Collecting Cyber-News from over 60 sources

Tag: vulnerability

Anthropic’s new AI model finds and exploits zero-days across every major OS and browser

Apr 8, 2026 6:51 AM

Tags: ai, exploit, tool, vulnerability, zero-day

Automated vulnerability discovery tools have existed for decades, and the gap between finding a bug and building a working exploit has always slowed attackers. That gap is now … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/08/anthropic-claude-mythos-preview-identify-vulnerabilities/
What Anthropic Glasswing reveals about the future of vulnerability discovery

Apr 8, 2026 5:52 AM

Tags: access, ai, apache, api, business, cisco, cloud, control, cyber, defense, google, Internet, malicious, microsoft, network, open-source, risk, software, threat, tool, vulnerability, vulnerability-management

From backlog management to exposure-window risk: The issue, as Williams frames it, is not simply how many vulnerabilities exist, but how they are managed. “Mythos makes one thing painfully clear,” he says. “This is not a prioritization problem. It’s an exposure-window problem.”Traditional vulnerability management has been built around prioritization, ranking issues by severity, exploitability, and…
How adaptable are Agentic AIs to changing regulations

Apr 8, 2026 1:54 AM

Tags: ai, cloud, cybersecurity, framework, password, regulation, vulnerability

How Do Non-Human Identities Influence Cybersecurity Frameworks? What role do Non-Human Identities (NHIs) play in shaping the cybersecurity framework necessary for secure cloud environments? With technological evolve, NHIs”, comprising machine identities such as encrypted passwords, tokens, and keys”, serve as both critical assets and potential vulnerabilities that cybersecurity professionals must diligently manage. Their management is…
Hackers exploit critical flaw in Ninja Forms WordPress plugin

Apr 8, 2026 12:51 AM

Tags: authentication, exploit, flaw, hacker, vulnerability, wordpress

A critical vulnerability in the Ninja Forms File Uploads premium add-on for WordPress allows uploading arbitrary files without authentication, which can lead to remote code execution. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/hackers-exploit-critical-flaw-in-ninja-forms-wordpress-plugin/
Attackers exploit critical Flowise flaw CVE-2025-59528 for remote code execution

Apr 7, 2026 11:54 PM

Tags: access, cve, exploit, flaw, malicious, remote-code-execution, vulnerability

Attackers are exploiting a critical Flowise flaw, tracked as CVE-2025-59528 (CVSS score of 10), that lets them run malicious code and access systems due to poor validation of user-supplied JavaScript. Attackers are actively exploiting a critical vulnerability in Flowise, tracked as CVE-2025-59528, that allows remote code execution and file system access. The flaw stems from improper validation…
Storm-1175 Deploys Medusa Ransomware at ‘High Velocity’

Apr 7, 2026 11:54 PM

Tags: cybercrime, exploit, group, microsoft, ransomware, vulnerability, zero-day

Microsoft says the financially motivated cybercrime group has exploited N-day and zero-day vulnerabilities in campaigns predicated on speed. First seen on darkreading.com Jump to article: www.darkreading.com/threat-intelligence/storm-1175-medusa-ransomware-high-velocity
5 ways to strengthen identity security and improve attack resilience

Apr 7, 2026 9:54 PM

Tags: access, ai, api, attack, authentication, automation, cloud, control, corporate, credentials, data, detection, endpoint, identity, infrastructure, least-privilege, login, mfa, microsoft, monitoring, msp, network, password, phishing, ransomware, resilience, risk, service, soc, tactics, threat, unauthorized, update, vulnerability, zero-trust

Admin accountsMSP technician accountsCloud infrastructure accountsExternal-facing applicationsRemote access toolsAny MFA deployment is better than none, but phishing-resistant methods offer the strongest protection. Once privileged accounts are enforced, expand MFA to all users over the next 30 days. Doing so reduces the likelihood that compromised credentials lead directly to unauthorized access. 2. Implement privileged access management…
Russian cyber spies targeting consumer, Soho routers

