Evolution Equity Partners Hosts 4th Presidents Forum for Cyber Leaders
Evolution Equity Partners hosted its fourth Presidents Forum on March 24, 2026 in San Francisco during RSA Conference week, drawing more than 300 CISOs, cybersecurity founders and investors. The event featured a keynote by former California governor Arnold Schwarzenegger, who discussed AI‑driven threats and the need for global cooperation. Evolution honored Wiz founder and CEO Assaf Rappaport as 2026 CEO of the Year and showcased portfolio CEOs presenting on AI security pipelines, data protection, automated validation and synthetic media. The firm also announced a charitable contribution to Women in CyberSecurity, underscoring its commitment to diversity.
New ‘JanaWare’ Ransomware Targeting Turkish Citizens as Cybercriminal Ecosystem Fragments
Acronis has identified a new ransomware strain called JanaWare that exclusively targets computers in Turkey by checking system locale and IP geolocation. The malware, delivered mainly through phishing emails with malicious Java archives, demands low ransoms of roughly $200 to...
April Patches for Azure DevOps Server
Microsoft released Azure DevOps Server Patch 3, the latest update for its self‑hosted DevOps platform. The patch addresses a null‑reference exception that could abort pull‑request completions, tightens sign‑out validation to block malicious redirects, and resolves a failure when creating personal access...
In the Blogs: HIPAA HIPAA Hooray
The U.S. Department of Health and Human Services has issued a December 2024 proposal that represents the most significant update to the HIPAA Security Rule since 2013, aiming to close long‑standing cybersecurity gaps in healthcare. The IRS released IR‑2026‑46, expanding Business...
Cloudflare’s EmDash Tackles WordPress Plug-In Security Crisis
Cloudflare has launched EmDash, a serverless CMS positioned as a "spiritual successor" to WordPress. Built on Cloudflare Workers, Astro, and V8 isolates, EmDash promises scalable edge delivery and sandboxed plug‑ins that mitigate the plugin‑driven security flaws plaguing WordPress. The platform...
Claude Mythos Preview Completes Full Cyberattack Simulation for the First Time
Anthropic’s Claude Mythos Preview, released in early April, has become the first AI model to autonomously execute a full 32‑step corporate network takeover in a controlled simulation. In tests conducted by the UK AI Security Institute, the model completed an...
BoEs Bailey Sees Major Cybersecurity Risks in New Anthropic Model
Bank of England Governor Andrew Bailey warned that Anthropic’s new Mythos AI model could dramatically amplify cyber‑attack capabilities, forcing regulators to assess its threat to banking systems. He said the model may enable rapid identification of system vulnerabilities, raising cyber...
Someone Planted Backdoors in Dozens of WordPress Plug-Ins Used in Thousands of Websites
A supply‑chain attack was uncovered after the Essential Plugin portfolio was sold, with a hidden backdoor inserted into dozens of WordPress plugins. The malicious code lay dormant until this month, then began delivering payloads to any site using the affected...
WolfSSL Vulnerability Hits IoT, Routers and Military Systems, Update to 5.9.1 Now
Security researcher Nicholas Carlini disclosed CVE‑2026‑5194, a critical flaw in the wolfSSL encryption library that impacts roughly 5 billion devices, including routers, IoT gadgets, and military systems. The vulnerability bypasses certificate digest size verification, allowing attackers to forge digital IDs across...
Popular DeFi Platform Warns Users to Stay Away From Its Site After Security Breach
CoW Swap, a decentralized exchange aggregator, temporarily paused its platform after a DNS hijacking attack redirected users to a fraudulent site. The breach occurred at 14:54 UTC on April 14, 2026, prompting the team to warn traders to avoid the interface while they investigate....
Philippines Launches Broad Crackdown on Deepfakes as AI Drives Identity Fraud Surge
The Philippines has launched a whole‑of‑government campaign against deepfakes and disinformation, formalized by a memorandum of agreement among the Department of Justice, the Presidential Communications Office and the Department of Information and Communications Technology. The initiative comes amid a dramatic...
Microsoft Patches Exploited SharePoint Zero-Day and 160 Other Vulnerabilities
Microsoft’s April 2026 Patch Tuesday delivered fixes for 165 vulnerabilities, highlighted by an exploited SharePoint Server zero‑day (CVE‑2026‑32201) rated “important” with a CVSS score of 6.5. The flaw enables network‑level spoofing and has been added to CISA’s Known Exploited Vulnerabilities list, prompting...
