Know What's Happening in Cybersecurity
Know What's Happening in Cybersecurity
Cybersecurity Pulse
EMAIL DIGESTS
Daily
Every morning
Weekly
Tuesday recap
EMAIL DIGESTS
Daily
Every morning
Weekly
Tuesday recap
Ransomware and supply‑chain breaches surge across sectors
The Cyber Express reports a sharp rise in ransomware incidents and supply‑chain compromises. High‑profile attacks include a ransomware intrusion at Hasbro, a malicious package update that hit AI startup Mercor via the LiteLLM project, and a North Korean‑linked attack on the Axios JavaScript library.
Also developing:
The video discusses why many hardware vendors choose not to provide Linux drivers, contrasting the open‑source freedoms of Linux with the practical challenges users face when support is absent. The speaker emphasizes that Linux’s free, modifiable nature—often described as “Libre” or FLOSS—offers users unparalleled liberty. However, that liberty becomes a drawback when manufacturers decide against Linux compatibility, leaving users to navigate a fragmented ecosystem of distributions, kernel versions, and library dependencies. A notable quote from the presenter: “It’s the manufacturers that we need to push on to be like you need to support this.” This underscores the call for community pressure to compel vendors to release drivers that work across the diverse Linux landscape. The lack of vendor support hampers Linux adoption in enterprise and consumer markets, increasing support costs and limiting hardware choices. Encouraging manufacturers to embrace Linux could broaden the OS’s reach and reduce the burden on open‑source maintainers.
My take on Bitcoin and quantum computing: https://t.co/bq2HdAsnXQ tl;dr: I think the risk is high enough to warrant prioritizing designing, implementing, and evaluating post-quantum signature schemes and consensus upgrades in Bitcoin now.
A coordinated exploit on Solana's Drift protocol siphoned roughly $280 million in crypto assets. The attacker leveraged a durable‑nonce transaction to seize the protocol’s admin key, prompting a rapid market sell‑off and renewed scrutiny of DeFi governance and key‑management practices.
Telehealth giant Hims & Hers confirmed a hack of its customer‑service ticketing system, while Cognizant‑owned health‑tech insurer verification platform TriZetto disclosed a breach that exposed over 3.4 million patient records. Both incidents underscore growing cyber risks in digital health infrastructure.
The FBI announced that a China-linked intrusion into its internal surveillance system has been classified as a major cyber incident, the first such designation since 2020. The breach, detected on Feb. 17, exposed law‑enforcement‑sensitive data and underscores growing aggression from sophisticated...
China’s Cyberspace Administration released draft regulations that require clear labeling of digital avatars, prohibit AI‑driven intimate services for anyone under 18, and set new safeguards against misuse of personal data. The draft, open for comment until May 6, signals a tightening...
If scammers started sending out fake class action emails feel like that would be rally hard to distinguish between real vs fake
New blog: We found a sandbox breakout and remote dev tunnel bug in Cursor. Called it NomShub. It was fun making my vscode dev tunnel C2 dashboard pink. https://t.co/KfPBzqEOYe https://t.co/Owgxbnge1b
Tönnjes, in partnership with Swiss chip maker EM Microelectronic, unveiled a next‑generation hybrid RFID/NFC chip for vehicle identification at Intertraffic in Amsterdam. The dual‑frequency tag combines long‑range RAIN RFID with smartphone‑compatible NFC, featuring AES‑128 encryption and expanded memory for secure,...
Counting scans and alerts isn’t security progress—it's masking unresolved vulnerabilities and rising cyber risk. https://t.co/fsb8M3fbRc
Chinese apps store sensitive data on servers in China, which the government can access, FBI warns. https://t.co/irVklBM99j
pgEdge announced a production‑ready MCP Server for Postgres, positioning a message‑based communication protocol as a superior alternative to traditional APIs for AI agents. The service promises built‑in security, deep schema introspection and reduced token consumption, aiming to curb hallucinations and...
#Windows Security app gets Secure Boot certificate status indicators as 2026 expiration approaches https://t.co/uPkmyFSDsQ https://t.co/nf44sxRl42
A compromised Axios maintainer account allowed attackers to publish malicious versions of the popular JavaScript library, injecting a remote‑access trojan that reached an estimated 180 million weekly downloads. The three‑hour window before removal highlights the fragility of open‑source supply chains and...
Naoris Protocol launched a quantum‑resistant mainnet built on NIST‑approved post‑quantum algorithms, marking its shift from proof‑of‑concept to production. The network has already validated over 100 million transactions and mitigated more than 603 million threats during testing. Its debut comes as Bitcoin and...
240 - Warning, They Can Know Where You Are in Real Time. How to Protect Yourself #ArtificialDecisions #MCC https://t.co/LUlIN36Wjm