Apr 7, 2026 9:54 PM

Tags: cyber, espionage, microsoft, network, router, russia, vulnerability

The UK’s NCSC and Microsoft have shared details of an ongoing cyber espionage campaign targeting vulnerable network routers, orchestrated by the Russian state actor Fancy Bear. First seen on computerweekly.com Jump to article: www.computerweekly.com/news/366641403/Russian-cyber-spies-targeting-consumer-Soho-routers
Cybersecurity in the Age of Instant Software

Apr 7, 2026 9:54 PM

Tags: ai, cybersecurity, software, update, vulnerability

AI is rapidly changing how software is written, deployed, and used. Trends point to a future where AIs can write custom software quickly and easily: “instant software.” Taken to an extreme, it might become easier for a user to have an AI write an application on demand”, a spreadsheet, for example”, and delete it when…
5 practical steps to strengthen attack resilience with attack surface management

Apr 7, 2026 9:54 PM

Tags: access, api, attack, authentication, automation, backup, breach, business, cloud, container, control, credentials, cvss, cyber, cybersecurity, data, data-breach, detection, dns, email, endpoint, exploit, framework, government, identity, iot, malicious, monitoring, msp, network, nist, phishing, ransomware, resilience, risk, service, social-engineering, software, threat, tool, update, vpn, vulnerability, vulnerability-management, windows

What can attackers actually reach right now? By continuously identifying and prioritizing exposure across your environment, ASM transforms raw visibility into measurable cyber resilience.Below are five practical steps security teams can take to strengthen attack resilience using attack surface management principles. Effective attack surface management starts with complete visibility. Security gaps often appear because teams…
5 practical steps to strengthen attack resilience with attack surface management

Apr 7, 2026 9:54 PM

Tags: access, api, attack, authentication, automation, backup, breach, business, cloud, container, control, credentials, cvss, cyber, cybersecurity, data, data-breach, detection, dns, email, endpoint, exploit, framework, government, identity, iot, malicious, monitoring, msp, network, nist, phishing, ransomware, resilience, risk, service, social-engineering, software, threat, tool, update, vpn, vulnerability, vulnerability-management, windows

What can attackers actually reach right now? By continuously identifying and prioritizing exposure across your environment, ASM transforms raw visibility into measurable cyber resilience.Below are five practical steps security teams can take to strengthen attack resilience using attack surface management principles. Effective attack surface management starts with complete visibility. Security gaps often appear because teams…
5 practical steps to strengthen attack resilience with attack surface management

Apr 7, 2026 9:54 PM

Tags: access, api, attack, authentication, automation, backup, breach, business, cloud, container, control, credentials, cvss, cyber, cybersecurity, data, data-breach, detection, dns, email, endpoint, exploit, framework, government, identity, iot, malicious, monitoring, msp, network, nist, phishing, ransomware, resilience, risk, service, social-engineering, software, threat, tool, update, vpn, vulnerability, vulnerability-management, windows

What can attackers actually reach right now? By continuously identifying and prioritizing exposure across your environment, ASM transforms raw visibility into measurable cyber resilience.Below are five practical steps security teams can take to strengthen attack resilience using attack surface management principles. Effective attack surface management starts with complete visibility. Security gaps often appear because teams…
5 steps to strengthen supply chain security and improve cyber resilience

Apr 7, 2026 9:54 PM

Tags: access, api, attack, authentication, automation, backup, breach, business, cloud, control, credentials, cyber, data, defense, detection, dns, edr, email, endpoint, exploit, framework, governance, identity, infrastructure, mfa, monitoring, msp, network, radius, resilience, risk, saas, service, siem, soc, software, strategy, supply-chain, threat, tool, update, vulnerability, zero-trust

All software vendors and SaaS platformsOpen”‘source components embedded in your applicationsMSP or IT service providersCloud infrastructure and authentication servicesAPI integrations and automation workflowsOnce documented, classify each supplier by the impact they would have if compromised. A remote monitoring tool or authentication platform represents far greater risk than a basic productivity app. This prioritization helps you…
5 steps to strengthen supply chain security and improve cyber resilience

