Collecting Cyber-News from over 60 sources

Tag: network

Palo Alto Networks Targets AI Agent Gateway With Portkey Buy

May 3, 2026 10:50 AM

Tags: access, ai, communications, control, governance, identity, network, risk, startup

Startup Acquisition Adds Centralized Policy Control Over Agent Communications. Palo Alto Networks plans to acquire Portkey to centralize AI agent communications through a gateway that enforces runtime security, identity controls and governance, addressing rising risks from autonomous agents with broad system access and fragmented enterprise visibility. First seen on govinfosecurity.com Jump to article: www.govinfosecurity.com/palo-alto-networks-targets-ai-agent-gateway-portkey-buy-a-31574
US government, allies publish guidance on how to safely deploy AI agents

May 1, 2026 7:38 PM

Tags: access, ai, government, infrastructure, network

The guidance warns that agents capable of taking real-world actions on networks are already inside critical infrastructure, and most organizations are granting them far more access than they can safely monitor or control. First seen on cyberscoop.com Jump to article: cyberscoop.com/cisa-nsa-five-eyes-guidance-secure-deployment-ai-agents/
Bridewell Joins Global Incident Response Network FIRST as Full Member

May 1, 2026 4:39 PM

Tags: cyber, incident response, infrastructure, network, service

Bridewell has been accepted as a full member of the Forum of Incident Response and Security Teams (FIRST), marking a significant milestone in the company’s incident response maturity and global collaboration capabilities. The UK-based cyber security services provider, which specialises in supporting critical national infrastructure (CNI) organisations, secured membership following a rigorous, peer-led vetting process…
Palo Alto Networks To Acquire AI Gateway Startup Portkey

May 1, 2026 3:41 PM

Tags: ai, network, startup

Palo Alto Networks announced Thursday it has reached a deal to acquire Portkey, a startup offering an “AI gateway” for management and protection of autonomous agents. First seen on crn.com Jump to article: www.crn.com/news/security/2026/palo-alto-networks-to-acquire-ai-gateway-startup-portkey
Just 34% of cyber pros plan to stick with their current employer

May 1, 2026 11:39 AM

Tags: ciso, conference, cyber, cybersecurity, finance, jobs, network, skills, strategy, threat, tool

Skills development: Richard Demeny, founder and CTO at Canary Wharfian, an online finance career platform, says that graduates and early professionals know they are calling the shots because even at the entry level talent is scarce.”[New entrants] are prioritizing opportunity and learnings, as pay is pretty much standard across the board, except for maybe high-finance…
Multiple Wireshark Vulnerabilities Allow Arbitrary Code Execution via Malformed Packets

May 1, 2026 10:39 AM

Tags: ai, cyber, flaw, network, risk, update, vulnerability

The Wireshark Foundation has released version 4.6.5 of its widely used network protocol analyzer, addressing a massive wave of security vulnerabilities. This urgent update patches over 40 distinct security flaws, driven by a recent surge in AI-assisted vulnerability reports. The most critical bugs in this release allow for possible arbitrary code execution, elevating the risk…
Networks of Browser Extensions Are Spyware in Disguise

May 1, 2026 9:39 AM

Tags: ai, attack, corporate, data, governance, intelligence, leak, network, privacy, saas, spyware

Modern browser extensions and ad blockers are legally collecting and reselling user data, including streaming habits and B2B sales intelligence, under the guise of “analytics.” This unregulated “legal spyware” creates massive security gaps as employees unwittingly leak corporate URLs, SaaS dashboards, and research activity to third-party databases. With the rise of AI-native browsers and personal…
Malicious PyTorch Lightning Packages Found on PyPI

May 1, 2026 5:39 AM

Tags: attack, best-practice, breach, cloud, control, credentials, data, data-breach, detection, endpoint, exploit, github, infrastructure, malicious, malware, network, open-source, pypi, risk, service, supply-chain, threat, tool, unauthorized, update

<div cla TL;DR Two malicious versions of the popular PyTorch Lightning package have been uploaded to PyPI following the publisher account’s compromise. Lightning versions 2.6.2 and 2.6.3 (tracked as sonatype-2026-002817) were published on April 30, 2026, containing embedded malicious code that gathers developer credentials and publishes infected package versions. If downloaded, these malicious versions have likely…
Breach Roundup: US Cyber Command Flags Election Threats

May 1, 2026 12:39 AM

Tags: ai, breach, china, cyber, disinformation, election, exploit, flaw, framework, hacker, network, rce, remote-code-execution, threat, windows