Microsoft Releases Windows 10 KB5082200 Extended Security Update
Microsoft released the Windows 10 KB5082200 extended security update, addressing the April 2026 Patch Tuesday fixes. The update patches 167 vulnerabilities, including two zero‑day flaws, and upgrades Windows 10 to build 19045.7184 (Enterprise LTSC 2021 to 19044.7184). It adds RDP file phishing protections, Secure Boot status...
Joint Industry Perspective Released by the Industrial Security Harmonization Group (ISHG)
The Industrial Security Harmonization Group (ISHG) released a joint industry perspective emphasizing that industrial cybersecurity depends on how communication protocols are deployed and managed, not merely on the protocols themselves. The group—comprising FieldComm, ODVA, OPC Foundation, and Profibus & Profinet International— stresses...
McGraw-Hill Confirms Data Breach Following Extortion Threat
McGraw‑Hill disclosed that hackers leveraged a misconfigured Salesforce page to view a limited set of internal data. The company emphasized that the breach did not compromise its Salesforce accounts, customer databases, courseware, or any sensitive student information. Extortion group ShinyHunters...
Microsoft’s April 2026 Patch Tuesday Addresses 163 CVEs (CVE-2026-32201)
Microsoft’s April 2026 Patch Tuesday released updates for 163 CVEs, including eight critical and 154 important vulnerabilities. The update contains two zero‑day flaws, one of which (CVE‑2026‑32201) was exploited in the wild targeting SharePoint. Notable critical issues include a remote...
Anthropic Mythos: Separating Signal From Hype
Anthropic’s Mythos model pushes large‑language‑model reasoning into full codebases, enabling multi‑step vulnerability discovery and realistic exploit chaining. While it outperforms earlier LLMs that suffered from context fragmentation, its power hinges on having source‑code visibility, making closed‑source and SaaS environments less...
War with Iran Raises Proxy Attack Risk and Cyber Threats in Southeast Europe
Tensions between Iran and pro‑U.S./pro‑Israel Balkan states have moved from rhetoric to concrete threats, including cyberattacks on Albanian government systems and proxy‑style terrorist plots. Albania and Kosovo have labeled Iran a state sponsor of terrorism, while Montenegro, North Macedonia and...
How to Hide Sensitive Info From Your Notifications
The FBI recently recovered deleted Signal messages from a defendant’s iPhone by extracting them from the device’s push‑notification database, exposing a hidden privacy flaw. iOS, macOS, Android and Windows all retain notification content, even after an app is removed, making...
Ransomware Groups Are Actively Disabling Your EDR Before You Even Know It
Ransomware groups are increasingly deploying “EDR killers” to silently disable endpoint detection and response tools before launching encryption. By first neutralizing security agents, attackers create a blind spot that lets them move laterally, elevate privileges, and establish persistence without triggering...
Hackers Are Targeting Critical Infrastructure to Cause Real-World Damage
Hackers linked to Iran’s CyberAv3ngers group are shifting from symbolic cyber‑espionage to sabotage of U.S. critical infrastructure. They are exploiting internet‑exposed programmable logic controllers in water, energy and industrial environments, enabling direct physical disruption. The attacks expose the danger of...
Google Rolls Out Gmail Encryption and Meet on Android Auto
Google announced that Gmail will now support end‑to‑end encryption for personal and enterprise users, leveraging OpenPGP standards. At the same time, the company integrated Google Meet into Android Auto, allowing drivers to join video calls hands‑free. The encryption feature rolls...
Hackers Are Using GitHub and Jira to Bypass Your Security
Hackers are weaponizing collaboration platforms such as GitHub and Jira by sending malicious links through native notifications like pull‑request updates and ticket comments. Because these alerts originate from trusted services, they often evade email gateways and endpoint filters. The attacks...
California’s Cybersecurity Audit Rule Is Now in Effect: Its Impact for Class Litigation
The California Privacy Protection Agency’s new cybersecurity audit rule took effect on Jan. 1, 2026, obligating certain businesses to conduct and certify an annual audit covering 18 technical and organizational safeguards. While the audit report itself is not filed publicly, the certification...
Ethereum Foundation Launches Audit Subsidy Program for Builders
The Ethereum Foundation announced a new audit subsidy program aimed at lowering the cost of security audits for developers building on Ethereum. The initiative, launched in partnership with leading audit firms, will provide financial assistance to eligible projects, making professional...
