In one of his recent diaries, Johannes discussed how open redirects are actively being sought out by threat actors[1], which made me wonder about how commonly these mechanisms are actually misused… Although open redirect is not generally considered a high-impact vulnerability on its own, it can have multiple negative implications. Johannes already covered one in…
Category: Apps
Apps, Global Security News, Network Security
IT talent looks the other way as wireless security incidents pile up
Enterprise wireless networks are supporting a growing mix of devices and applications, increasing operational demand and security exposure. The 2026 Cisco State of Wireless report reflects these conditions through rising incident rates, higher costs, and ongoing staffing challenges. Wireless investment continues to increase. Most organizations expanded spending over the past 5 years, and a large…
AI, Apps, china, Cybersecurity, Exploits, Global Security News, Government & Policy, Network Security, Risk Management
U.S. CISA adds a flaw in TrueConf Client to its Known Exploited Vulnerabilities catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in TrueConf Client to its Known Exploited Vulnerabilities catalog The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a flaw in TrueConf Client, tracked as CVE-2026-3502 (CVSS score of 7.8), to its Known Exploited Vulnerabilities (KEV) catalog. TrueConf is a videoconferencing platform often used in secure, offline…
AI, Apps, Cybersecurity, Data Breaches, Global Security News, Network Security, Risk Management
RSAC 2026: Rethinking Trust in Agentic AI Security
Ahead of RSAC 2026, a conversation with David Brauchler, Technical Director and Head of AI/ML Security at NCC Group, highlighted a growing concern: many organizations are fundamentally unprepared to secure AI-powered systems. As enterprises rapidly adopt agentic AI, traditional security assumptions are breaking down, exposing critical gaps in how risk is understood and managed. The…
AI, Apps, Endpoint, Exploits, Global Security News, Risk Management
Security lapse lets researchers view React2Shell hackers’ dashboard
An apparent security lapse has allowed researchers to peer into the work of a threat group currently exploiting unpatched servers open to the four-month-old React2Shell vulnerability to steal login credentials, keys, and tokens at scale. Researchers from Cisco Systems’ Talos threat intelligence team who made the discovery said Thursday that the data harvested by an…
AI, APAC, Apps, Funding, Global Security News
Internet Bug Bounty program hits pause on payouts
Researchers who identify and report bugs in open-source software will no longer be rewarded by the Internet Bug Bounty team. HackerOne, which administers the program, has said that it is “pausing submissions” while it contemplates ways in which open source security can be handled more effectively. The Internet Bug Bounty program, funded by a number…
AI, Apps, Data Breaches, Endpoint, Exploits, Global Security News, Network Security, Risk Management
Cisco 2026 State of Wireless Report: AI Wireless Threats Grow as Security Gaps Widen
Wireless networks are becoming a prime target for attackers — and many organizations aren’t prepared to keep up. Cisco’s 2026 State of Wireless report warns that as enterprises scale AI, IoT, and high-bandwidth applications, wireless environments are expanding faster than security defenses can adapt. “AI-generated attacks are the leading driver of increased wireless security risk,”…
AI, Apps, Compliance, Cybersecurity, Global Security News
How AWS KMS and AWS Encryption SDK overcome symmetric encryption bounds
If you run high-scale applications that encrypt large volumes of data, you might be concerned about tracking encryption limits and rotating keys. This post explains how AWS Key Management Service (AWS KMS) and the AWS Encryption SDK handle Advanced Encryption Standard in Galois Counter Mode’s (AES-GCM) encryption limits or bounds automatically by using derived key…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management
High-Severity Vulnerabilities, Supply Chain Breaches, and AI Threats Redefine Cybersecurity This Week
Major Threats & Vulnerabilities High-Severity Flaws A newly disclosed Cisco IMC vulnerability (CVSS 9.8) allows unauthenticated attackers to gain full administrative access to UCS servers. Cisco has issued patches, and while no active exploitation has been observed, immediate updates are strongly advised. In another critical discovery, a GIGABYTE Control Center flaw enables remote code execution…
AI, Apps, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
Armis State of Cyberwarfare Report: AI-Powered Cyber Attacks Accelerate Worldwide
Cyberwarfare has entered a new phase — and it’s moving faster than many organizations can defend against. The 2026 State of Cyberwarfare report from Armis warns that AI-driven attacks, geopolitical tensions, and expanding digital dependencies are converging to create a constant, high-pressure threat environment for enterprises worldwide. “Modern businesses find themselves in the crosshairs of…
AI, Apps, Compliance, Cybersecurity, Europe, Global Security News, Government & Policy, Network Security, Risk Management, Venture
March 2026 Leadership Moves: Google Cloud Partner Chief Departs & More
As the first quarter of 2026 comes to a close, organizations around the channel have made significant moves to their leadership teams. Key figures have been appointed, promoted, or departed from their positions to make way for new faces. Take a look around at some of the signature moves that enterprises have made as they…
AI, Apps, Cybersecurity, Endpoint, Global Security News, Risk Management
12 cyber industry trends revealed at RSAC 2026
The 2026 RSA circus is over. The tents are packed and the elephants have been loaded onto the train. Nevertheless, it was an eventful week. There were fleets of vehicles — Escalades, Rivians, trucks but curiously, no Teslas — strewn with vendor names and tag lines, and you couldn’t walk anywhere near Howard Street in…
AI, Apps, Global Security News, Government & Policy
Why AI lies, cheats and steals
You can’t trust AI. Even an information-obsessed, tech-savvy person such as yourself might be forgiven for believing that AI chatbots are on a smooth path of improvement with each passing month. But when it comes to their trustworthiness, that belief is dead wrong. New research by the UK government-backed Centre for Long-Term Resilience (CLTR) found…
