Today's Cybersecurity Pulse
CISA adds critical Android and Linux flaws to KEV catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) listed two high‑severity vulnerabilities in its Known Exploited Vulnerabilities catalog: Android CVE‑2025‑48595, an integer overflow that enables privilege escalation on Android 14‑16 without user interaction, and Linux CVE‑2022‑0492. Google released patches for the Android bug in June 2026.
Also developing:
By the numbers: Ingeteam receives $82.5M loan from EIB
13.5M Device Botnet Drives 2 Tbps DDoS Attacks on FinTech, Qrator Finds
Qrator Labs reported that the world’s biggest DDoS botnet has swelled to about 13.5 million compromised devices, a ten‑fold increase since March 2025. The network can launch attacks up to 2.065 Tbps, with a recent assault sustaining that peak for forty minutes. FinTech firms bore the brunt, representing 44.2 % of incidents, followed by banks and payment systems. The report also highlights a new blockchain‑based command system, Aeternum C2, that makes takedowns far more difficult.
Danske Bank Upgrade Error Exposed 20,000 Customer Addresses
Danske Bank disclosed that a human error during a planned system upgrade unintentionally revealed the personal addresses of 20,600 Danish customers in domestic payment details. The flaw persisted for three months until a fix was applied in October, after the...
DeFi Must Prioritize Application Security Amid DNS Threats
In light of recent DNS attacks, it is clear how important it is to invest in application and ICT security. Web2 security is often easily overlooked in DeFi, and this is an area where much more attention is needed. Serious DeFi projects...
The Need for a Board-Level Definition of Cyber Resilience
Cyber resilience is now a board‑level governance priority, yet its definition varies across regulatory frameworks, leaving directors uncertain about oversight responsibilities. A literature review of 38 sources shows the concept is still fragmented, with divergent views on scope and relationship...
5 Best Practices for Balancing Security and Data Privacy at Facilities
Facilities generate massive streams of security data—from video feeds to access logs—making privacy and security inseparable concerns. The article presents five best practices: continuous cybersecurity hygiene, privacy‑by‑design technology choices, clear internal data‑governance policies, digital evidence management systems, and a responsible...
Ivanti Neurons ITSM Vulnerabilities Could Allow Session Persistence
Ivanti disclosed two medium‑severity flaws—CVE-2026-4913 and CVE-2026-4914—in its Neurons for IT Service Management platform affecting versions up to 2025.3. The first vulnerability lets a remote authenticated user retain access after account deactivation, while the second is a stored XSS that...
Italian Court Accepts Legal Action Over Facebook Mass Breach
An Italian court in Milan has accepted a class‑action lawsuit against Meta Platforms over the 2018‑19 Facebook data‑scraping breach that exposed personal information of 533 million users worldwide, including tens of millions of Italians. The CTCU consumer association is pursuing compensation...
AI-Driven Threats Outpace Traditional Defences
Qualys will showcase its Agent Val platform at the ITWeb Security Summit JHB 2026, highlighting how autonomous exploit validation and risk remediation can keep pace with AI‑driven attacks. The company’s ROC framework and Enterprise TruRisk Management aim to shift security from issue...
PHP Composer Flaws Enable Remote Command Execution via Perforce VCS
Two high‑severity command‑injection flaws were discovered in PHP Composer’s Perforce VCS driver (CVE‑2026‑40176 and CVE‑2026‑40261). The vulnerabilities allow attackers to inject shell commands via malicious composer.json files or crafted source references, potentially executing code with the user’s privileges. Composer versions...
Securing LA28 and Mega-Events From Attacks in the Era of Data Overload
Major upcoming events like Los Angeles 2028 (LA28) and the 2026 FIFA World Cup will draw millions of visitors, exposing a massive security challenge. The sheer volume of data—from CCTV, travel manifests, OSINT, and inter‑agency feeds—creates analysis paralysis for law‑enforcement teams. Interpol’s...
Samsung Electronics Seeks Police Probe Over Circulation of Non-Union Employee List
Samsung Electronics filed a criminal complaint and asked police to investigate after a list of non‑union employees was circulated internally. The list, shared via a group messaging channel, detailed names, identification numbers, departments and union membership status. Union leader Choi...
