Google makes deal with US Defence Department allowing its advanced AI models to be used for classified work, following staff protest This article has been indexed from Silicon UK Read the original article: Google In Pentagon Deal For Classified AI…
Vimeo Confirms Data Breach After Hackers Access User Database
Vimeo has officially confirmed a data breach affecting its user database. The security incident did not originate with Vimeo, but rather with Anodot, a third-party analytics vendor used by the video hosting platform. This event highlights the ongoing risks associated…
SLOTAGENT Malware Hides API Calls and Strings to Thwart Analysis
A previously unknown remote access trojan (RAT), dubbed SLOTAGENT, after analyzing a suspicious ZIP archive uploaded from Japan to a public malware repository in early 2026. The malware demonstrates advanced evasion techniques and flexible post-exploitation capabilities, making it a notable addition…
ShinyHunters exploit Anodot incident to target Vimeo
The video platform Vimeo confirmed a security breach via Anodot that exposed metadata, video titles, and some user emails. Vimeo said some user data was accessed after a breach at Anodot. Anodot is a company that provides AI-driven data analytics…
U.S. CISA adds Microsoft Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities catalog
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added Windows Shell and ConnectWise ScreenConnect flaws to its Known Exploited Vulnerabilities (KEV)…
cPanel Warns of Critical Authentication Flaw – Emergency Patch Released
Web hosting control panel giant cPanel has issued an emergency security update to address a critical vulnerability affecting its core software. The security flaw directly impacts multiple authentication paths within the cPanel and Web Host Manager (WHM) ecosystem. System administrators…
New BlueNoroff Campaign Uses Fileless PowerShell and AI-Generated Zoom Lures
A dangerous new cyber campaign from North Korea’s Lazarus Group is targeting cryptocurrency and Web3 professionals using fake Zoom meeting interfaces, fileless PowerShell scripts, and AI-generated deepfake content. The group behind this activity is BlueNoroff, a financially motivated subgroup known…
amazee.ai’s amazeeClaw simplifies production deployment of AI agents with regional control
amazee.ai has announced the launch of amazeeClaw, a managed OpenClaw hosting platform that enables developers and enterprises to deploy production-ready AI agents with data sovereignty and regional control without having to set up their own infrastructure. As adoption of AI…
Met Police Federation Decries ‘Outrageous’ Palantir AI System
Metropolitan Police Federation considers legal action after trial of Palantir AI analysis results in suspensions, arrests This article has been indexed from Silicon UK Read the original article: Met Police Federation Decries ‘Outrageous’ Palantir AI System
LofyStealer Targets Minecraft Players via Node.js Loader and Browser Injection
Minecraft players are being lured with a fake hacking tool called “Slinky” that secretly installs a powerful infostealer dubbed LofyStealer (also tracked as GrabBot), linked to the Brazilian cybercrime group LofyGang. The malware uses a Node. js-based loader and an…
Eino’s agentic network observability platform enables real-time, AI-driven network insights
Eino has introduced a new class of solution for enterprises known as agentic network observability. Designed for enterprises with multiple network technologies and mission-critical use cases, Eino’s agentic solution uses a 3D digital twin approach of the physical environment to…
Virtue AI PolicyGuard turns AI policies into enforceable runtime guardrails
Virtue AI has announced PolicyGuard, a system that enables enterprises to define, edit, and enforce custom AI runtime protection guardrails across models, agents, and applications. Most organizations have “AI acceptable use policies.” When they need to enforce those policies, however,…
Agent payments, Russian phishing, LeRobot RCE flaw
FIDO Alliance working on securing AI agent payments Germany suspects Russia in Signal phishing RCE flaw in open-source robotics platform Get the show notes here: https://cisoseries.com/cybersecurity-news-agent-payments-russian-phishing-lerobot-rce-flaw/ Thanks to our episode sponsor, Guardsqaure Is your mobile app truly protected? Relying on…
US Law Enforcement Agencies Aim at Romance Scam Centers in Southeast Asia
In an effort to protect Americans from online romance scams and other forms of cyber fraud, the US government has imposed sanctions on tens of… The post US Law Enforcement Agencies Aim at Romance Scam Centers in Southeast Asia appeared…
Cornerstone Plans 65-Foot 5G Mast In York
Telecommunications infrastructure provider lodges plans to erect 5G mast on Hospital Fields Road, after earlier plan rejected This article has been indexed from Silicon UK Read the original article: Cornerstone Plans 65-Foot 5G Mast In York
30 ClawHub skills secretly turn AI agents into a crypto swarm
Yet another reason not to feast on OpenClaw Thirty ClawHub skills published by a single author are silently co-opting AI agents and creating a mass cryptocurrency mining swarm – without any malware or user consent.… This article has been indexed…
Fedora Linux 44 ships with GNOME 50 and KDE Plasma 6.6
The Fedora Project released Fedora Linux 44, delivering updated desktop environments, revised installer behavior, and several lower-level system changes across its editions and spins. The release covers the project’s flagship editions, including Workstation, KDE Plasma Desktop, Cloud, Server, CoreOS, and…
IT Security News Hourly Summary 2026-04-29 09h : 8 posts
8 posts were published in the last hour 6:34 : Vect 2.0 RaaS Expands Attacks Across Windows, Linux, and ESXi 6:34 : CISA Warns of Windows Shell Zero-Day Exploited in Attacks 6:34 : Critical GitHub Vulnerability Exposed Millions of Repositories…
Vect 2.0 RaaS Expands Attacks Across Windows, Linux, and ESXi
Vect 2.0 Ransomware‑as‑a‑Service (RaaS) operation is rapidly evolving into a multi‑platform threat that can encrypt Windows, Linux, and VMware ESXi environments across modern hybrid infrastructures. The group runs a classic affiliate model, renting out its ransomware and TOR‑based infrastructure to partners…
CISA Warns of Windows Shell Zero-Day Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has issued an urgent alert regarding a newly discovered zero-day vulnerability affecting Microsoft Windows. On April 28, 2026, the agency officially added CVE-2026-32202 to its Known Exploited Vulnerabilities (KEV) catalog. This critical flaw…
Critical GitHub Vulnerability Exposed Millions of Repositories
The remote code execution flaw CVE-2026-3854 was found to impact GitHub.com and GitHub Enterprise Server. The post Critical GitHub Vulnerability Exposed Millions of Repositories appeared first on SecurityWeek. This article has been indexed from SecurityWeek Read the original article: Critical…
Betting on Cybercrime – Prediction Markets and Hacking
Cybercriminals are evolving from stealing data to “shaping the future” by leveraging prediction markets. By exploiting early access to disclosures, manipulating sensor data, or timing ransomware leaks to coincide with market bets, attackers can transform illegal access into guaranteed financial…
Microsoft Confirms Remote Desktop Warning Issue After April Update
Microsoft has officially confirmed a known issue affecting Remote Desktop Protocol (RDP) connections following the April 14, 2026, Patch Tuesday updates. Specifically impacting Windows 11 version 26H1 (KB5083768, OS Build 28000.1836), the update was intended to harden systems against malicious .rdp files.…
cPanel Releases Emergency Patch for Critical Authentication Flaw
Web hosting administrators must take immediate action, as cPanel has rolled out an emergency security update to address a critical vulnerability. Disclosed on April 28, 2026, this flaw impacts various authentication paths within the cPanel and WebHost Manager (WHM) ecosystem.…