Today's Cybersecurity Pulse
CISA adds critical Android and Linux flaws to KEV catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) listed two high‑severity vulnerabilities in its Known Exploited Vulnerabilities catalog: Android CVE‑2025‑48595, an integer overflow that enables privilege escalation on Android 14‑16 without user interaction, and Linux CVE‑2022‑0492. Google released patches for the Android bug in June 2026.
Also developing:
By the numbers: Ingeteam receives $82.5M loan from EIB
The Potential Threats of Anthropic Mythos to the NHS
Anthropic’s Mythos model, a frontier large‑language model capable of autonomous vulnerability discovery and exploitation, marks a watershed in AI‑driven cyber offense. Independent testing shows Mythos achieving an 83.1% success rate on the CyberGym benchmark and a 72% end‑to‑end exploit rate, far outpacing earlier models. For the NHS, whose digital estate mixes modern cloud services with decades‑old legacy systems, this translates into rapid, low‑cost attacks on critical medical software and data. While Anthropic promotes defensive uses through Project Glasswing, the NHS must confront both heightened security risks and regulatory pressures.
CIRCIA Rule Faces Funding Gap, Delays Past May 2026
Policy Pulse #11 just dropped. Top story: CIRCIA's final rule is on a collision course with a DHS funding lapse. Town halls cancelled, slippage past May 2026 looks likely. VDP programs: your intake needs to be 72-hour ready before the clock...
Breach Frequency Surges Despite Sparse Vercel Details
The info about the Vercel breach is very limited but the amount of breaches has definitely accelerated in the last few months.
White House Fraud Crackdown Sharpens Focus on Digital Identity
The White House’s Executive Order 14390, issued on March 6, calls for tighter federal coordination to combat cyber‑enabled fraud and emphasizes stronger digital identity verification at government entry points. While the order focuses on law‑enforcement actions, industry leaders argue that...
TikTok’s US Joint Venture Gains Security Infrastructure Certification
TikTok USDS Joint Venture has secured ISO/IEC 27001:2022 certification, confirming its information‑security management system meets global standards. The certification follows the 2024 Protecting Americans from Foreign Adversary Controlled Applications Act, which forced the sale of TikTok’s U.S. operations to a U.S.‑owned...
UK Government Awards Cosine 500,000 GPU Hours in £500M Sovereign AI Push
The UK government has selected British AI firm Cosine as a flagship partner in its £500 million Sovereign AI programme, granting the company 500,000 GPU hours on the Isambard‑AI supercomputer and an option for future venture‑arm investment. The move underscores Britain’s...
Microsoft Unveils Cross‑Tenant Helpdesk Impersonation Attack Leveraging Teams for Data Theft
Microsoft disclosed a novel intrusion playbook in which threat actors use cross‑tenant Microsoft Teams messages to pose as IT or help‑desk personnel, trick users into granting remote assistance, and then move laterally to steal data. The technique blends legitimate admin...
Build a Private RAG Pipeline For Free: No Cloud, No Data Leaks, No Limits
The OSINT Jobs team demonstrates how to build a private retrieval‑augmented generation (RAG) pipeline using locally hosted Ollama and Open WebUI. By feeding custom documents into a local model, analysts can query source material without exposing data to the internet....
Glenn Beck Warns Quantum Computing Will Impact Wallets and Secrets on World Quantum Day
On April 14, the day designated World Quantum Day, conservative commentator Glenn Beck warned that quantum computers are moving from academic labs to a commercial threat that could affect everyday finances and personal data. Beck’s remarks, broadcast on his BlazeTV...
Mirai Botnet Exploits End‑of‑Life TP‑Link Routers via CVE‑2023‑33538
Unit 42 of Palo Alto Networks reported that the Mirai‑derived Condi botnet is actively exploiting CVE‑2023‑33538 in end‑of‑life TP‑Link consumer routers. The flaw lets attackers inject malicious code through an unvalidated HTTP parameter, and TP‑Link says the affected models will...
VPC Endpoints: Security Gains Vs. Complexity and Cost
AWS VPC Endpoints are so complicated and expensive but I really want to use them. They provide a unique level of security that a NAT does not replicate. The problem is the rabbit hole you end up going down after...