AI, APAC, Apps, Compliance, Endpoint, Global Security News, Government & Policy, Network Security, privacy, Risk Management
Microsoft 365 explained: Office 365, rebranded and expanded
Microsoft 365 arrived to much fanfare at its launch in July 2017, with Microsoft CEO Satya Nadella promising a “fundamental departure” in how the company thinks about product creation. Nearly nine years later, Microsoft 365 has become Microsoft’s core brand for workplace productivity software, having largely replaced the Office 365 branding long associated with the…
AI, Apps, Compliance, Global Security News, Risk Management
Datadog Intros Experiments Product to Enable Testing at Scale
Datadog has announced the launch of Datadog Experiments, a new product that enables teams to design, launch, and measure product experiments and A/B tests directly within the Datadog platform. Embedding experimentation into observability The new product provides teams with the data and insights to understand how every change affects user behavior, application performance, and business…
AI, Apps, Cybersecurity, Global Security News, Government & Policy, Network Security, Risk Management
Four security principles for agentic AI systems
Agentic AI represents a qualitative shift in how software operates. Traditional software executes deterministic instructions. Generative AI responds to human prompts with output that humans review and use at their discretion. Agentic AI differs from both. Agents connect to software tools and APIs and uses large language models (LLMs) as reasoning engines to plan and…
AI, Apps, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management
Claude Code Leak Exposes AI Supply Chain Threats
A leak involving Anthropic’s Claude Code has drawn attention from the cybersecurity and developer communities, exposing internal components of the AI coding agent and introducing potential risks for organizations. “The significance of this leak is in what the code reveals about AI agent architecture. The leak exposed approximately 512,000 lines of TypeScript across roughly 1,900…
AI, APAC, Apps, Global Security News, Network Security, Risk Management, Venture
March 2026 M&A Recap: SAP, Eaton Headline Month’s Deals
At the end of the first quarter of 2026, the channel saw several key acquisitions in March. Significant players in the channel have made these moves to help provide their customers with improved services, stronger solutions, and expanded expertise. Dive into the acquisitions from the month and don’t forget to catch up on February’s M&As,…
AI, Apps, Exploits, Global Security News
Google Workspace’s continuous approach to mitigating indirect prompt injections
Posted by Adam Gavish, Google GenAI Security Team Indirect prompt injection (IPI) is an evolving threat vector targeting users of complex AI applications with multiple data sources, such as Workspace with Gemini. This technique enables the attacker to influence the behavior of an LLM by injecting malicious instructions into the data or tools used by…
AI, Apps, Cloud Security, Data Breaches, Endpoint, Global Security News, Network Security, Risk Management
Alleged Starbucks Incident Exposes Code and Firmware
A threat group is claiming to have breached Starbucks and stolen 10GB of sensitive data, including proprietary source code and firmware tied to its in-store machines and global operations. The group, ShadowByt3s, alleges it accessed a misconfigured Amazon S3 bucket and is now threatening to leak the data unless a ransom is paid. “The leak…
AI, Apps, Data Breaches, Exploits, Global Security News, Network Security, Risk Management
Cisco IMC Flaw Grants Unauthenticated Admin Access
A flaw in Cisco’s Integrated Management Controller (IMC) allows unauthenticated attackers to gain administrative access to affected UCS servers, which could potentially lead to full system compromise. The vulnerability “… could allow an unauthenticated, remote attacker to bypass authentication and gain access to the system as Admin,” said Cisco in its advisory. Cisco IMC Flaw…
Apps, Global Security News
Understanding threats in today’s digital application landscape
GUEST OPINION: Have you ever wondered how a simple app on your phone could become a doorway for hackers? Most of us trust the apps we use every day, from banking to food delivery, without thinking twice. Yet behind those smooth screens lies a complex system that is constantly under attack. As our lives move…
AI, Apps, Cybersecurity, Exploits, Global Security News, Government & Policy, Network Security, Risk Management
Cybersecurity in the age of instant software
AI is rapidly changing how software is written, deployed, and used. Trends point to a future where AIs can write custom software quickly and easily: “instant software.” Taken to an extreme, it might become easier for a user to have an AI write an application on demand — a spreadsheet, for example — and delete…
AI, Apps, china, Exploits, Global Security News, Government & Policy, malware, Network Security
TrueConf zero-day vulnerability exploited to target government networks
Suspected China-nexus attackers have leveraged a zero-day vulnerability (CVE-2026-3502) in the TrueConf client application to distribute malware within government networks in Southeast Asia, Check Point researchers discovered. Malicious client update attack chain (Source: Check Point) Trusted update mechanism turned into attack vector TrueConf is a videoconferencing platform designed to run on private local networks (LANs)…
AI, Apps, Global Security News, Risk Management
Slack’s AI updates signal shift towards agent orchestration
Slack has taken further steps to reposition Slackbot from a simple assistant to a more capable AI agent that can orchestrate workflows across external apps. The updates to Slackbot “signal a clear shift from a collaboration tool to what it hopes will become an operational layer for agentic work,” said Maria Bell, senior analyst,…
AI, Apps, Cybersecurity, Exploits, Global Security News, Government & Policy, privacy, Risk Management
Italian spyware vendor creates Fake WhatsApp app, targeting 200 users
WhatsApp blocked a fake app by Italian firm SIO/Asigint that targeted 200 users with spyware, urging them to reinstall the official app. WhatsApp has recently uncovered a malicious fake version of its app that targeted roughly 200 users, most of whom are in Italy. The platform confirmed that the unofficial client contained spyware and was…
AI, Apps, Global Security News, privacy