Concurrent Technologies Corporation Awarded $21M Contract to Support Marine Corps Installations Command Cybersecurity Efforts
Marine Corps Installations Command awarded Concurrent Technologies Corporation a $21 million multi‑year contract to deliver Facility‑Related Control Systems (FRCS) cyber services for the Pacific region. CTC, together with RMC Global, will design, implement, and certify a secure network that manages critical...
Banks Test Systems After Anthropic Mythos Warning
Anthropic warned that its new Claude Mythos model can autonomously discover and exploit vulnerabilities across major operating systems and browsers. The U.S. Treasury’s CIO, Sam Corcos, is seeking immediate access to run the model against federal systems. Wall Street banks have...
Europe Shouldn’t “Move Fast and Break Things” With Fundamental Rights
The European Union is considering the Digital Omnibus, a package that would simplify its digital rules but also roll back key safeguards in the GDPR, ePrivacy and the upcoming AI Act. The proposals would narrow the definition of personal data,...
The Digital Omnibus Reopens the EU Data Acquis Before It Has Even Been Tested
The European Union’s Digital Omnibus proposal folds the Data Governance Act, Open Data Directive and other recent statutes into the 2023 Data Act, turning it into the central hub for data access, reuse and governance. While marketed as simplification, critics...
Gabon’s New Law Makes All Social Media Users Traceable
Gabon enacted a law ending online anonymity, forcing social‑media users to provide full personal details and imposing fines up to $89,000 for violations. In Lagos, emergency responders are using virtual‑reality simulations of the Lekki‑Ikoyi Bridge to practice high‑risk incidents without...
Avast Business and Avert IT Distribution Rewrite the SMB Cybersecurity Playbook
Avast Business and its African distributor Avert IT Distribution are revamping cybersecurity for small and mid‑size firms by delivering a unified, cloud‑managed security suite combined with education and channel support. The platform consolidates endpoint protection, patch management, remote access and...
Deepfakes Are a Threat to Age Assurance, and Injection Attack Detection Is the Answer
Yoti’s CEO Robin Tombs warned that deepfake‑generated media can undermine age‑assurance systems by exploiting post‑authentication injection attacks. Traditional liveness detection, while still essential, no longer blocks sophisticated AI‑crafted faces that are introduced after the initial login. Yoti proposes a multi‑layered...
Europe Builds Its First “Kill-Switch Proof” Cloud Recovery Stack
At the European Data Summit, Cubbit, SUSE, Elemento Cloud and StorPool unveiled Europe’s first fully sovereign disaster‑recovery stack, designed to protect organisations from foreign‑vendor kill‑switches and other catastrophic events. The solution bundles storage, compute, orchestration and security components into a...
Enterprises Must Embed AI-Led Security, Resilience and Trust, as Cyber Strategies for 2026: KPMG
KPMG’s 2026 cybersecurity report calls on enterprises to treat security as a core business driver, integrating AI, geopolitics and regulation into every layer of their architecture. It stresses adaptive data governance, autonomous Security Operations Centers with human‑in‑the‑loop oversight, and centralized...
Why Cloud Security Failures Continue to Expose Data and People to Unnecessary Cyber Risks
Cloud security lapses continue to jeopardize critical data, especially for government agencies and their vendors. Recent incidents—including Conduent’s ransomware breach that exposed 25 million records and stole 8 TB, Snowflake’s credential‑theft affecting over 165 customers, Change Healthcare’s mis‑configured portal leaking 192.7 million health...
Claude's Regression Sparks Widespread Bugs and Security Risks
Think about all the orgs using Claude right now that have no idea how bad it has become over the past 4 weeks ago. No statement from Claude - but a total revert to where the model was a year...
Your Face Is Being Exploited for Fraud, Unaware
Your face is currently being used to rob people—and you don't even know it yet. 🛑🖼️
European Civil Servants Are Being Forced Off WhatsApp
European governments—including France, Germany, Poland, the Netherlands, Luxembourg and Belgium—are replacing WhatsApp and Signal with home‑grown, sovereign messaging platforms for officials. The European Commission intends to complete its own messenger migration by the end of 2026. The move reflects growing...
Netgear M7 eSIM Routes Traffic Through Israeli Provider
I finally had a chance to look at why I keep getting directed to a UK address on Netgear M7. I wanted to use my physical Verizon sim but even though Netgear is advertising it would be ready by the...
