The Hacker News

Cisco Patches Four Critical Identity Services, Webex Flaws Enabling Code Execution

Cisco patches four CVEs up to CVSS 9.9 in ISE and Webex, preventing code execution and user impersonation risks.

Microsoft Issues Massive Windows Patch for 160+ Bugs, Including Two Zero-Days

Microsoft’s April 2026 Patch Tuesday fixes 165 vulnerabilities, including two zero-days, in one of the company’s largest ...
Cryptopolitan

Anthropic mandates ID verification as AI race enters new risk territory

Artificial intelligence companies, Anthropic and OpenAI, are taking serious steps to address the growing risks associated ...
CSO Online

Behind the Mythos hype, Glasswing has just one confirmed CVE

As hype builds around Anthropic’s offensive AI model, VulnCheck’s analysis finds just one confirmed CVE tied directly to ...

Dangerous Fake Microsoft Windows Update Confirmed—Do Not Download

As security researchers warn about a dangerous Microsoft Windows update that isn’t legitimate, users must pay close attention ...
Council on Foreign RelationsOpinion

Six Reasons Claude Mythos Is an Inflection Point for AI—and Global Security

Anthropic’s new AI model has taught itself to hack into software infrastructure systems believed to be among the most secure ...
The Next Web

OpenAI opens its cybersecurity model to thousands of defenders in race with Anthropic’s Mythos

OpenAI launches GPT-5.4-Cyber with binary reverse engineering for verified defenders, scaling access to thousands as it ...
Security Boulevard

GitHub Actions Supply Chain Attack: Trivy Breach & Workflow

Breakdown of the Trivy GitHub Actions attack, including workflow misconfigurations, token theft, and supply chain exposure.
Cybernews

Disgruntled hacker drops second zero-day Windows Defender exploit just hours after Microsoft patches first one

A disgruntled researcher released a second zero-day Windows Defender exploit, dubbed RedSun, shortly after Microsoft patched ...
Cybernews

Claude AI just learned how to hack Chrome: Will Mythos do it autonomously?

Researchers demonstrate Claude AI building a Chrome exploit chain, raising alarm over what Anthropic’s Mythos could do next.
Infosecurity Magazine

Systemic Flaw in MCP Protocol Could Expose 150 Million Downloads

However, in a report published on April 15, researchers at Ox Security claimed that a flaw in the protocol could enable ...
ZAWYA

SANS Institute, Cloud Security Alliance, [un]prompted, and OWASP GenAI Security Project release emergency strategy briefing

Building a Mythos-Ready Security Program” delivers a risk register, 11 priority actions, and board briefing framework built ...