Security · Disclosure
Ransomware-as-a-service platforms lower the barrier to entry as a negotiator pleads guilty to colluding with BlackCat, exposing the growing chasm between breach detection and public disclosure.
Application Security · Testing
With Invicti's April 2026 release and free LLM code scanners from Anthropic and OpenAI, a decade of frustration over disjointed application security testing is giving way to rapid integration, making runtime-to-source correlation a likely industry standard.
Security · AI Threat Surface
Google's security team scanned billions of web pages and found active payloads targeting enterprise AI agents, revealing a vast attack surface of crude but effective threats that defenders are racing to secure.
Security · Supply Chain
Trojanized password managers and AI-generated malware injected into open-source registries have rewritten the threat model for any organization running npm install, according to the April 2026 attack wave.
From a backdoored Daemon Tools installer to a Linux RAT that steals SSH keys, attackers are now targeting developer workstations to steal code-signing credentials and push trusted updates.
Security · Threat Economy
As ransomware payments decline, the ransomware-as-a-service model is giving way to straight fraud, forcing regulators to rethink breach disclosure rules.
Security · Threat Surface
Capsule Security's retest of a Microsoft-patched Copilot Studio agent proved that prompt injection still exfiltrates data, exposing the same attack surface across AI coding agents, autonomous SOC tools, and web-navigating assistants.
Software · Security
A malicious package in the @next-auth/* namespace was downloaded 1.4 million times between February 8 and April 26. The disclosure timeline matters more than the payload.