Aave Sees $6 Billion Deposit Drop as Kelp Hack Exposes Structural Risk for DeFi Lender
Aave’s total value locked plunged from $26.4 billion to roughly $20 billion after a hack on the Kelp bridge allowed attackers to deposit 116,500 rsETH (about $292 million) as collateral and borrow $196 million of wrapped ether. The exploit did not breach Aave’s contracts...
Senior and Online Scams Surge, Cost U.S. Victims $4.9 B in 2024
U.S. seniors and internet users face a wave of fraud, with the FBI estimating $500 million stolen from older adults annually and total consumer losses reaching $4.9 billion in 2024. Experts point to data‑brokers and cheap public records as the engine behind...
Viking Line Data Breach Exposes Customer Records, Triggers GDPR Scrutiny
Viking Line disclosed a data breach after receiving a threatening message, potentially exposing passenger and booking data. The incident, under investigation by Finnish authorities, spotlights ongoing GDPR compliance challenges for transport firms. Legal experts warn of possible fines and class...
State Leaders Push Expanded Privacy Rules, CIOs Warn of Data‑Security Gap
Amy Glasscock of the National Association of State Chief Information Officers told Broadcast Retirement Network’s Jeffrey Snyder that U.S. states are accelerating privacy and data‑security legislation. The discussion highlighted a rapid rise in chief privacy officer appointments and a widening...
Kenya's Data Regulator Orders LOLC Kenya to Erase Client Data After Breach
Kenya's Office of the Data Protection Commissioner (ODPC) ordered LOLC Kenya to delete a former employee’s personal data from all online platforms within 14 days after finding the bank breached the Data Protection Act 2019. The regulator also recommended prosecution...
Cross‑Chain Bridge Hack Drains $293 Million, Sparking DeFi Contagion
Hackers exploited a LayerZero‑based cross‑chain bridge on Saturday, siphoning 116,500 rsETH and causing roughly $293 million in losses. The breach rippled through multiple DeFi protocols, underscoring systemic risk in bridge infrastructure.
DeFi Must Trade Efficiency for Stronger Guardrails
It’s hard to build in DeFi. Mad respect for everyone doing it like G. You need constant, never-ending vigilance against an evolving attack surface area Which is why I’ll keep saying it: we need to be comfortable trading some efficiency and...
Full‑Access AI Needs OS‑Level Sandbox Safeguards
AI agents are far more cable when they have full system access; but when they do, they can mess a lot of stuff up (not unique to any one model). AI harnesses have guardrails: but those can fail. I wonder if...
EU Age‑Verification App Cracked in Under Two Minutes, Raising Security Alarm
Security consultant Paul Moore demonstrated that the European Commission's newly released open‑source age‑verification app can be compromised in less than two minutes. The flaw, confirmed by white‑hat hacker Baptiste Robert, threatens the privacy‑by‑design claims of the tool and could force...
A History of Global Hacking — and Where It’s Going Next
Allie Mellen’s new book *Code War* chronicles the evolution of nation‑state cyberattacks, from early exploits like Stuxnet to recent Iranian incursions against U.S. energy and water systems. Drawing on her Forrester analyst background, Mellen links historic hacks to emerging threats shaped...
Malicious Browser Extensions: An Overlooked Security Threat
Browser extensions, once seen as harmless utilities, have become cloud‑connected mini‑apps that can access every SaaS interaction a user performs. In early 2025 Google removed a batch of Chrome extensions that turned malicious after developer accounts were compromised, exposing over...
Crypto Hack Worth $290 Million Triggers DeFi Contagion Shock
On April 19, 2026, hackers exploited a LayerZero‑powered cross‑chain bridge to steal approximately 116,500 rsETH, valued at about $293 million, making it the largest DeFi breach of the year. The attack targeted the Kelp DAO’s rsETH token, a restaked Ether derivative,...
AI Hacking Tool Threatens U.S. Security, Urgent Hardening Needed
I was hanging out with one of the best hackers in the world last night. He has a model that finds more security issues than the Anthropic “for special people only” model. It is the scariest technology I have ever seen. There are...