As cheap PCs vanish, enterprises might still find value in upgrades
Some enterprises might find that upgrading to newer, more expensive PCs is worth the investment since it appears cheap PCs won’t be coming anytime soon, analysts said. Dell and HP both have announced new business PCs that run Intel’s long-awaited Panther Lake chip, also called the Core Ultra Series 3; it has been touted as…
AI, Apps, Global Security News
Microsoft adds high-volume email sending to Exchange Online
Organizations that rely on Exchange Online for internal communications have long needed a way to send large volumes of automated messages, such as payroll notifications, IT alerts, and security advisories, without running into the sending limits designed for person-to-person email. Microsoft has addressed that with the general availability of High Volume Email (HVE) in Exchange…
AI, Apps, Compliance, Cybersecurity, Global Security News, Government & Policy, Risk Management
News Alert: TAC Security surpasses 10,000 customers, scaling global VM and AppSec platform
NEW YORK, Apr. 1, 2026, CyberNewswire—TAC Infosec, a global leader in cybersecurity (NSE: TAC), with presence across 100+ countries, announced a historic milestone by crossing 10,000 clients – 6,500+ of TAC Security and 3,500+ of CyberScope, since April 2024, delivering on its commitment to shareholders to achieve this by 2026. While building trusted access to…
AI, Apps, Cybersecurity, Exploits, Global Security News, Network Security, Risk Management
U.S. CISA adds a flaw in Google Dawn to its Known Exploited Vulnerabilities catalog
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds a flaw in Google Dawn to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added a flaw in Google Dawn, tracked as CVE-2026-5281 (CVSS score of 8.8), to its Known Exploited Vulnerabilities (KEV) catalog. The flaw is a use after free in the Dawn…
AI, Apps, Data Breaches, Endpoint, Exploits, Global Security News, Network Security, Risk Management
Chrome Vulnerability CVE-2026-5281 Exploited in the Wild
Google has released a Chrome update for multiple high-severity flaws and confirmed that one of the vulnerabilities is being actively exploited in the wild. We are “… aware that an exploit for CVE-2026-5281 exists in the wild,” said Google in its advisory. Inside CVE-2026-5281 The vulnerability, tracked as CVE-2026-5281, is a use-after-free flaw affecting Chrome’s…
AI, Apps, Exploits, Global Security News, Risk Management
Google fixes fourth actively exploited Chrome zero-day of 2026
Google fixed a new Chrome zero-day, tracked as CVE-2026-5281, in the WebGPU Dawn component that is already exploited in the wild. Google released Chrome updates fixing 21 vulnerabilities, including a new actively exploited zero-day tracked as CVE-2026-5281. The flaw is a use-after-free bug in Dawn, the WebGPU component used for graphics processing. Due to ongoing…
AI, Apps, Cybersecurity, Endpoint, Exploits, Global Security News, Network Security, Risk Management
Bitdefender Launches Internal Attack Surface Assessment
Bitdefender recently announced the launch of Bitdefender Attack Surface Assessment to help enterprises discover hidden cybersecurity risks. Complimentary evaluation shines spotlight on hidden risk The assessment is a complimentary evaluation that helps organizations identify and reduce hidden internal cyber risk from unnecessary user access to applications, tools, and operating system utilities commonly exploited in modern…
AI, Apps, Endpoint, Global Security News, malware
HYCU Expands R-Shield With Halcyon Ransomware Defense
HYCU has expanded its R-Shield cyber resilience platform through a new integration with Halcyon, adding advanced ransomware prevention and data exfiltration protection. The update aims to address persistent gaps in enterprise security strategies, particularly the fragmentation of tools that limits organizations’ ability to detect, stop, and recover from modern ransomware attacks across hybrid and multi-cloud…
AI, Apps, Data Breaches, Exploits, Global Security News, Government & Policy, privacy
TeamPCP Supply Chain Campaign: Update 005 – First Confirmed Victim Disclosure, Post-Compromise Cloud Enumeration Documented, and Axios Attribution Narrows, (Wed, Apr 1st)
This is the fifth update to the TeamPCP supply chain campaign threat intelligence report, “When the Security Scanner Became the Weapon” (v3.0, March 25, 2026). Update 004 covered developments through March 30, including the Databricks investigation, dual ransomware operations, and AstraZeneca data release. This update consolidates two days of intelligence through April 1, 2026. HIGH: Mercor AI…
AI, Apps, Cybersecurity, Global Security News, Government & Policy, malware, Network Security, Russia
UAC-0255 Attack Detection: Threat Actors Impersonate CERT-UA to Infect Ukrainian Public and Private Sector Organizations With AGEWHEEZE RAT
Phishing remains one of the most effective tools in the cybercriminal arsenal, especially when threat actors abuse the credibility of trusted institutions and familiar digital services to increase victim interaction. In late March 2026, CERT-UA revealed a phishing campaign tracked as UAC-0255 in which attackers impersonated the agency and attempted to infect organizations across Ukraine’s…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Global Security News, Government & Policy, malware, Network Security, Risk Management
Major Cyber Attacks in March 2026: OAuth Phishing, SVG Smuggling, Magecart, and More
March 2026 brought a wave of cyber attacks that reflected how quickly modern threats can move from subtle early signals to serious business impact. ANY.RUN analysts identified and explored several major threats this month, exposing phishing campaigns, stealthy malware, payment-skimming activity, and resilient botnet infrastructure affecting organizations across industries. From Microsoft 365 token abuse and…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Global Security News, Government & Policy, malware, Network Security, Risk Management
Major Cyber Attacks in March 2026: OAuth Phishing, SVG Smuggling, Magecart, and More
March 2026 brought a wave of cyber attacks that reflected how quickly modern threats can move from subtle early signals to serious business impact. ANY.RUN analysts identified and explored several major threats this month, exposing phishing campaigns, stealthy malware, payment-skimming activity, and resilient botnet infrastructure affecting organizations across industries. From Microsoft 365 token abuse and…