Also, HexDex Arrest, Black Axe Crackdown, LeRobot RCE Flaw. This week, election threats resurfaced. A prolific hacker arrested. Black Axe network disrupted. China-linked disinformation targets Tibet. Exploited ScreenConnect and Windows flaws raise alarms. Minecraft gamers hit with stealer malware. A critical AI framework bug enables remote code execution. First seen on govinfosecurity.com Jump to article:…
Cryptohack Roundup: North Korea Steals Bulk of Crypto So Far

Apr 30, 2026 8:38 PM

Tags: crypto, fraud, korea, network, north-korea, scam

Also: Cartier Heir Imprisoned, Believe Founder Benjamin Pasternak Arrested. This week, North Korea hacks, Cartier heir jailed, Believe founder arrested, Cambodia scam network sanctioned. A U.S. Army soldier’s insider bet, Litecoin, sentences in laundering and romance fraud cases, France probed crypto kidnapping. Tennessee banned crypto ATMs, Kelp DAO and Alex Mashinsky. First seen on govinfosecurity.com…
US agencies promote zero-trust practices for operational technology networks

Apr 30, 2026 6:38 PM

Tags: business, defense, network, technology, zero-trust

Many zero-trust defenses work differently in industrial environments than in traditional business networks, five federal agencies said in newly published guidance. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/zero-trust-operational-technology-us-guidance/818950/
Anti-DDoS Firm Heaped Attacks on Brazilian ISPs

Apr 30, 2026 5:39 PM

Tags: attack, botnet, breach, ddos, malicious, network, service

A Brazilian tech firm that specializes in protecting networks from distributed denial-of-service (DDoS) attacks has been enabling a botnet responsible for an extended campaign of massive DDoS attacks against other network operators in Brazil, KrebsOnSecurity has learned. The firm’s chief executive says the malicious activity resulted from a security breach and was likely the work…
Dismantle implicit trust in OT networks, CISA tells critical infrastructure operators

Apr 30, 2026 2:40 PM

Tags: access, ai, cisa, communications, control, data-breach, detection, firewall, guide, infrastructure, network, open-source, siem, tactics, tool, vpn, zero-trust

What it means for security teams: The publication closes a gap that CISA’s Zero Trust Maturity Model 2.0 acknowledged, having stated it did not address challenges specific to operational technology. It follows February’s Barriers to Secure OT Communications and earlier CISA warnings that exposed VPNs, firewalls, and legacy edge devices remain the dominant entry points…
Researchers develop tool to expose GPS signal spoofing in transit networks

Apr 30, 2026 12:39 PM

Tags: network, tool

The Oak Ridge National Laboratory (ORNL) has developed a portable detector that identifies GPS spoofing in real time, including during motion, to help protect transportation … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/30/ornl-transportation-gps-spoofing-detector/
Stopping the quiet drift toward excessive agency with re-permissioning

Apr 30, 2026 11:38 AM

Tags: access, ai, api, attack, ciso, control, data, finance, framework, injection, least-privilege, network, risk, risk-management, service, supply-chain, tool, unauthorized, update

Excessive agency directly proportional to over-permissioning: Organizations are worried about the level of autonomy AI introduces into their operational framework. Nearly three-quarters of organizations say agents often receive more access than necessary. It’s this excessive agency that needs to be reined in.In practice, unchecked autonomy within a particular workflow means the agent can access systems…
Researchers unearth industrial sabotage malware that predated Stuxnet by 5 years

Apr 30, 2026 5:39 AM

Tags: access, apt, attack, china, computing, cyber, defense, espionage, exploit, framework, group, iran, leak, malicious, malware, network, open-source, programming, service, software, stuxnet, threat, tool, update, windows

fast16.sys, is briefly mentioned in the 2017 Shadow Brokers leak of documents covering exploits and tools used by US National Security Agency cyber teams.”This 2005 attack is a harbinger for sabotage operations targeting ultra expensive high-precision computing workloads of national importance like advanced physics, cryptographic, and nuclear research workloads,” the SentinelOne researchers said in their…
FBI-Backed Takedown Hits Crypto Scam Centers

Apr 30, 2026 12:39 AM

Tags: crypto, fraud, international, law, middle-east, network, scam

Federal Charges Target Recruiters, Managers in Scam Centers After Global Takedown. U.S. and international law enforcement agencies dismantled a network of overseas scam centers linked to cryptocurrency investment fraud schemes, officials said Wednesday, arresting at least 276 individuals in a crackdown across the Middle East and Southeast Asia. First seen on govinfosecurity.com Jump to article:…
Swiss police arrest 10 suspected members of Nigeria-linked crime group Black Axe

