Social engineering attacks on open source developers are escalating
North Korean hackers spent weeks socially engineering an Axios maintainer through a fake Slack workspace, a cloned company identity, and a fabricated Microsoft Teams call…
Month: April 2026
Your extensions leak clues about you, so we made sure Browser Guard doesn’t
Did you know you can be profiled based on the browser extensions you use? Advertisers can detect which extensions are installed and use that to…
Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)
The Fragmented State of Modern Enterprise Identity Enterprise IAM is approaching a breaking point. As organizations scale, identity becomes increasingly fragmented across thousands of applications, decentralized teams,…
Azure customers up in arms over ‘full’ UK South region
Microsoft Azure is refusing capacity to cloud customers in the company’s UK South (UKS) region, with issues around the availability of Azure virtual machines (VMs)…
Researchers Spot Zero-Day Attack Targeting Adobe Reader
A newly uncovered zero-day attack targeting Adobe Reader has raised alarms across enterprise security teams, as researchers identified an exploit chain that bypasses traditional detection…
FBI Disrupts Router Attack Network
The Russian-linked threat group APT28 has continued to leverage vulnerable network devices to carry out large-scale DNS hijacking campaigns, enabling adversary-in-the-middle attacks. Recent developments show that these…
Anthropic touts AI cyber security project
Anthropic has announced an initiative with major technology companies, including Amazon.com, Microsoft and Apple, that lets partners preview an advanced model with cyber security capabilities…
FBI: Cybercrime Losses Neared $21 Billion in 2025
Losses resulting from cyber-enabled crimes went up 26% year-over-year in 2025, narrowly missing the $21 billion mark, according to the latest annual report from the…
defending software before hackers do
Project Glasswing powered by Claude Mythos: defending software before hackers do Pierluigi Paganini April 08, 2026 Anthropic unveiled Claude Mythos, a powerful AI for cybersecurity…
The 22-minute Breakout: Why monthly vulnerability scanning no longer works
TLDR: We attended Cyber Security 2026: Kritisk infrastruktur in Stockholm, and the reality check was simple: “breakout time” has hit a record low of 22…
Police arrest man on suspicion of stealing personal data of 56,000 patients
Hong Kong police have arrested a man working for a contractor commissioned by the Hospital Authority on suspicion of stealing the personal data of more…
Hackers exploit a critical Flowise flaw affecting thousands of AI workflows
Hackers exploit unpatched instances While a patch has been available for months, a recent VulnCheck finding places the first in-the-wild exploitation on April 6. Caitlin…