AI, Apps, Global Security News
FBI warns against using Chinese mobile apps due to privacy risks
The U.S. Federal Bureau of Investigation (FBI) warned Americans against using foreign-developed mobile applications, particularly those created by Chinese developers. […]
AI, Apps, Global Security News, Risk Management
Asana’s chief product officer: Why enterprise AI agents should be ‘multiplayer by design’
As AI agents become more embedded in workplace tools, Asana is positioning its approach around collaboration rather than individual productivity. “We believe in AI being ‘multiplayer’ by design,” said chief product officer Arnab Bose. “The future of the agentic enterprise will only be realized if agents can work independently and with multiple people, versus just…
AI, Apps, Data Breaches, Endpoint, Global Security News, malware, Network Security, Risk Management
SentinelOne autonomous detection blocks trojaned LiteLLM triggered by Claude Code
SentinelOne AI stopped a LiteLLM supply chain attack in seconds, blocking malicious code automatically without human intervention. SentinelOne’s AI-based security detected and blocked a supply chain attack involving a compromised LiteLLM package. SentinelOne’s macOS agent detected and stopped a malicious process chain triggered by Claude Code after it unknowingly installed a compromised LiteLLM package. The…
AI, Apps, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Government & Policy, malware, Network Security
The Invisible Breach: How AI Agents Became the Most Dangerous Attack Surface of 2025–2026
The Attack That Requires No Click In June 2025, Microsoft patched a critical vulnerability in Microsoft 365 Copilot — one that its discoverers at Aim Security described as something that had never been seen before. A threat actor needed only to send a carefully crafted email to any employee within a target organization. No link.…
AI, Apps, Cloud Security, Data Breaches, Global Security News, malware
Attackers trojanize Axios HTTP library in highest-impact npm supply chain attack
Attackers compromised the npm account of the lead maintainer of Axios, a widely used JavaScript HTTP client library, and used it to publish malicious versions of the package that deployed a cross-platform remote access trojan on developer machines. The incident represents the highest-impact npm supply chain attack on record given Axios’ approximately 100 million weekly…
AI, Apps, Data Breaches, Exploits, Global Security News, malware, Network Security, Risk Management
Axios npm Attack Deploys Cross-Platform RAT
A brief compromise of the popular Axios npm package shows how quickly a trusted dependency can become a widespread threat. Attackers hijacked a maintainer account and published malicious versions that silently installed a remote access trojan (RAT) during routine package installs, putting developer environments and CI/CD pipelines at risk. “While traditional risks like manual dependency…
AI, Apps, Endpoint, Global Security News, Risk Management
CrowdStrike and HCLTech Expand Strategic Partnership with AI-Powered Continuous Threat Exposure Management Services
CrowdStrike and HCLTech today announced an expansion of their strategic partnership with the launch of Continuous Threat Exposure Management (CTEM) services. This joint offering enables continuous, intelligence-led identification, prioritization, and remediation of exposure across endpoints, cloud, identity, applications, and data, helping enterprises maintain an always-on view of exposure and address risk in a more structured and timely manner.
AI, Apps, Europe, Global Security News, Government & Policy, privacy, Russia
Euro-Office billed as Europe’s sovereign alternative to Microsoft Office
A group of European technology firms has launched a new open-source office suite aimed at offering a sovereign alternative to Microsoft Office. Euro-Office consists of four core applications — a document editor, spreadsheet program, presentation tool, and PDF editor — and is built on the open-source OnlyOffice suite. It supports Microsoft Office file formats DOCX,…
AI, Apps, Cybersecurity, Global Security News, Government & Policy
VRP 2025 Year in Review
Posted by Dirk Göhmann, Tony Mendez, and the Vulnerability Rewards Program Team 2025 marked a special year in the history of vulnerability rewards and bug bounty programs at Google: our 15th anniversary 🎉🎉🎉! Originally started in 2010, our vulnerability reward program (VRP) has seen constant additions and expansions over the past decade and a half,…
AI, Apps, Compliance, Endpoint, Europe, Exploits, Global Security News, Risk Management
AWS Security Agent on-demand penetration testing now generally available
AWS Security Agent on-demand penetration testing is now generally available, enabling you to run comprehensive security tests across all your applications, not only your most critical ones. This milestone transforms penetration testing from a periodic bottleneck into an on-demand capability that scales with your development velocity across AWS, Azure, GCP, other cloud-providers, and on-premises. With…
AI, Apps, Exploits, Global Security News, Government & Policy
TrueConf Zero-Day Exploited in Attacks on Southeast Asian Government Networks
A high-severity security flaw in the TrueConf client video conferencing software has been exploited in the wild as a zero-day as part of a campaign targeting government entities in Southeast Asia dubbed TrueChaos. The vulnerability in question is CVE-2026-3502 (CVSS score: 7.8), a lack of integrity check when fetching application update code, allowing an attacker…
AI, Apps, Global Security News
Beware of headlines touting impossible AI benefits, analysts warn
It’s no big deal, you’d think, that researchers have found a way to reduce the computing requirements for one of the many steps involved in training an AI model to help robots manipulate simple geometric objects. Yet such is the concern about the rising cost of powering data centers for AI applications that this one…
AI, Apps, Global Security News, Network Security
Codenotary AgentMon monitors agentic AI activity and behavior
Codenotary launched AgentMon, an enterprise-grade monitoring designed specifically for agentic networks, providing organizations with real-time visibility into the security, performance and cost of AI-driven agents operating across the enterprise. As adoption of AI accelerates, agentic systems, semi-autonomous software agents that act on behalf of users and applications, are becoming embedded across business operations. The market…
