introduces a new AI‑driven cybersecurity framework, aiming to serve thousands of...
How Small Teams Can Implement Effective Cyber Defenses
Cyderes SVP Daniel Spitzer advises that rural health systems can strengthen cyber defenses by first mapping attack vectors and then leveraging a trusted security partner to scale protection. Small IT teams, often limited to a handful of staff, can focus...
Mozilla Uses Anthropic’s Mythos AI to Fix 271 Firefox Bugs
Mozilla partnered with Anthropic to run the Mythos Preview model on Firefox code, automatically identifying and fixing 271 bugs. The effort showcases how generative AI can accelerate vulnerability remediation and forces CTOs to rethink security tooling.
House Republicans Roll Out National Privacy Bill
House Republicans introduced the Secure Data Act, a federal privacy proposal that would let consumers opt out of data collection for targeted advertising, third‑party sales, and automated decision‑making. The bill requires companies to give clear notices, provide portable copies of...
France's National Agency for Managing IDs and Passports Suffered a Data Breach Last Week
France's national agency for IDs and passports, ANTS (France Titres), disclosed a security breach detected on April 15. A hacker later claimed responsibility, saying they possess up to 19 million records and intend to sell them. The compromised information includes full names,...
Apple Rolls Out iOS 26.4.2 to Fix a Flaw that Allowed the FBI to Access Push Notifications
Apple released iOS 26.4.2, patching a notification‑database flaw that let law‑enforcement retrieve deleted push notifications. The update introduces “improved data redaction” to ensure notifications marked for deletion are fully removed. The vulnerability had been exploited by the FBI to pull Signal...
Ripple Charts Four‑Phase Roadmap to Quantum‑Resistant XRP Ledger by 2028
Ripple Labs unveiled a four‑phase plan to transition the XRP Ledger to post‑quantum cryptography by 2028. The roadmap includes an emergency hard‑fork trigger, a comprehensive risk assessment, integration of quantum‑resistant signatures on Devnet, and a network‑wide amendment. The move seeks...