ICYMI: 2026-04-24
Latest Headlines
FIRESTARTER Backdoor Hit Federal Cisco Firepower Device, Survives Security Patches
NASA Employees Duped in Chinese Phishing Scheme Targeting U.S. Defense Software
Bridging the AI Agent Authority Gap: Continuous Observability as the Decision Engine
26 FakeWallet Apps Found on Apple App Store Targeting Crypto Seed Phrases
Tropic Trooper Uses Trojanized SumatraPDF and GitHub to Deploy AdaptixC2
LMDeploy CVE-2026-33626 Flaw Exploited Within 13 Hours of Disclosure
Pre-Stuxnet Sabotage Malware ‘Fast16’ Linked to US-Iran Cyber Tensions
In Other News: Unauthorized Mythos Access, Plankey CISA Nomination Ends, New Display Security Device
Why Cybersecurity Must Rethink Defense in the Age of Autonomous Agents
Locked Shields 2026: 41 Nations Strengthen Cyber Resilience in World’s Biggest Exercise
US Federal Agency’s Cisco Firewall Infected With ‘Firestarter’ Backdoor
Trump Administration Vows Crackdown on Chinese Companies ‘Exploiting’ AI Models Made in US
Copperhelm Raises $7 Million for Agentic Cloud Security Platform
Claude Desktop Reportedly Adds Browser Access Bridge to Multiple Chromium-Based Browsers
Hackers Use Fake CAPTCHA Pages to Trigger Costly International SMS Fraud
Hackers Use Pastebin-Hosted PowerShell Script to Steal Telegram Sessions
Void Dokkaebi Hackers Use Fake Job Interviews to Spread Malware via Code Repositories
Xiongmai IP Camera Vulnerability Let Attackers Bypass Authentication and have Remote Access
Python Vulnerability Allows Out-of-Bounds Write on Windows Systems
Udemy Data Breach – ShinyHunters Allegedly Claims Compromise of 1.4M User Records
Hackers Can Exploit Ollama Model Uploads to Leak Sensitive Server Data
Hackers Abuse Compromised Routers to Hide China-Linked Cyber Operations
Hackers Use Telegram Bots to Track 900+ Successful React2Shell Exploits
Firestarter malware survives Cisco firewall updates, security patches
New BlackFile extortion group linked to surge of vishing attacks
Microsoft to roll out Entra passkeys on Windows in late April
DORA and operational resilience: Credential management as a financial risk control
Over 10,000 Zimbra servers vulnerable to ongoing XSS attacks
Microsoft now lets admins uninstall Copilot on enterprise devices
– MTZ