AI, Apps, Exploits, Global Security News, malware, Risk Management
New Bitdefender assessment helps organizations identify and eliminate hidden internal attack paths
Bitdefender has announced the Bitdefender Internal Attack Surface Assessment, a complimentary evaluation that helps organizations identify and reduce hidden internal cyber risks caused by unnecessary user access to applications, tools, and operating system utilities commonly exploited in attacks. The assessment provides organizations with a data-driven view of their internal attack surface and offers actionable guidance…
AI, Apps, Cybersecurity, Data Breaches, Endpoint, Global Security News, Network Security, Risk Management
CareCloud Incident Exposes Patient Data, Disrupts EHR Systems
An attack on healthcare IT provider CareCloud has exposed sensitive patient data and temporarily disrupted access to critical systems, highlighting ongoing risks facing digital healthcare infrastructure. We are “… continuing to investigate the nature and scope of the incident. The affected environment stores patient information, and the Company continues to assess whether, and the extent…
AI, Apps, china, Compliance, Cybersecurity, Europe, Exploits, Global Security News, Government & Policy, privacy, Risk Management
California to bar AI vendors that can’t prove bias safeguards
AI vendors selling to the California state government must prove they have safeguards against algorithmic bias, civil rights violations, and illegal content, or risk being barred from state contracts, under an executive order signed by Governor Gavin Newsom. The order directs the Department of General Services and the California Department of Technology to develop new…
AI, APAC, Apps, Compliance, Global Security News, Risk Management
SmartBear Doubles Down on AI Testing, Channel Services
SmartBear is expanding its AI-driven testing capabilities across its platform, positioning channel partners to capitalize on growing demand for quality assurance in AI-powered development environments. The updates, which span API testing, UI automation, and test management, reflect a broader shift in enterprise software development: as AI accelerates code creation, it is also introducing new risks…
AI, Apps, Global Security News
Silver Fox Expands Asia Cyber Campaign with AtlasCross RAT and Fake Domains
Chinese-speaking users are the target of an active campaign that uses typosquatted domains impersonating trusted software brands to deliver a previously undocumented remote access trojan named AtlasCross RAT. “The operation covers VPN clients, encrypted messengers, video conferencing tools, cryptocurrency trackers, and e-commerce applications, with eleven confirmed delivery domains impersonating
AI, Apps, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, Risk Management
Release Notes: Cross-Platform Threat Analysis with macOS, SSL Decryption, and 1,300+ New Detections
March was a packed month for ANY.RUN. We rolled out major product improvements that help security teams investigate phishing inside encrypted traffic, expand cross-platform analysis with macOS, and bring Windows Server into the sandbox workflow. At the same time, our detection team continued to strengthen threat coverage with new behavior signatures, Suricata rules, and fresh threat intelligence reports focused on active…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, malware, Risk Management
Release Notes: Cross-Platform Threat Analysis with macOS, SSL Decryption, and 1,300+ New Detections
March was a packed month for ANY.RUN. We rolled out major product improvements that help security teams investigate phishing inside encrypted traffic, expand cross-platform analysis with macOS, and bring Windows Server into the sandbox workflow. At the same time, our detection team continued to strengthen threat coverage with new behavior signatures, Suricata rules, and fresh threat intelligence reports focused on active…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, Risk Management
8 ways to bolster your security posture on the cheap
As every CISO knows, maintaining a strong cybersecurity posture is costly. What’s not so well known is that there are many ways cybersecurity can be enhanced with the help of relatively trivial investments. Simply by thinking creatively, a security leader can substantially boost enterprise protection at a minimal cost. Could your organization benefit from some…
AI, Apps, Compliance, Cybersecurity, Funding, Global Security News, Government & Policy, Risk Management, Venture
6 key takeaways from RSA Conference 2026
Writing a conference preview is an act of professional speculation. You read the agenda, map the schedule session density, and make your personal best call about where the intellectual energy will concentrate. From my perspective going in, RSA Conference 2026 outlined a defining tension for CISOs today: how to enable AI adoption fast enough to…
AI, Apps, Exploits, Global Security News, malware, Network Security
Application Control Bypass for Data Exfiltration, (Tue, Mar 31st)
In case of a cyber incident, most organizations fear more of data loss (via exfiltration) than regular data encryption because they have a good backup policy in place. If exfiltration happened, it means a total loss of control of the stolen data with all the consequences (PII, CC numbers, …). While performing a security assessment of a…
AI, Apps, Data Breaches, Global Security News, malware, Network Security
Qilin Ransomware allegedly breached chemical manufacturer giant Dow Inc
Qilin ransomware claims a breach of Dow Inc., listing it on its Tor leak site, but no proof of the hack has been released yet. Qilin Ransomware group allegedly breached the chemical manufacturing giant Dow Inc. The cybercrime group added the company to its Tor data leak site, but at this time, it has not…
AI, Apps, Cybersecurity, Endpoint, Europe, Exploits, Global Security News, privacy, Risk Management, Russia
Fortinet hit by another exploited cybersecurity flaw
Yet another critical flaw in a Fortinet product has come to light as attackers continue to target the company, this time by actively exploiting a critical SQL injection vulnerability in the cybersecurity company’s management server. The vulnerability, (CVE-2026-21643), allows unauthenticated threat actors to execute arbitrary code on unpatched systems via specifically-crafted HTTP requests. These low-complexity…
