Top Security News for Today

Two Admin-level API keys publicly exposed for years, both dismissed as "Out of scope" by official bug bounty programs. Case analysis + proposed NHI Exposure Severity Index
https://www.reddit.com/r/netsec/comments/1slz48l/two_adminlevel_api_keys_publicly_exposed_for/

Kerberoasting detection gaps in mixed-encryption environments and why 0x17 filtering alone isn't enough
https://www.reddit.com/r/netsec/comments/1sm0afg/kerberoasting_detection_gaps_in_mixedencryption/

Defense in Depth, Medieval Style
https://www.schneier.com/blog/archives/2026/04/defense-in-depth-medieval-style.html

Sweden says pro-Russian hackers attempted to breach thermal power plant
https://therecord.media/sweden-hackers-russia-power-plant

Educational company McGraw Hill says Salesforce misconfiguration led to data leak
https://therecord.media/mcgraw-hill-data-leak-tied-to-salesforce-misconfiguration

UK warns businesses to address cyber risks amid Anthropic AI panic
https://therecord.media/anthropic-mythos-uk-cyber-risk

Incident response for AI: Same fire, different fuel
https://www.microsoft.com/en-us/security/blog/2026/04/15/incident-response-for-ai-same-fire-different-fuel/

Teen arrested in Northern Ireland over cyberattack on school network
https://therecord.media/northern-ireland-cyberattack-arrest

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

Ukrainian emergency services and hospitals hit by espionage campaign using new AgingFly malware
https://therecord.media/aging-fly-espionage-campaign-targets-ukraine-emergency-services

Cargo thieving hackers running sophisticated remote access campaigns, researchers find
https://therecord.media/cargo-thieving-hackers-running-sophisticated-campaigns

Human Trust of AI Agents
https://www.schneier.com/blog/archives/2026/04/human-trust-of-ai-agents.html

Dissecting Sapphire Sleet’s macOS intrusion from lure to compromise
https://www.microsoft.com/en-us/security/blog/2026/04/16/dissecting-sapphire-sleets-macos-intrusion-from-lure-to-compromise/

New Jersey men given lengthy sentences for running North Korean laptop farms
https://therecord.media/new-jersey-men-sentenced-north-korean-laptop-farms

Building your cryptographic inventory: A customer strategy for cryptographic posture management
https://www.microsoft.com/en-us/security/blog/2026/04/16/building-your-cryptographic-inventory-a-customer-strategy-for-cryptographic-posture-management/

HAProxy HTTP/3 -> HTTP/1 Desync: Cross-Protocol Smuggling via a Standalone QUIC FIN (CVE-2026-33555)
https://www.reddit.com/r/netsec/comments/1snem8w/haproxy_http3_http1_desync_crossprotocol/

Open dataset: 100k+ multimodal prompt injection samples with per-category academic sourcing
https://www.reddit.com/r/netsec/comments/1sn2o3v/open_dataset_100k_multimodal_prompt_injection/

Taking Maestro in Stride
https://bishopfox.com/blog/taking-maestro-in-stride

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

Anomaly Detection in IEC-61850 GOOSE Networks: Evaluating Unsupervised and Temporal Learning for Real-Time Intrusion Detection
https://arxiv.org/abs/2604.14233

Sovereign 2.0: Control-Plane Sovereignty for Cloud Systems Under Disruption
https://arxiv.org/abs/2604.14242

Challenges and Future Directions in Agentic Reverse Engineering Systems
https://arxiv.org/abs/2604.14317

Head Count: Privacy-Preserving Face-Based Crowd Monitoring
https://arxiv.org/abs/2604.14250

Understanding Student Experiences with TLS Client Authentication
https://arxiv.org/abs/2604.14330

From Black Box to Glass Box: Cross-Model ASR Disagreement to Prioto Review in Ambient AI Scribe Documentation
https://arxiv.org/abs/2604.14152

Compressed-Sensing-Guided, Inference-Aware Structured Reduction for Large Language Models
https://arxiv.org/abs/2604.14156