DEAL‑Elsevier Workshops Boost Data Governance Trust in Publishing
Trust in scientific publishing depends on how user data is handled. A series of workshops between DEAL and Elsevier created space for a structured, outcome-focused discussion on data use, governance, and privacy in scientific publishing. Read more: https://t.co/IbjdGuuWhs #data #governance #privacy #scientificpublishing...
Curity Looks to Reinvent IAM with Runtime Authorization for AI Agents
Curity, a Swedish IAM vendor, launched Access Intelligence, a runtime authorization layer for AI agents. The solution extends its Identity Server with Token Intelligence, issuing purpose‑bound OAuth tokens for each agent action. Unlike static IAM, it grants permissions on‑the‑fly and...
Adversaries Harvest Encrypted Data Today for Future Quantum Decryption
Adversaries are already collecting encrypted data today, betting they can decrypt it once sufficiently powerful quantum systems arrive. This is called "harvest-now, decrypt-later." And it's happening right now. Here's why no industry is exempt from what's coming: https://t.co/KvatQOAzmh #QuantumComputing #Cybersecurity #WorldQuantumDay
AI Hacks Reveal Remote Shutdown Vulnerability in Microinverters
AI-enabled hacks expose remote shutdown risk in microinverters #energysky -- via pv magazine global: https://t.co/p4PdEDHSAO
NIST Launches Development of Trustworthy AI Profile for Critical Infrastructure
The U.S. National Institute of Standards and Technology has begun developing a Trustworthy AI in Critical Infrastructure profile, extending its AI Risk Management Framework to guide operators of power, water, transportation and other essential services. The effort, outlined in a...
Brennan Builds Solid Foundation for Onshore Cyber Security
Brennan, an Australian managed services provider, reported a roughly 20% uplift in services revenue after acquiring Canberra‑based cyber specialist CBR Cyber. The growth is driven by a surge in demand for onshore, sovereign security, highlighted by a 13% year‑on‑year rise...
Ethiack Study Finds 19% of UK Telecom Websites Expose Server Details, 37% Have SSL Gaps
Agentic AI pentesting firm Ethiack reported that 19% of UK telecoms' web servers disclose software type and version, while 37% of SSL certificates are invalid, expired or misconfigured. The findings underscore a systemic misconfiguration problem that could aid state‑sponsored hackers...
OpenAI Launches GPT‑5.4‑Cyber, a Defensive AI Model for Cybersecurity
OpenAI introduced GPT‑5.4‑Cyber, a new defensive AI model aimed at bolstering cybersecurity defenses. The model mirrors Anthropic's Claude Mythos in its “cyber‑permissive” design and will be restricted to security‑focused deployments, prompting mixed reactions about its originality.
Wireless Broadband Alliance Claims Wi-Fi Security on a Par with Cellular
The Wireless Broadband Alliance (WBA) released a new Wi‑Fi security framework that it says puts Wi‑Fi on equal footing with cellular networks in terms of security. The guidance consolidates standards such as WPA3, OpenRoaming (Passpoint) and RadSec, covering authentication, encryption,...
CoW Swap Domain Locked Due to Security Issue: CoW Swap
CoW Swap’s primary domain swap.cow.fi was locked on April 14 after a security incident, rendering the site inaccessible. The protocol quickly deployed a temporary UI at a new URL to maintain trading continuity. Users were warned to rely only on...
Apple’s Double Standard: Elon’s App vs Facebook Spyware
Like when Facebook violated Apple’s policy with its alleged spyware app feeding it data about kids usage of competitive apps, you have to ask whether Apple treated Elon’s app the same way as everyone else.
Central Government yet to Notify Selection Panels for Data Protection Board
The Indian government has still not formed the search‑cum‑selection committees needed to appoint a chairperson and four members to the Data Protection Board of India (DPBI), five months after the board’s statutory creation under the Digital Personal Data Protection (DPDP)...
April Patch Tuesday Roundup: Zero Day Vulnerabilities and Critical Bugs
Microsoft’s April Patch Tuesday delivered 167 fixes, including a actively‑exploited SharePoint Server zero‑day (CVE‑2026‑32201) and a critical Windows IKE remote‑code‑execution flaw (CVE‑2026‑33824) with a 9.8 CVSS score. Additional high‑risk bugs affect Active Directory (CVE‑2026‑33826), TCP/IP stack (CVE‑2026‑33827) and SAP Business...