AI, Apps, Cybersecurity, Exploits, Global Security News, privacy, Risk Management
It’s a mystery … alleged unpatched Telegram zero-day allows device takeover, but Telegram denies
A critical Telegram flaw could allow zero-click remote code execution on devices, but Telegram denies it. Researcher Michael DePlante (@izobashi) of TrendAI Zero Day disclosed a new Telegram vulnerability through Zero Day Initiative (ZDI). The vulnerability, tracked as ZDI-CAN-30207 (CVSS score of 9.8) allows attackers to execute code on targeted devices without any user interaction.…
AI, Apps, Cybersecurity, Exploits, Global Security News, Risk Management
LangChain path traversal bug adds to input validation woes in AI pipelines
Security researchers are warning that applications using AI frameworks without proper safeguards can expose sensitive information in basic, yet critical, non-AI ways. According to a recent Cyera analysis, widely used AI orchestration tools, LangChain and LangGraph, are vulnerable to critical input validation flaws that could allow attackers to access sensitive enterprise data. In a recent…
AI, Apps, Cybersecurity, Data Breaches, Global Security News, Risk Management
CISO Spotlight: Dimitris Georgiou on Building Security that Serves People First
Dimitris Georgiou has been a self-professed computer geek since the early 80s. At university, he studied the convergence of educational technology with computer science as part of his psychology MA – finding, to his disbelief, that systems were perilously insecure. Since then, he’s always worked in and around cybersecurity. He’s had roles as a computer…
AI, Apps, Cloud Security, Compliance, Cybersecurity, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security, Risk Management
APIs are the new perimeter: Here’s how CISOs are securing them
Recent breaches suggest attackers are shifting beyond traditional endpoints to target application programming interfaces (APIs). But typical perimeter protections can completely miss this vector. “We used to talk about defense-in-depth and endpoint protection,” says Sean Murphy, CISO at BECU, a nationwide credit union. “That morphed into identity, and now the API is the new perimeter.”…
AI, Apps, Compliance, Endpoint, Exploits, Global Security News, malware, Network Security
Why Kubernetes controllers are the perfect backdoor
In my years securing cloud-native environments, I’ve noticed a recurring blind spot. We obsess over the “front doors” such as exposed dashboards, misconfigured RBAC, or unpatched container vulnerabilities. We harden the perimeter, but we often ignore the machinery humming inside. Sophisticated adversaries have moved beyond simple smash-and-grab tactics. They don’t just want to run a…
AI, Apps, Data Breaches, Endpoint, Exploits, Global Security News, malware, Network Security
Hackers Didn’t Hack the FBI Network — They Did Something Smarter
A threat operation attributed to actors aligned with Iran’s Ministry of Intelligence and Security (MOIS) has compromised the personal email account of FBI Director Kash Patel, exposing historical communications and personal data in a campaign that blends espionage, disruption, and information operations. The activity is being conducted under the “Handala Hack Team” persona, which serves…
AI, Apps, china, Cybersecurity, Data Breaches, Europe, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management, Russia
Security Affairs newsletter Round 569 by Pierluigi Paganini – INTERNATIONAL EDITION
A new round of the weekly Security Affairs newsletter has arrived! Every week, the best security articles from Security Affairs are free in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press. ShinyHunters claims the hack of the European Commission Iran-linked group Handala hacked FBI Director Kash Patel’s…
AI, Apps, Compliance, Data Breaches, Endpoint, Exploits, Global Security News, malware, Risk Management
A critical Windows security fix puts legacy hardware on borrowed time
Microsoft is finally blocking a long-since retired program that it said led to “abuse and credential theft,” yet remained widely trusted for years. Beginning in April, Redmond will remove trust for kernel drivers that haven’t been vetted through its Windows Hardware Compatibility Program (WHCP). The company is specifically targeting kernel drivers signed by the now…
AI, Apps, Cybersecurity, Exploits, Global Security News, Government & Policy, malware, Network Security, Risk Management
RSAC 2026: No easy fixes for expanding AI attack surface, but a coordinated response is emerging
SAN FRANCISCO — Forty-four thousand cybersecurity practitioners converged on Moscone Center this week with an urgent question: how do you secure a network when everything — the technology, the threats, the tools — is changing faster than anyone can govern it? Related: Feds pull back on collaboration Microsoft’s Vasu Jakkal set the scale on day…
AI, Apps, Cybersecurity, Data Breaches, Global Security News, malware, Network Security, Risk Management
LiteLLM Supply Chain Attack Exposes Credentials Across AI Ecosystems
A widely used AI development library was compromised in a recent supply chain attack, potentially exposing a large number of systems to risk. Malicious LiteLLM packages on PyPI were backdoored to quietly steal credentials, tokens, and sensitive infrastructure data from both development and production environments. “The LiteLLM compromise shows just how quickly supply chain attacks…
AI, Apps, Cloud Security, Cybersecurity, Data Breaches, Europe, Global Security News, Risk Management
European Commission data stolen in a cyberattack on the infrastructure hosting its web sites
The European Commission is continuing to investigate the theft of data from its cloud infrastructure earlier this week. On Thursday, the Commission revealed there had been an attack on its Europa.eu platform, offering few details, then, on Friday, security news site Bleeping Computer reported that the attack had involved the compromise of an account or…
AI, APAC, Apps, Compliance, Global Security News, Network Security
Nutanix Debuts New Agentic AI Solution
Nutanix, a hybrid multicloud computing company, recently launched a new agentic AI solution to help customers boost agentic AI adoption for business transformation. Nutanix brings AI factory enablement stack to market The full software stack, Nutanix Agentic AI, is designed to help infrastructure and platform teams build and operate AI factories, while providing shared access…
AI, Apps, Global Security News, privacy