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

The Smart TV in Your Living Room Is a Node in the AI Scraping Economy
https://www.reddit.com/r/netsec/comments/1sotxf6/the_smart_tv_in_your_living_room_is_a_node_in_the/

MAD Bugs: Even "cat readme.txt" is not safe
https://www.reddit.com/r/netsec/comments/1sou4zz/mad_bugs_even_cat_readmetxt_is_not_safe/

Cross‑tenant helpdesk impersonation to data exfiltration: A human-operated intrusion playbook
https://www.microsoft.com/en-us/security/blog/2026/04/18/crosstenant-helpdesk-impersonation-data-exfiltration-human-operated-intrusion-playbook/

TPM 2.0 is cool, actually: hardware attestation for bare-metal fleets
https://www.reddit.com/r/netsec/comments/1sozi1e/tpm_20_is_cool_actually_hardware_attestation_for/

CVE-2026-34621 PoC isn't a scanner, it's a campaign weaponizer with 62 pre-authenticated Brazilian fintech targets
https://www.reddit.com/r/netsec/comments/1sp128h/cve202634621_poc_isnt_a_scanner_its_a_campaign/

Subject: Inquiry Regarding Localized GEM Induction via High-Frequency Plasma
https://www.reddit.com/r/netsec/comments/1spgkxy/subject_inquiry_regarding_localized_gem_induction/

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

FakeWallet crypto stealer spreading through iOS apps in the App Store
https://securelist.com/fakewallet-cryptostealer-ios-app-store-2/119482/

Built an ARMv4 emulator in JS — write C/C++, run real ARM binaries in the browser
https://www.reddit.com/r/lowlevel/comments/1spuz4n/built-an-armv4-emulator-in-js-write-cc-run-real/

Playing with the LANL ARCS Data Sets
http://diablohorn.com/2026/04/19/playing-with-the-lanl-arcs-data-sets/

Retrocausal capacity of a quantum channel
https://arxiv.org/abs/2509.08965

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

British hacker tied to Scattered Spider campaign pleads guilty in $8M scheme
https://therecord.media/hacker-scattered-spider-guilty-plea

FakeWallet crypto stealer spreading through iOS apps in the App Store
https://securelist.com/fakewallet-cryptostealer-ios-app-store/119474/

Cyberattack at French identity document agency may have exposed personal data
https://therecord.media/france-cyberattack-agency-passports

Making opportunistic cyberattacks harder by design
https://www.microsoft.com/en-us/security/blog/2026/04/20/making-opportunistic-cyberattacks-harder-by-design/

Analysis of the April 2026 Booking.com Supply Chain Breach and ClickFix Tactics
https://www.reddit.com/r/netsec/comments/1sr1z4w/analysis_of_the_april_2026_bookingcom_supply/

Vercel Breach Explained: OAuth Risk in AI + SaaS Environment
https://www.reddit.com/r/netsec/comments/1sqvz0w/vercel_breach_explained_oauth_risk_in_ai_saas/

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

Cloud platform Vercel says company breached through third-party AI tool
https://therecord.media/cloud-platform-vercel-says-company-breached-through-ai-tool

Command Execution via Drag-and-Drop in Terminal Emulators
https://www.reddit.com/r/netsec/comments/1sreolc/command_execution_via_draganddrop_in_terminal/

We analysed almost 100 UK charity websites and found that ~1 in 6 are running vulnerable JavaScript dependencies.
https://www.reddit.com/r/netsec/comments/1srks4e/we_analysed_almost_100_uk_charity_websites_and/

Ukraine busts ‘bot farm’ supplying thousands of fake Telegram accounts to Russian spies
https://therecord.media/ukraine-sbu-busts-bot-farm-supplying-russian-spies

Void Dokkaebi Uses Fake Job Interview Lure to Spread Malware via Code Repositories
https://www.trendmicro.com/en_us/research/26/d/void-dokkaebi-uses-fake-job-interview-lure-to-spread-malware-via-code-repositories.html

