April KB5083769 Windows 11 update causes backup software failures
The April 2026 KB5083769 security update breaks third-party backup applications from multiple vendors on systems running Windows 11 24H2 and 25H2. According to user reports,…
Month: May 2026
Anthropic Launches Claude Security in Public Beta for Enterprise Customers
Anthropic has opened Claude Security to public beta for Claude Enterprise customers, bringing AI-powered vulnerability detection directly into production codebases without the need for custom…
China-Aligned Hackers Deploy ShadowPad in Multi-Stage Espionage Campaign
China-aligned threat actors tracked as SHADOW-EARTH-053 are exploiting old but unpatched Microsoft Exchange and IIS vulnerabilities to run a stealthy, multi-stage espionage campaign across Asian…
Cursor AI IDE Vulnerability Allows Code Execution Via Hidden Git Hooks
Researchers from threat hunting firm Novee have found a security flaw in a popular AI-powered Integrated Development Environment (IDE) called Cursor. This high-severity arbitrary code…
Shadow AI risks deepen as 31% of users get no employer training
Between one-fifth and one-third of workers use AI outside the influence and governance of the IT function, according to a global survey of 6,000 full-time…
Google Fixes CVSS 10 Gemini CLI CI RCE and Cursor Flaws Enable Code Execution
Google has addressed a maximum severity security flaw in Gemini CLI — the “@google/gemini-cli” npm package and the “google-github-actions/run-gemini-cli” GitHub Actions workflow — that could…
Global study reveals biggest risks of AI in finance sector
Data privacy and hallucinations are the biggest risks to the financial services sector brought by artificial intelligence (AI), while half of global regulators are just…
Bunnings’ tech capability “incredibly underestimated”
Bunnings’ technology operations are “incredibly underestimated”, the hardware chain’s boss says, with the retailer’s recent courting by Google viewed internally as proof of its digital…
SonicWall Urges Immediate Patching of Firewall Vulnerabilities
SonicWall on Wednesday rolled out fixes for three SonicOS vulnerabilities, urging customers to immediately patch their Gen 6, Gen 7, and Gen 8 firewalls. “These…
Former incident responders sentenced to 4 years in prison for committing ransomware attacks
Two former cybersecurity professionals who moonlighted as cybercriminals, committing a series of ransomware attacks in 2023, were each sentenced to four years in prison, the…
This month in security with Tony Anscombe – April 2026 edition
Warnings about helpdesk impersonation scams and Iran-linked hackers targeting critical sectors in the US, plus the most damaging scams of 2025 – here’s some of…
DigiCert launches AI Trust architecture for agents, models and content
DigiCert has announced a new “AI Trust” architecture aimed at helping organisations secure AI systems and verify AI-generated outputs, as enterprises increasingly deploy autonomous agents…