Lloyds Bank reveals how IT bug exposed transaction data
Lloyds Banking Group has identified the glitch that led to some of its customers being able to see details of other customers’ transactions on March 12. It revealed the information in a letter to the UK Parliament’s Treasury Committee, setting out the details of the incident and how it has been handled. The issue arose…
AI, APAC, Apps, Compliance, Cybersecurity, Endpoint, Exploits, Global Security News, Government & Policy, Network Security, Risk Management, Russia
Security leaders say the next two years are going to be ‘insane’
SAN FRANCISCO — Every RSA Conference has its buzzwords. Cloud. Ransomware. Zero trust. Plastered across the 87-acre Moscone Center complex on every booth, banner and bar. This year was AI, with vendors pitching AI-powered solutions to every security problem imaginable. But 2026 stood out for a different reason: Industry leaders spent the conference warning about…
AI, Apps, Global Security News
One-third of help-desk tickets stop work, says study
Nearly one-third of all help-desk tickets handled by large organizations are work-stoppers, according to a study from help-desk automation company Fixify, which also found Tuesday to be the busiest day of the week for help desks. “Monday gets the reputation, but Tuesday gets the tickets,” it the study said. Around one in eight of the…
AI, Apps, Compliance, Data Breaches, Exploits, Global Security News, malware, Network Security, Risk Management
TeamPCP Supply Chain Campaign: Update 002 – Telnyx PyPI Compromise, Vect Ransomware Mass Affiliate Program, and First Named Victim Claim, (Fri, Mar 27th)
This is the second update to the TeamPCP supply chain campaign threat intelligence report, “When the Security Scanner Became the Weapon” (v3.0, March 25, 2026). Update 001 covered developments through March 26. This update covers developments from March 26-27, 2026. CRITICAL: Telnyx Python SDK Compromised on PyPI — New WAV Steganography TTP TeamPCP compromised the telnyx Python SDK (670,000+…
AI, Apps, Cloud Security, Global Security News, Network Security, Risk Management
RSAC 2026: How Zscaler Is Securing the AI Ecosystem
At RSAC 2026, I sat down with Adam Geller, Chief Product Officer at Zscaler, to talk about one of the biggest challenges facing security teams right now: how to secure AI without slowing it down. What struck me was how differently Zscaler is approaching the problem compared to many others in the space. Rethinking AI…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Exploits, Global Security News, Network Security, Risk Management, Russia
Critical Vulnerabilities, Insider Threats, and AI-Driven Cybercrime Define the Week
Major Threats & Vulnerabilities Zero-Day and Critical CVE Exploits Oracle’s emergency patch for CVE-2026-21992 addressed a critical remote code execution flaw in Identity Manager and Web Services Manager with a CVSS score of 9.8. The vulnerability could allow unauthenticated attackers to fully compromise systems. Administrators are urged to patch immediately despite no known active exploitation.…
AI, Apps, Cybersecurity, Endpoint, Exploits, Global Security News
Attackers exploit critical Langflow RCE within hours as CISA sounds alarm
Attackers have exploited a critical Langflow RCE within hours of disclosure, prompting the US Cybersecurity and Infrastructure Security Agency (CISA) to formally flag it for urgent remediation. The flaw, which allows running arbitrary code on vulnerable Langflow instances without >credentials, was weaponized within 20 hours of the open-source AI-pipeline tool disclosing it. According to a Sysdig report,…
AI, Apps, Compliance, Global Security News, Government & Policy, Risk Management
Anthropic wins reprieve against US DoD ban, buying time for contractors to assess AI supply chains
The Pentagon’s attempt to brand Anthropic a supply chain risk was “likely both contrary to law and arbitrary and capricious,” a US federal judge wrote in a ruling halting a ban on use of Anthropic’s products in defense contracts. In granting Anthropic a preliminary injunction against the ban, US District Judge Rita Lin of the…
AI, Apps, china, Global Security News
The ‘AI slop’ backlash kills Sora
OpenAI just killed Sora. That’s an amazing development. When the company rolled out the video-creation site, and later the app, reviewers called it a trailblazer because it combined video creations with sound effects, spoken dialog, and the ability for users to generate a specific character using a reference image and reuse them in multiple videos…
AI, Apps, Cybersecurity, Exploits, Global Security News
LangChain, LangGraph Flaws Expose Files, Secrets, Databases in Widely Used AI Frameworks
Cybersecurity researchers have disclosed three security vulnerabilities impacting LangChain and LangGraph that, if successfully exploited, could expose filesystem data, environment secrets, and conversation history. Both LangChain and LangGraph are open-source frameworks that are used to build applications powered by Large Language Models (LLMs). LangGraph is built on the foundations of
AI, Apps, china, Exploits, Global Security News, Government & Policy, malware, Network Security
China-linked Red Menshen APT deploys stealthy BPFDoor implants in telecom networks
China-linked Red Menshen APT group used stealthy BPFDoor implants in telecom networks to spy on government targets. Rapid7 Labs uncovered a China-linked threat group known as Red Menshen has been running a long-term espionage campaign by infiltrating telecom networks, mainly in the Middle East and Asia. Active since at least 2021, the group uses highly…
AI, Apps, Compliance, Cybersecurity, Europe, Global Security News, privacy, Risk Management
European Parliament delays implementation of parts of the EU AI Act
The European Parliament’s Thursday vote to delay parts of the EU AI Act adds more uncertainty to the already chaotic AI compliance universe. But analysts say that CIOs must proceed as though the compliance rules are in effect. In a statement, Parliament said that its members decided to “delay the application of certain rules on…
AI, APAC, Apps, Compliance, Cybersecurity, Global Security News, Risk Management
Preparing for agentic AI: A financial services approach
Deploying agentic AI in financial services requires additional security controls that address AI-specific risks. This post walks you through comprehensive observability and fine-grained access controls—two critical capabilities for maintaining explainability and accountability in AI systems. You will learn seven design principles and get implementation guidance for meeting regulatory requirements while deploying secure AI solutions. Financial…
