Anthropic MCP Design Vulnerability Enables RCE, Threatening AI Supply Chain
î „Ravie Lakshmananî ‚Apr 20, 2026Artificial Intelligence / Vulnerability Cybersecurity researchers have discovered a critical “by design” weakness in the Model Context…
Researchers Detect ZionSiphon Malware Targeting Israeli Water, Desalination OT Systems
Cybersecurity researchers have flagged a new malware called ZionSiphon that appears to be specifically designed to target Israeli water treatment…
Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials
î „Ravie Lakshmananî ‚Apr 20, 2026Cloud Security / Data Breach Web infrastructure provider Vercel has disclosed a security breach that allows bad…
$13.74M Hack Shuts Down Sanctioned Grinex Exchange After Intelligence Claims
î „Ravie Lakshmananî ‚Apr 18, 2026Money Laundering / Regulatory Compliance Grinex, a Kyrgyzstan-incorporated cryptocurrency exchange sanctioned by the U.K. and the U.S….
Mirai Variant Nexcorium Exploits CVE-2024-3721 to Hijack TBK DVRs for DDoS Botnet
î „Ravie Lakshmananî ‚Apr 18, 2026IoT Security / Vulnerability Threat actors are exploiting security flaws in TBK DVR and end‑of‑life (EoL) TP-Link…
Three Microsoft Defender Zero-Days Actively Exploited; Two Still Unpatched
î „Ravie Lakshmananî ‚Apr 17, 2026Vulnerability / Endpoint Security Huntress is warning that threat actors are exploiting three recently disclosed security flaws…
Google Blocks 8.3B Policy-Violating Ads in 2025, Launches Android 17 Privacy Overhaul
Google this week announced a new set of Play policy updates to strengthen user privacy and protect businesses against fraud,…
NIST Limits CVE Enrichment After 263% Surge in Vulnerability Submissions
î „Ravie Lakshmananî ‚Apr 17, 2026Vulnerability Management The National Institute of Standards and Technology (NIST) has announced changes to the way it…
Operation PowerOFF Seizes 53 DDoS Domains, Exposes 3 Million Criminal Accounts
î „Ravie Lakshmananî ‚Apr 17, 2026DDoS / Cybercrime An international law enforcement operation has taken down 53 domains and arrested four people…
Apache ActiveMQ CVE-2026-34197 Added to CISA KEV Amid Active Exploitation
î „Ravie Lakshmananî ‚Apr 17, 2026Vulnerability / Enterprise Security A recently disclosed high-severity security flaw in Apache ActiveMQÂ Classic has come under active…