Detection strategies across cloud and identities against infiltrating IT workers
https://www.microsoft.com/en-us/security/blog/2026/04/21/detection-strategies-cloud-identities-against-infiltrating-it-workers/

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

AI-powered defense for an AI-accelerated threat landscape
https://www.microsoft.com/en-us/security/blog/2026/04/22/ai-powered-defense-for-an-ai-accelerated-threat-landscape/

Understanding the CVE Ecosystem and NIST’s Changing Role
https://bishopfox.com/blog/understanding-the-cve-ecosystem-and-nists-changing-role

Reverse-engineering a targeted npm supply chain attack with two-stage C2 — full forensic analysis
https://www.reddit.com/r/netsec/comments/1ssmyig/reverseengineering_a_targeted_npm_supply_chain/

New Defense Department cyber strategy imminent, official says
https://therecord.media/defense-cyber-strategy-warfare

North Korean hackers siphon more than $12 million from crypto users in sprawling campaign
https://therecord.media/north-korean-hackers-siphon-12-million-from-crypto-users

UK cyber agency handling four major incidents a week as nation-state attacks surge
https://therecord.media/UK-cyberattacks-ncsc-china

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

FBI Extracts Deleted Signal Messages from iPhone Notification Database
https://www.schneier.com/blog/archives/2026/04/fbi-extracts-deleted-signal-messages-from-iphone-notification-database.html

Medical data on 500,000 Britons put on sale on Alibaba
https://therecord.media/medical-data-on-500000-britons-put-on-sale-alibaba

House Republicans unveil data privacy law that would override state protections
https://therecord.media/house-republicans-unveil-data-privacy-law-override-state-measures

Trump’s pick for CISA director withdraws from consideration
https://therecord.media/trump-pick-to-lead-cisa-withdraws-from-consideration

China-linked hackers target Mongolian government using Slack, Discord
https://therecord.media/china-linked-hackers-target-mongolian-gov-slack-discord

CISA: US agency breached through Cisco vulnerability
https://therecord.media/cisa-us-agency-breached-cisco-vulnerability-backdoor

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

Toronto police arrest three in Canada’s first mobile SMS blaster case
https://therecord.media/canada-sms-blaster-cybercriminals

Norway's prime minister proposes ban on social media access for young teens
https://therecord.media/norway-prime-minister-proposes-social-media-ban-for-young-teens

Pentagon grapples with securing AI as it moves toward autonomous warfare
https://therecord.media/pentagon-grapples-with-securing-ai-as-it-moves-towards-autonomous-warfare

ADT says customer data stolen in cyber intrusion
https://therecord.media/ADT-data-breach-cyberattack

What Really Happened In There? A Tamper-Evident Audit Trail for AI Agents
https://www.reddit.com/r/netsec/comments/1suaupb/what_really_happened_in_there_a_tamperevident/

Hiding Bluetooth Trackers in Mail
https://www.schneier.com/blog/archives/2026/04/hiding-bluetooth-trackers-in-mail.html

Cohere Terrarium (CVE-2026-5752) and OpenAI Codex CLI (CVE-2025-59532): a cross-CVE analysis of AI code sandbox escapes
https://www.reddit.com/r/netsec/comments/1suh47t/cohere_terrarium_cve20265752_and_openai_codex_cli/

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

STIX Visualizer — Threat Intelligence Graph Explorer
https://www.reddit.com/r/netsec/comments/1sv17v2/stix_visualizer_threat_intelligence_graph_explorer/

Large-scale security audit of 1,764 "vibe-coded" apps: 7% have wide-open Supabase DBs, 15% of Bolt apps ship hardcoded API keys, plus IDOR and zero-auth APIs
https://www.reddit.com/r/netsec/comments/1sv6gty/largescale_security_audit_of_1764_vibecoded_apps/

Attempting to evade an AI SOC with offensive agents
https://www.reddit.com/r/netsec/comments/1svfqfe/attempting_to_evade_an_ai_soc_with_offensive/

