Dark Reading

EDR-Killer Ecosystem Expansion Requires Stronger BYOVD Defenses

Stopping EDR killers, which employ bring-your-own-vulnerable-driver (BYOVD) attack techniques, is difficult, but not ...

'Like handing out the blueprint to a bank vault': Why AI led one company to abandon open source

Cal is moving its flagship open-source program to a proprietary model because it can't cope with the dangers of AI hacking ...

FBI offers urgent guidance on securing home routers after disrupting Russian intelligence hacking network

The FBI says Russian GRU hackers exploited vulnerable home and office routers in the U.S. and offers tips to protect your ...

Key tool of shoplifters and car thieves to be banned

Signal jamming devices that allow shoplifters to disable security tags and burglars to steal cars are set to be banned.

Microsoft April 2026 Patch Tuesday fixes 167 flaws, 2 zero-days

Today is Microsoft's April 2026 Patch Tuesday with security updates for 167 flaws, including 2 zero-day vulnerabilities.
The Business & Financial Times

The weakest link: Why people remain cybersecurity’s greatest vulnerability

By Ben TAGOE The enduring human element in cybersecurity Organizations invest heavily in cybersecurity technology; advanced ...
Council on Foreign RelationsOpinion

Six Reasons Claude Mythos Is an Inflection Point for AI—and Global Security

Anthropic’s new AI model has taught itself to hack into software infrastructure systems believed to be among the most secure ...
The Hacker News

Actively Exploited nginx-ui Flaw (CVE-2026-33032) Enables Full Nginx Server Takeover

CVE-2026-33032 exposes nginx-ui to unauthenticated takeover via MCP endpoint, impacting 2,600+ instances with active ...

AI Expansion, Security Crises, and Workforce Upheaval Define This Week in Tech

AI breakthroughs, zero-day exploits, and layoffs reveal how this week’s tech news pivots on fast-moving artificial ...

U.S. military turns back ships amid hope for new peace talks

IRAN BLOCKADE: The U.S. military turned back six ships in the first 24 hours of its Iranian port blockade, which is being ...

Critical Marimo pre-auth RCE flaw now under active exploitation

A critical pre-authentication remote code execution (RCE) vulnerability in Marimo is now under active exploitation, leveraged ...
CSO Online

April Patch Tuesday roundup: Zero day vulnerabilities and critical bugs

This month’s threat landscape is ‘defined by immediate, real-world exploitation rather than just theoretical vulnerabilities, ...