TechJutsu Launches Browser Extension to Bring MFA to the Web
TechJutsu, a Calgary‑based identity‑access firm founded in 2015, unveiled its Caller Verify Universal Connector, a browser extension that embeds multi‑factor authentication (MFA) into any web application. The plug‑in works in Chrome and Edge and integrates with major CRM and collaboration...
How Your CCTV Becomes a Hacker’s Spy
CCTV systems are increasingly exploited by hackers who use default factory passwords to breach IP cameras worldwide. In India, a cyber‑crime ring stole 50,000 video clips from 80 cameras across 20 states, selling each for roughly $9‑$50. In response, India...
Unseen AI, Unchecked Risk: The CISO Wake-Up Call
Shadow AI—unauthorized use of generative AI tools—is emerging as a blind spot for security teams, exposing proprietary code and sensitive data without detection. More than a third of companies still lack formal AI compliance policies, leaving employees free to paste...
Fake Ledger Live App on Apple’s App Store Stole $9.5M in Crypto
A counterfeit Ledger Live macOS app posted on Apple’s App Store siphoned roughly $9.5 million in cryptocurrency from about 50 users within days. Victims entered seed phrases, giving attackers control over wallets across Bitcoin, Ethereum, Tron, Solana and Ripple. The stolen...
Venice Hydraulic Pump System Hacked, Hackers Claim Power to Create Floods
A hacker group identifying as “Infrastructure Destruction Squad” or “Dark Engine” claims to have breached Venice’s hydraulic pump system that protects Piazza San Marco, asserting it can open floodgates. The group says it stole administrative credentials for the flood‑risk management...
Black Basta’s Playbook Lives on as Former Affiliates Launch Fast-Scale Intrusion Campaign
A loose network of former Black Basta affiliates has launched a fast‑scale intrusion campaign, targeting over 100 senior employees across dozens of organizations. The attackers employ mass email bombing and Microsoft Teams help‑desk impersonation to gain rapid remote access, often...
Virginia Governor Signs Law Banning Sales Of Location Data
Virginia Governor Abigail Spanberger signed Senate Bill 338, a privacy law that bans the sale of precise location data within a 1,750‑foot radius. The measure, effective July, replaces the 2021 consent‑based framework and joins Maryland and Oregon in prohibiting such...
War Game Exercise Demonstrates How Social Media Manipulation Works
University of New South Wales turned a classroom exercise into a four‑week war‑game called “Capture the Narrative.” Over 270 participants from 18 Australian universities deployed AI‑driven bots on a custom social‑media sandbox, Legit Social, to sway a simulated South‑Pacific island...
8 Wi-Fi Security Guidelines Issued by Wireless Broadband Alliance
The Wireless Broadband Alliance (WBA) has published eight security guidelines aimed at elevating Wi‑Fi networks to carrier‑grade protection. The recommendations span certificate‑based authentication, WPA3‑Enterprise encryption, privacy‑preserving identities, end‑to‑end credential safeguards, hardened access‑network infrastructure, and secure AAA signaling. They also stress...
OpenSSL 4.0.0 Release Cuts Deprecated Protocols and Gains Post-Quantum Support
OpenSSL has released version 4.0.0, removing legacy protocols such as SSLv3 and the SSLv2 client hello, and eliminating the engine API. The update introduces Encrypted Client Hello (ECH) per RFC 9849 and adds several post‑quantum cryptographic primitives, including the hybrid curveSM2MLKEM768...
Editorial. Cyber Insecurity
The Reserve Bank of India’s latest discussion paper reveals a dramatic surge in digital fraud, with reported incidents climbing from 260,000 in 2021 to 2.8 million in 2025 and losses swelling from roughly $67 million to $2.8 billion. The paper attributes much of...
Pro-Iranian Actor Claims L.A. Metro Cyberattack
Last month, Los Angeles Metro shut down portions of its network after detecting a cyber intrusion, and it is still working to restore services. Intelligence from Dataminr attributes the attack to a pro‑Iranian hacktivist group called Ababil of Minab, which...
AI Treated as Force-Multiplier for Cyber Losses. Introduces Aggregation, Correlation Risks: CyberCube
CyberCube warns that artificial intelligence is becoming a force‑multiplier for cyber losses, accelerating attack speed and scale. The firm says AI compresses the cyber‑attack lifecycle, making recovery capability a key loss driver. It urges insurers and reinsurers to embed AI‑specific...