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

Thinking Outside The Box: New Attack Surfaces in Sandboxed AI Agents
https://www.reddit.com/r/netsec/comments/1swr12y/thinking_outside_the_box_new_attack_surfaces_in/

MCPwned: a Burp Suite extension for auditing MCP servers
https://www.reddit.com/r/netsec/comments/1swxhu6/mcpwned_a_burp_suite_extension_for_auditing_mcp/

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

MCPwned: a Burp Suite extension for auditing MCP servers
https://www.reddit.com/r/netsec/comments/1swxhu6/mcpwned_a_burp_suite_extension_for_auditing_mcp/

Medieval Encrypted Letter Decoded
https://www.schneier.com/blog/archives/2026/04/medieval-encrypted-letter-decoded.html

27th April – Threat Intelligence Report
https://research.checkpoint.com/2026/27th-april-threat-intelligence-report/

[arXiv] Enhancing REST API Fuzzing with Access Policy Violation Checks and Injection Attacks
https://arxiv.org/abs/2604.22001

Hackers impersonate Microsoft Teams help desk to breach corporate networks
https://therecord.media/microsoft-teams-hackers-mandiant

Context windows are breaking multi-agent security workflows
https://www.reddit.com/r/netsec/comments/1sx3eav/context_windows_are_breaking_multiagent_security/

Italy extradites alleged Chinese state hacker to US
https://therecord.media/chinese-hacker-italy-extradited

Disinformation campaign targeted Tibetan parliament-in-exile elections
https://therecord.media/disinformation-campaign-targeted-tibetan-elections

Money launderer for crypto thieves given 5-year sentence
https://therecord.media/cryptocurrency-launderer-sentenced-californai

Tennessee becomes second state to ban cryptocurrency ATMs over scam concerns
https://therecord.media/tennessee-bans-cryptocurrency-atms-over-scams

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

Ukrainian police detain hackers suspected of stealing thousands of Roblox accounts for resale
https://therecord.media/ukraine-police-detain-hackers-suspected-of-stealing-roblox-accounts

Video site Vimeo blames security incident on Anodot breach
https://therecord.media/vimeo-blames-security-incident-on-anodot-breach

Cyber Command, NSA chief warns foreign adversaries likely to target midterms
https://therecord.media/cyber-command-nsa-chief-midterm-election-threat

What Anthropic’s Mythos Means for the Future of Cybersecurity
https://www.schneier.com/blog/archives/2026/04/what_anthropics_mythos_means_for_the_future_of_cybersecurity.html

VECT: Ransomware by design, Wiper by accident
https://research.checkpoint.com/2026/vect-ransomware-by-design-wiper-by-accident/

Simplifying AWS defense with Microsoft Sentinel UEBA
https://www.microsoft.com/en-us/security/blog/2026/04/28/simplifying-aws-defense-microsoft-sentinel-ueba/

89 vulnerabilities in XAPI / Citrix XenServer
https://www.reddit.com/r/netsec/comments/1sxtz42/89_vulnerabilities_in_xapi_citrix_xenserver/

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman

Top Security News for Today

Claude Mythos Has Found 271 Zero-Days in Firefox
https://www.schneier.com/blog/archives/2026/04/claude-mythos-has-found-271-zero-days-in-firefox.html

What Should Frontier AI Developers Disclose About Internal Deployments?
https://arxiv.org/abs/2604.23065

CAN-QA: A Question-Answering Benchmark for Reasoning over In-Vehicle CAN Traffic
https://arxiv.org/abs/2604.24935

Prime-Field PINI: Machine-Checked Composition Theorems for Post-Quantum NTT Masking
https://arxiv.org/abs/2604.25878

Semantic Denial of Service in LLM-controlled robots
https://arxiv.org/abs/2604.24790

V.O.I.C.E (Voice, Ownership, Identity, Control, Expression): Risk Taxonomy of Synthetic Voice Generation From Empirical Data
https://arxiv.org/abs/2604.24794

Follow Top Cyber News at https://t.me/TopCyberTechNews Feel free to DM me at https://twitter.com/ShayaFeedman