How LiteLLM Turned Developer Machines Into Credential Vaults for Attackers
The most active piece of enterprise infrastructure in the company is the developer workstation. That laptop is where credentials are created, tested,...
Year: 2026
Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools
Ravie LakshmananApr 06, 2026Ransomware / Endpoint Security Threat actors associated with Qilin and Warlock ransomware operations have been observed using the bring your own...
Samsung to Shut Down Its Messaging App, Switch to Google Messages in July
Image: Jonas Leupe / (Unsplash) Samsung is saying goodbye to its own texting app and handing the keys to Google....
The AI-Enabled Society of the Future Must Be Breach Ready
I am now of the firm opinion that breach readiness cannot be an enterprise-only milestone; it must also be...
Chat With Your Data: Introducing AI Assistant for Web Supply Chain Defense
There’s a gap in how security teams work today. The alerts exist. The risk signals exist. The data exists....
Proven incident response and business continuity strategy
From cybersecurity breaches to natural disasters, disruptive events can occur suddenly and without warning. As a result, it is...
AI shutdown controls may not work as expected, new study suggests
“The peer preservation findings are best understood not as a glitch but as an emergent behavior of advanced reasoning systems....
CVE-2026-35616: Fortinet fixes actively exploited high-severity flaw
CVE-2026-35616: Fortinet fixes actively exploited high-severity flaw Pierluigi Paganini April 06, 2026 Fortinet issued emergency patches for a critical FortiClient...
Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab
An elusive hacker who went by the handle “UNKN” and ran the early Russian ransomware groups GandCrab and REvil now...
BKA Identifies REvil Leaders Behind 130 German Ransomware Attacks
Ravie LakshmananApr 06, 2026Cybercrime / Financial Crime Germany's Federal Criminal Police Office (aka BKA or the Bundeskriminalamt) has unmasked the...
Zero Trust Architecture for Decentralized MCP Resource Provisioning
The mcp security mess: why discovery is broken So, we’re all out here building these cool ai agents, but...
What capabilities do NHIs bring to cybersecurity
What Are Non-Human Identities (NHIs) and Why Are They Crucial? Are you aware of the security gaps that can...
Incident Response Planning for Business Continuity
When a cyber incident strikes, organisations without a tested incident response plan face a brutal reality: every minute of uncertainty...
$285 Million Drift Hack Traced to Six-Month DPRK Social Engineering Operation
Drift has revealed that the April 1, 2026, attack that led to the theft of $285 million was the culmination of a months-long...
[un]prompted 2026 – Guardrails Beyond Vibes
Author, Creator & Presenter: Jeffrey Zhang, Security Engineer, Stripe & Siddh Shah, Software Engineer, Stripe Our thanks to prompted...