Apr 7, 2026 9:54 PM

Tags: access, api, attack, authentication, automation, backup, breach, business, cloud, control, credentials, cyber, data, defense, detection, dns, edr, email, endpoint, exploit, framework, governance, identity, infrastructure, mfa, monitoring, msp, network, radius, resilience, risk, saas, service, siem, soc, software, strategy, supply-chain, threat, tool, update, vulnerability, zero-trust

All software vendors and SaaS platformsOpen”‘source components embedded in your applicationsMSP or IT service providersCloud infrastructure and authentication servicesAPI integrations and automation workflowsOnce documented, classify each supplier by the impact they would have if compromised. A remote monitoring tool or authentication platform represents far greater risk than a basic productivity app. This prioritization helps you…
5 ways to strengthen identity security and improve attack resilience

Apr 7, 2026 9:54 PM

Tags: access, ai, api, attack, authentication, automation, cloud, control, corporate, credentials, data, detection, endpoint, identity, infrastructure, least-privilege, login, mfa, microsoft, monitoring, msp, network, password, phishing, ransomware, resilience, risk, service, soc, tactics, threat, unauthorized, update, vulnerability, zero-trust

Admin accountsMSP technician accountsCloud infrastructure accountsExternal-facing applicationsRemote access toolsAny MFA deployment is better than none, but phishing-resistant methods offer the strongest protection. Once privileged accounts are enforced, expand MFA to all users over the next 30 days. Doing so reduces the likelihood that compromised credentials lead directly to unauthorized access. 2. Implement privileged access management…
CISA’s vulnerability scans, field support on chopping block in Trump budget

Apr 7, 2026 8:52 PM

Tags: cisa, vulnerability

The president is proposing to shrink the agency by nearly 900 positions. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/cisa-trump-budget-fy2027-details/816855/
CISA’s vulnerability scans, field support on chopping block in Trump budget

Apr 7, 2026 8:52 PM

Tags: cisa, vulnerability

The president is proposing to shrink the agency by nearly 900 positions. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/cisa-trump-budget-fy2027-details/816855/
CISA’s vulnerability scans, field support on chopping block in Trump budget

Apr 7, 2026 8:52 PM

Tags: cisa, vulnerability

The president is proposing to shrink the agency by nearly 900 positions. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/cisa-trump-budget-fy2027-details/816855/
Tech giants launch AI-powered ‘Project Glasswing’ to identify critical software vulnerabilities

Apr 7, 2026 8:52 PM

Tags: ai, software, vulnerability

The program comes as the tech industry races to secure software before similar AI-powered offensive capabilities become too much for defenders to handle. First seen on cyberscoop.com Jump to article: cyberscoop.com/project-glasswing-anthropic-ai-open-source-software-vulnerabilities/
NomShub Vulnerability Chain Exposes Hidden Risks in AI Coding Tools

Apr 7, 2026 8:52 PM

Tags: ai, exploit, risk, tool, vulnerability

NomShub shows how attackers can exploit AI coding tools to turn routine actions into full system compromise. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/threats/nomshub-vulnerability-chain-exposes-hidden-risks-in-ai-coding-tools/
Max severity Flowise RCE vulnerability now exploited in attacks

Apr 7, 2026 7:51 PM

Tags: attack, cve, exploit, hacker, LLM, open-source, rce, remote-code-execution, vulnerability

Hackers are exploiting a maximum-severity vulnerability, tracked as CVE-2025-59528, in the open-source platform Flowise for building custom LLM apps and agentic systems to execute arbitrary code. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/max-severity-flowise-rce-vulnerability-now-exploited-in-attacks/
GrafanaGhost Vulnerability Allows Data Theft via AI Injection

Apr 7, 2026 6:51 PM

Tags: ai, data, injection, theft, vulnerability

GrafanaGhost is a critical vulnerability in Grafana’s AI components that uses indirect prompt injection and protocol-relative URL bypasses to exfiltrate data. First seen on hackread.com Jump to article: hackread.com/grafanaghost-vulnerability-data-theft-via-ai-injection/
Russian hackers hijack internet traffic using vulnerable routers