AI, Apps, Compliance, Data Security, Global Security News, Government & Policy, Network Security, Risk Management
RSAC 2026: AI Security Tools Aim to Cut Response Time
Security vendors at RSAC 2026 are zeroing in on one core problem: investigation speed. Across the show floor, new AI-powered tools promise to cut threat response times from hours to seconds while helping overwhelmed security teams keep pace with rising alert volumes. From autonomous investigation agents to platforms designed to secure enterprise AI systems, this…
AI, Apps, Global Security News
Enterprise laptops adopt Intel’s new Core Ultra Series 3 chips
Intel’s Core Ultra Series 3 processors with Intel vPro, built for business PCs, are off to a fast start, already powering more than 125 designs including newly-announced systems from Dell and HP, the company said. Unveiled this week at an event in New York City, the Core Ultra Series 3 with Intel vPro brings what…
AI, Apps, Global Security News, Risk Management
Keepit: Outages Fail to Drive Recovery Testing Gains
High-profile global outages aren’t changing how organizations prepare for disruption, according to new research from Keepit. The company’s 2026 Annual Data Report finds that even widely publicized cloud and security incidents have not led to increased recovery testing, exposing a persistent gap between risk awareness and operational readiness, especially among SMBs. Major outages fail to…
AI, Apps, Endpoint, Global Security News, Risk Management
Active Directory Risks Reshaping M365 Migrations for MSPs
As Microsoft 365 migrations accelerate, many IT teams and MSPs are discovering that identity, not productivity workloads, is the biggest source of risk. While email and collaboration tools are often straightforward to move, Active Directory environments introduce hidden complexity that can disrupt users, security, and access if handled incorrectly. In this Q&A, BitTitan’s Aaron Wadsworth…
AI, Apps, Global Security News, Network Security
How Networking is Evolving to Support AI and Real-Time Operations
Networking will play a more strategic role in enabling real-time digital operations and supporting the next generation of AI-powered applications. The post How Networking is Evolving to Support AI and Real-Time Operations appeared first on RTInsights.
AI, Apps, Compliance, Cybersecurity, Data Breaches, Global Security News, malware, Network Security, Risk Management
Active Magecart Campaign Targets Spain, Steals Card Data via Hijacked eStores for Bank Fraud
A large-scale magecart operation remained active for over 24 months, leveraging an infrastructure of 100+ domains. While the targeted victims are e-commerce websites, the actual pressure falls on banks and payment systems. As ANY.RUN’s analysis shows, threat actors applied multi-step checkout hijacking, payment page mimicry, and WebSocket-based exfiltration of card data. This report provides both executive-level insights and technical analysis of the campaign. Key Takeaways The campaign demonstrates long-term persistence…
AI, Apps, Compliance, Cybersecurity, Data Breaches, Global Security News, malware, Network Security, Risk Management
Global Magecart Campaign Puts Banks Under Pressure, Leveraging Redsys Payment Mimicry and Hijacking
A large-scale magecart operation remained active for over 24 months, leveraging an infrastructure of 100+ domains. While the targeted victims are e-commerce websites, the actual pressure falls on banks and payment systems. As ANY.RUN’s analysis shows, threat actors applied multi-step checkout hijacking, payment page mimicry, and WebSocket-based exfiltration of card data. This report provides both executive-level insights and technical analysis of the campaign. Key Takeaways The campaign demonstrates long-term persistence…
AI, Apps, Global Security News
Google targets AI inference bottlenecks with TurboQuant
Google says its new TurboQuant method could improve how efficiently AI models run by compressing the key-value cache used in LLM inference and supporting more efficient vector search. In tests on Gemma and Mistral models, the company reported significant memory savings and faster runtime with no measurable accuracy loss, including a 6x reduction in memory…
AI, Apps, china, Endpoint, Europe, Exploits, Global Security News, Network Security
New critical Citrix NetScaler hole of similar severity to CitrixBleed2, says expert
A new critical vulnerability that is similar to the widely-exploited CitrixBleed and CitrixBleed2 holes should be patched in NetScaler devices immediately, say experts. The hole, CVE-2026-3055, is an out-of-bounds read vulnerability in customer-managed NetScaler ADC and NetScaler Gateway devices configured as SAML IDP for approving identity and authentication. It’s rated at 9.3 in severity on…
AI, Apps, Compliance, Cybersecurity, Global Security News, Risk Management
Video: SecurityBridge CEO on SAP Security, AI Risks & 2026 Priorities
In this Channel Insider Partner POV interview, host Katie Bavoso sits down with Jesper Zerlang, CEO of SecurityBridge, to discuss SAP cybersecurity, AI-driven threats like data poisoning, and why channel-first strategies will define partner growth in 2026. Zerlang shares insights on securing mission-critical SAP environments, evolving compliance challenges for CISOs and CIOs, and how partners…
AI, Apps, china, Compliance, Cybersecurity, Europe, Global Security News, Government & Policy, Network Security, Politics, privacy, Risk Management
MY YAKE: A decade of cyber collaboration, built under Obama, is now hostage to a political grudge
SAN FRANCISCO — I was in the room at Stanford in February 2015 when President Obama used the bully pulpit to launch what became a decade of hard-won public-private collaboration in cybersecurity. It didn’t take much to tear it asunder. At RSAC 2026 this week, that decade of work is suddenly on the line —…
AI, Apps, Global Security News
Vorlon adds forensics and response to secure AI agents
Vorlon has unveiled AI Agent Flight Recorder and AI Agent Action Center, adding forensics and coordinated response to secure enterprise agentic ecosystems and close a key security gap. The agentic ecosystem contains SaaS applications, AI agents, API integrations, non-human identities, and the sensitive data flows connecting them. It’s become the fastest-growing attack surface in the…