Apr 29, 2026 4:39 PM

Tags: crime, group, law, network

Swiss and German law enforcement have arrested 10 suspected members of the Nigerian criminal network Black Axe, including a regional leader believed to oversee operations in Southern Europe. First seen on therecord.media Jump to article: therecord.media/black-axe-switzerland-germany-cyber
Checkliste von Zero Networks – 5 wichtige Schritte für die NIS-2-Compliance

Apr 29, 2026 4:39 PM

Tags: compliance, network, nis-2

First seen on security-insider.de Jump to article: www.security-insider.de/nis-2-compliance-5-fragen-cisos-checkliste-a-8d4e1ff5532e89c46a320b65ba26485a/
ISOP Traffic Forensics

Apr 29, 2026 1:39 PM

Tags: business, network, security-incident

When a customer business system experiences a security incident, they often need to conduct forensic analysis on historical network traffic to identify the source of the intrusion and reconstruct the entire incident for targeted emergency response. In scenarios where customers have such traffic-analysis requirements, we can leverage the traffic forensics capabilities of the ISOP platform……
AI Usage Monitoring: How to See Everything Your Employees Are Doing with AI FireTail Blog

Apr 29, 2026 12:41 PM

Tags: access, ai, ciso, compliance, control, data, detection, GDPR, guide, login, monitoring, network, regulation, risk, tool

Apr 29, 2026 – Lina Romero – What is AI usage monitoring? AI usage monitoring is the practice of logging, tracking, and analysing how employees and systems interact with AI tools, both sanctioned and unsanctioned. FireTail provides centralised AI activity logging that gives security teams a real-time view of AI usage across the entire organisation.…
7 Best Network Security Tools to Use in 2026

Apr 29, 2026 12:39 AM

Tags: network, tool

Compare the best enterprise network security solutions for 2026 now. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/products/best-network-security-tools/
6 Best Intrusion Detection Prevention Systems in 2026

Apr 29, 2026 12:39 AM

Tags: detection, network, threat, tool

IDPS tools monitor network traffic, detect threats, and help teams respond effectively. Learn about the top IDPS solutions in 2026. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/products/intrusion-detection-and-prevention-systems/
Federal CIO cautious on Anthropic’s Mythos despite planned rollout

Apr 28, 2026 11:39 PM

Tags: cio, cyber, defense, network

Greg Barbaccia told CyberScoop that Anthropic’s Mythos shows real promise for federal cyber defense, but warns that laboratory results and live network conditions are two very different things. First seen on cyberscoop.com Jump to article: cyberscoop.com/anthropic-mythos-federal-cybersecurity-evaluation-greg-barbaccia/
Beyond the perimeter: Why identity and cyber security are one single story

Apr 28, 2026 11:39 AM

Tags: access, authentication, cyber, identity, monitoring, network, threat

By James Odom, Director of Cyber, and Jim Small, Director of Identity at Hippo Digital For years, identity and cyber security have been treated as separate disciplines, with identity focusing on authentication, onboarding and access and cyber security focusing on networks, monitoring and threat response. That separation made sense when systems had clearer boundaries. The…
Wireless Network Security: WEP, WPA, WPA2 WPA3 Explained in 2026

Apr 28, 2026 12:38 AM

Tags: attack, network, service

Wireless security is important for protecting wireless networks and services from unwanted attacks in 2026. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/trends/the-best-security-for-wireless-networks/
Disinformation campaign targeted Tibetan parliamentexile elections

Apr 27, 2026 6:39 PM

Tags: disinformation, election, network

The operation, identified by the Digital Forensic Research Lab (DFRLab), was part of Spamouflage, a long-running influence network linked to Beijing. First seen on therecord.media Jump to article: therecord.media/disinformation-campaign-targeted-tibetan-elections
US Sanctions Target Cambodian Scam Network Leaders

Apr 27, 2026 5:39 PM

Tags: crypto, fraud, network, scam

US sanctions target Cambodian scam networks tied to crypto fraud and trafficking First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/us-sanctions-cambodian-scam-network/
Hackers impersonate Microsoft Teams help desk to breach corporate networks

Apr 27, 2026 4:39 PM

Tags: breach, corporate, data, hacker, malware, microsoft, network

Hackers are impersonating Microsoft Teams help desk workers to trick victims into installing data-stealing malware, researchers found. First seen on therecord.media Jump to article: therecord.media/microsoft-teams-hackers-mandiant
Hackers impersonate Microsoft Teams help desk to breach corporate networks

Apr 27, 2026 4:39 PM

Tags: breach, corporate, data, hacker, malware, microsoft, network

Hackers are impersonating Microsoft Teams help desk workers to trick victims into installing data-stealing malware, researchers found. First seen on therecord.media Jump to article: therecord.media/microsoft-teams-hackers-mandiant