Apr 7, 2026 6:51 PM

Tags: cyber, group, hacker, Internet, router, russia, spy, vulnerability

The Russian state cyber group APT28 has been compromising routers to hijack web traffic and spy on victims, the UK’s The National Cyber Security Centre (NCSC) has warned. … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/07/russian-hackers-router-hijacking-dns-credential-theft/
Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access

Apr 7, 2026 6:51 PM

Tags: access, cve, docker, vulnerability

A high-severity security vulnerability has been disclosed in Docker Engine that could permit an attacker to bypass authorization plugins (AuthZ) under specific circumstances.The vulnerability, tracked as CVE-2026-34040 (CVSS score: 8.8), stems from an incomplete fix for CVE-2024-41110, a maximum-severity vulnerability in the same component that came to light in July 2024.” First seen on thehackernews.com…
React2Shell vulnerability helps hackers steal credentials, AI platform keys and other sensitive data

Apr 7, 2026 5:51 PM

Tags: ai, attack, breach, cisco, credentials, data, hacker, vulnerability

The stolen information could help the hackers plan follow-up attacks and breach more organizations, Cisco researchers said. First seen on cybersecuritydive.com Jump to article: www.cybersecuritydive.com/news/credential-harvesting-campaign-react2shell-cisco/816726/
Fast-moving Storm-1175 uses new exploits to breach networks and drop Medusa

Apr 7, 2026 4:53 PM

Tags: access, attack, breach, china, data, data-breach, exploit, flaw, group, network, ransomware, theft, update, vulnerability

China-based actor Storm-1175 runs fast ransomware attacks, exploiting new flaws to breach systems and quickly deploy Medusa ransomware. China-based actor Storm-1175 carries out fast, financially driven ransomware attacks by exploiting newly disclosed vulnerabilities before organizations patch them. The group targets exposed systems and quickly moves from initial access to data theft and Medusa ransomware deployment,…
CUPS Vulnerabilities Could Allow Remote Attackers to Achieve Root-Level Code Execution

Apr 7, 2026 3:52 PM

Tags: access, ai, cyber, flaw, linux, remote-code-execution, vulnerability

A team of AI-driven vulnerability hunting agents directed by security researcher Asim Viladi Oglu Manizada has discovered two critical security flaws in CUPS, the standard printing system for Linux and Unix-like operating systems. When chained together, these vulnerabilities allow an unauthenticated remote attacker to gain unprivileged remote code execution and eventually escalate their access to…
Windmill Developer Platform Flaws Expose Users to RCE Attacks, ProofConcept Published

Apr 7, 2026 3:52 PM

Tags: attack, breach, control, cyber, cybersecurity, data, flaw, network, rce, remote-code-execution, update, vulnerability

Cybersecurity researchers have discovered critical vulnerabilities in the Windmill developer platform and Nextcloud Flow, an integration embedding the Windmill engine. These severe flaws allow remote attackers to take full control of affected systems without requiring any passwords. System administrators must patch immediately to prevent catastrophic network breaches and data theft. Recently, security researcher Chocapikk released…
Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign

Apr 7, 2026 3:52 PM

Tags: botnet, cloud, crypto, data-breach, Internet, malicious, vulnerability

An active campaign has been observed targeting internet-exposed instances running ComfyUI, a popular stable diffusion platform, to enlist them into a cryptocurrency mining and proxy botnet.”A purpose-built Python scanner continuously sweeps major cloud IP ranges for vulnerable targets, automatically installing malicious nodes via ComfyUI-Manager if no exploitable node is already First seen on thehackernews.com Jump…
What we learned about TEE security from auditing WhatsApp’s Private Inference

Apr 7, 2026 2:50 PM

Tags: access, ai, attack, backdoor, breach, computing, control, data, encryption, exploit, firmware, flaw, Hardware, identity, malicious, nvidia, office, privacy, side-channel, software, threat, update, vulnerability

WhatsApp’s new “Private Inference” feature represents one of the most ambitious attempts to combine end-to-end encryption with AI-powered capabilities, such as message summarization. To make this possible, Meta built a system that processes encrypted user messages inside trusted execution environments (TEEs), secure hardware enclaves designed so that not even Meta can access the plaintext. Our…