AI Powers Modern Penetration Testing: AWS Community Talk
How I Use AI for Penetration Testing. Presentation at the AWS Security Community Day at the Computer History Museum on YouTube https://t.co/hP5kPanmUX
Cloud Security Maturity at the GovExperience Summit
The Carahsoft GovExperience Summit 2026 highlighted a growing awareness of cloud‑security challenges in the federal government, but revealed significant architectural gaps. Two panels showed that while some officials can articulate multi‑cloud governance, many still treat security as a procurement decision...
Claude’s Chrome Extension: Game‑Changer or Security Threat?
Is adding the chrome extension to Claude a security risk? Allowing it to take over your computer and browse the Internet in order to complete tasks is an insane game changer beyond belief. Seemingly.
Know 15 Cyber Attacks to Boost Resilience
15 types of cyber attacks you should know 🔐 Phishing, malware, DDoS, SQL injection, MITM, insider threats & more — all in one visual. Cybersecurity = business resilience. Credit: Cybersecurity Insights #CyberSecurity #InfoSec #CyberAttacks #TechRisk https://t.co/3B7i8nznnK
LeakWatch 2026: Security Incidents, Data Breaches, and the IT Landscape for the Current Calendar Week 16
Calendar week 16 (April 13‑19 2026) highlighted a shift in cyber risk from traditional perimeter breaches to trust failures at vendor, cloud and open‑source interfaces. Notable incidents include Inditex’s third‑party transaction‑database exposure, Rockstar Games’ breach through Snowflake and Anodot, and the Axios npm supply‑chain...
Aave Crashes 20% as rsETH Exploit Empties ETH Pool
💥 JUST IN: $AAVE is down -20% today after a $292M Kelp DAO rsETH exploit triggered a liquidity crisis. Aave's ETH pool just hit 100% utilization. That means there's almost no ETH left to withdraw now 😐😐 https://t.co/IdwkDX8KMc
Cross‑border Cooperation Essential to Curb Sophisticated Global Scams
With “the increasingly internationalized nature of scamming and the techniques becoming more sophisticated, governments and companies really need to do more—especially on cross-border cooperation—to crack down on scammers. Via @sharivahl @BBC https://t.co/quprxzVKlm
Why Satellite Cybersecurity Is Becoming a Board-Level Issue for Critical Infrastructure
Satellite communications have moved from niche links to the backbone of energy, transport, defense and emergency operations. Cyber risk now spans the entire space‑to‑ground stack—including spacecraft, ground stations, cloud services and customer terminals. The 2022 Viasat KA‑SAT hack showed how...
Understanding Man-in-the-Middle Attacks in PV Systems
Cyber threats for PV: What are man-in-the-middle attacks and how do they work #energysky -- via pv magazine global: https://t.co/skCBCwYMLQ
Basic Cyber Hygiene Beats AI Security Risks
What can regular people do about all the security findings of the latest AI models? My comments to Nicole Nguyen for @WSJ Our usual advice, but seriously, now more than ever: Keep software up to date Use long unique passwords Use a password manager Use...
NVIDIA Releases Open‑Source NemoClaw Stack for Secure On‑Prem AI Agents
NVIDIA has launched the open‑source NemoClaw reference stack, enabling developers to run sandboxed AI agents entirely on local DGX Spark hardware. The stack combines OpenShell, OpenClaw and the Nemotron 3 Super 120B model to keep inference and data on‑prem, a move aimed...
Negotiating with KelpDAO Hacker to Avoid Costly Loss
OK — Kelpdao hacker, how much you want? Let’s just talk. With KelpDAO’s help, of course. It’s simply not worth it to sacrifice both Aave and KelpDAO and let them go down over this hack. You can’t spend $300 million...
DWF Flags Three Post‑Brexit Litigation Risks as UK and EU Regulators Tighten Rules
DWF Group cautions that recent FCA actions on motor‑finance compensation, new cyber‑incident reporting standards, and rapid changes to UK employment law constitute early warning signs of litigation. The firm says firms must reassess exposure now to avoid costly enforcement and...