April Patch Tuesday Brings Zero-Days in Defender, SharePoint Server
Microsoft’s April 2026 Patch Tuesday shipped more than 160 Microsoft updates, including two actively‑exploited zero‑day flaws. The SharePoint Server XSS (CVE‑2026‑32201) can be triggered without authentication, while the Defender elevation‑of‑privilege bug (CVE‑2026‑33825) has public proof‑of‑concept code. A third zero‑day in Chromium’s...
This New Tool Can Steal Your Passwords And Info – Even With 2FA Enabled
Storm, a new Windows‑only infostealer discovered in early 2026, can steal encrypted browser data, decrypt it on remote servers, and use harvested session cookies to bypass two‑factor authentication. The malware exfiltrates passwords, autofill details, crypto‑wallet credentials, and messaging app data,...
Brute-Force Cyberattacks Originating in Middle East Surge in Q1
Barracuda reported a sharp rise in brute‑force authentication attacks on network devices during Q1 2026, with roughly 90% of the activity traced to Middle‑East sources. SonicWall and Fortinet FortiGate firewalls were the most frequently targeted, accounting for over half of the...
Cloudflare Partners with Wiz to Secure the Global AI Attack Surface, Eliminating Blind Spots Caused by Shadow AI
Cloudflare announced a partnership with Wiz, now part of Google Cloud, to embed its AI Security for Apps into Wiz’s Security Graph. The integration creates a unified, model‑agnostic view of an organization’s AI footprint, detecting shadow AI, prompt‑injection attacks and...
AI-Driven Pushpaganda Scam Exploits Google Discover to Spread Scareware and Ad Fraud
Cybersecurity firm HUMAN uncovered a new ad‑fraud operation dubbed Pushpaganda that weaponizes AI‑generated news articles to infiltrate Google Discover. The scheme tricks Android and Chrome users into enabling push notifications that deliver scareware and financial scams, driving traffic to malicious...
Cloudflare Launches Mesh to Secure the AI Agent Lifecycle
Cloudflare announced Mesh, a private networking solution built for AI agents that unifies agents, humans, and multicloud infrastructure into a single secure fabric. The service replaces legacy VPNs and manual tunnels, letting developers provision private connectivity in minutes while keeping...
5 Ways Zero Trust Maximizes Identity Security
Stolen credentials accounted for 22% of known initial access attempts in 2025, making them the top entry vector for attackers. Zero Trust promises to curb this risk, but only when identity is the core focus rather than a collection of...
Quantum Computers Could Usher in a Crisis Worse than Y2K
Quantum researchers warn that a functional, large‑scale quantum computer capable of breaking RSA and ECC encryption – dubbed Q‑Day – may emerge within the next decade. The threat mirrors the Y2K panic, but the underlying cryptographic foundations are far more...
X.Org X Server and Xwayland Security Advisory Released for Multiple Issues
The X.Org X server and Xwayland projects have issued a security advisory covering five critical vulnerabilities (CVE‑2026‑33999‑34003). Updated packages—xorg‑server‑21.1.22 and xwayland‑24.1.10—contain patches that resolve integer underflow, out‑of‑bounds reads, and a use‑after‑free bug in XKB and XSYNC components. The flaws, discovered...
Claroty Advances CPS Security with Visibility Orchestration in xDome
Claroty has launched Visibility Orchestration within its SaaS platform Claroty xDome, turning vague asset visibility into a measurable score that drives security actions. The new capabilities automatically assess visibility gaps, prioritize remediation tasks, and enrich asset data using AI, Edge scans,...
Google, Microsoft, Meta All Tracking You Even When You Opt Out, According to an Independent Audit
An independent audit by webXray examined traffic on more than 7,000 California websites and found that Google, Microsoft and Meta routinely set advertising cookies even when users sent a Global Privacy Control (GPC) opt‑out signal. Google ignored the signal on...
Oligo Security Moves Beyond CVE Prioritization with Real-Time Application-Layer Exploit Blocking
Oligo Security unveiled Runtime Exploit Blocking, a capability that intercepts application‑layer exploit attempts in real time without terminating containers or disrupting services. The technology correlates function calls with system activity to detect malicious sequences and blocks the offending system call...