A Data Removal Service Helped Me Reclaim My Privacy - See if You Need One, Too
Personal data is routinely harvested by thousands of data brokers and sold without consumer consent. Manual opt‑out requests are impractical, prompting the rise of paid data‑removal services such as PrivacyBee and DeleteMe. These platforms scan the web, submit takedown requests,...
OpenAI Expands Cybersecurity Program Before Deploying New Models
OpenAI announced on April 14 that it is expanding its Trusted Access for Cyber (TAC) program, scaling it to thousands of verified security professionals and hundreds of enterprise teams. The rollout adds new identity‑verification tiers and introduces GPT‑5.4‑Cyber, a cyber‑permissive...
Like Anthropic, OpenAI Will Share Latest Technology Only With Trusted Companies
OpenAI announced a limited rollout of GPT‑5.4‑Cyber, an AI model that scans software for security flaws. The initial phase will reach hundreds of trusted partners, with plans to expand to thousands in the coming weeks. The approach mirrors Anthropic’s recent...
Kids' Cybercrime Pathway Traced Back to Gaming
Pretty good overview of the pathway to cybercrime for kids and the genesis always coming back to gaming. Kinda feel like that Roblox statement really missed the point though (assuming they understood the context).
Cloudflare Launches Managed OAuth for Access, Making Internal Apps Agent‑Ready in One Click
Cloudflare announced an open‑beta feature called Managed OAuth for Access that enables any internal application protected by Cloudflare Access to be agent‑ready with a single click. The update adds OAuth 2.0 support, dynamic client registration and PKCE flows, removing a...
Patch Tuesday's a Monster: Thank AI?
Microsoft’s April Patch Tuesday delivered 247 patches covering 164 vulnerabilities, including eight critical flaws and two actively exploited zero‑days in SharePoint and Chromium. Security researcher Joe Desimone reported that all five of his local‑privilege‑escalation bugs were discovered using AI, highlighting...
Palo Alto Networks Finalizes $400 Million Koi Acquisition, Expands AI Endpoint Security
Palo Alto Networks has closed a $400 million deal to acquire Israeli cybersecurity startup Koi, bolstering its AI‑driven endpoint security portfolio. The acquisition integrates Koi’s control‑layer platform into Prisma AIRS and Cortex XDR, creating a new “Agentic Endpoint Security” category for CIOs planning...
Major Crypto Exchanges Including Coinbase and Binance Are Racing to Access Anthropic’s Mythos Model to Defend Against AI-Powered Attacks
Major crypto exchanges are scrambling to secure Anthropic’s new Mythos AI model to protect against AI‑driven attacks. Coinbase’s CSO confirmed close talks with Anthropic, while Binance is already testing Mythos alongside its own tools. Fireblocks reported that Claude Opus 4.6 exposed...
Amplify Care Offers AI Cybersecurity Training
Amplify Care has launched an "AI and Cybersecurity" course within its Shield Training program, aimed at Canadian physicians navigating AI‑driven clinical systems. The offering combines expert‑led instruction with up to 12.5 Mainpro+ continuing education credits, addressing a sector where 64%...
Adobe PDF Tools Hit by Critical CVSS 9.6 Zero‑Day Exploited Since Late 2025
Adobe disclosed a critical CVSS 9.6 zero‑day in Acrobat and Reader that has been weaponized in the wild since November 2025. The company released a priority‑1 patch on April 12, 2026 and warned enterprises to install it within 72 hours...
MSP 1337 | Cybersecurity Education & Security Guidance
In this brief episode, the hosts explore the intertwined nature of cybersecurity and compliance, emphasizing that both are part of an ongoing journey for organizations. They discuss core topics such as incident response, penetration testing, and the evolving tactics of...
Intent-Based Access Control(IBAC) for Coding Agents
Coding agents such as Claude Code, Gemini CLI, Cline, and OpenClaw are expanding beyond developer use into HR, marketing, security, and finance, exposing a hidden security gap. Traditional human‑centric access controls cannot reliably interpret natural‑language prompts issued to autonomous agents....