Pete Recommends – Weekly Highlights on Cyber Security Issues, April 18, 2026
The week’s cyber‑security headlines span a new wave of synthetic media, a high‑profile privacy clash, and gaps in federal AI procurement oversight. Iran‑linked outlets can churn out Lego‑style propaganda videos in 24 hours, while the White House’s own teaser clips add...
PeopleHR Unveils Security Playbook to Safeguard HR Data and Meet GDPR, ISO 27001 Standards
PeopleHR has published a comprehensive security playbook that walks HR teams through GDPR, data subject requests and ISO 27001 compliance. The guide emphasizes layered protections, data governance and the business case for stronger employee‑data safeguards.
Leaked State Tools Fuel DarkSword and Coruna iOS Malware Campaign
Kaspersky researchers say leaked state‑level intelligence tools have been repurposed into two iOS malware families, DarkSword and Coruna, that can compromise iOS 18 devices without any user interaction. The findings, released by three independent teams in mid‑March 2026, signal a shift...
Singapore Ranks No 1 for Cyber Defences but Boardrooms Are the Weak Link
Singapore topped the Economist Impact‑Telstra study for overall digital resilience in APAC, excelling in risk management, workforce capability and cultural agility. Yet its executives ranked near the bottom on leadership, with 71% of boards not regularly reviewing resilience plans. Responsibility...
Old Cars 'Tell Tales' By Storing Data That's Never Wiped
Security researcher Romain Marchand recovered a telematic control unit from a Polish salvage yard and extracted its Linux file system, finding unencrypted GPS logs that tracked a BYD electric vehicle from its Chinese factory to the United Kingdom and finally...
2026's Biggest Crypto Exploit: $292 Million Gets Drained From Kelp DAO with Wrapped Ether Stranded Across 20 Chains
An attacker exploited Kelp DAO's LayerZero‑powered bridge, draining 116,500 rsETH worth about $292 million—roughly 18% of the token’s circulating supply. The hack triggered emergency freezes across DeFi platforms such as Aave, SparkLend, Fluid and Upshift, and contributed to a 10% drop...
Key Breach Triggers rsETH Theft; Protocol Safeguards Liquidity
We are continuing to investigate the L0/rsETH incident, initial reports seem to indicate a private key compromise/bad config allowed ~200m worth of rsETH to be stolen, this was then deposited into Aave to borrow ETH (since rsETH has insufficient liquidity)....
Hardware Security Modules Market Set for $3.5B by 2031 as Enterprises Boost Cybersecurity Spending
Mordor Intelligence projects the hardware security modules (HSM) market to climb from $2.18 billion in 2026 to $3.51 billion by 2031, a 10.02% CAGR, as enterprises intensify cybersecurity investments, adopt cloud‑native key management and comply with tighter regulations.
Payouts King Ransomware Exploits QEMU VMs to Slip Past Endpoint Security
Sophos researchers disclosed that the Payouts King ransomware now runs hidden QEMU virtual machines on compromised hosts, letting attackers evade endpoint scanners and exfiltrate data via reverse SSH tunnels. The technique builds on prior QEMU abuse by other threat groups...
Smart TVs Silently Siphon Classified Data to Foreign Adversaries
This is a massive and growing problem for American national security. Unbelievable amounts of sensitive and classified information is captured, scraped, and sent back to foreign nations. And users have no idea. Nobody expects that their TV or monitor...
Beware: X DMs Vulnerable to Hacking Attacks
I almost fell victim to an @X hacking attempt. Likely, the same people who got @SharkAlertsBio. Folks, be REALLY careful these days, especially with DMs.
The iPhone Hack That Could Max Out Your Visa Card
High‑tech thieves have demonstrated a method to drain funds from iPhones using Express Transit mode when linked to a Visa card. The hack requires the victim's phone to tap a compromised NFC reader, which then relays payment data to a...
Automated 4 AM Tweet Summaries Power Daily Breach Reports
Been doing something very similar to this for my daily breach reports: each day at 4am it pulls all the tweets from this list and summarises them into a report: https://t.co/pT8dTLPnnY https://t.co/yuYqQs7zFq