Grafana Patches AI Bug That Could Have Leaked User Data – Dark Reading
By hiding malicious instructions on an attacker-controlled Web page, AI could ingest orders as benign and return sensitive data to the attacker’s server. – Read More
April 2026
5 practical steps to strengthen attack resilience with attack surface management – CSO Online
Every asset you manage expands your attack surface. Internet‑facing applications, cloud workloads, credentials, endpoints, and third‑party integrations all represent potential entry points for attackers. As environments grow more distributed, that…
5 steps to strengthen supply chain security and improve cyber resilience – CSO Online
Supply chain attacks have rapidly become one of the most damaging and difficult threats facing IT and security teams. When an adversary compromises a trusted vendor, software component, cloud service,…
5 ways to strengthen identity security and improve attack resilience – CSO Online
Identity compromise has become one of the most effective ways for attackers to infiltrate business systems. Firewalls, endpoint protection, and monitoring tools mean little once an attacker logs in using…
Russia Hacked Routers to Steal Microsoft Office Tokens – Krebs on Security
Hackers linked to Russia’s military intelligence units are using known flaws in older Internet routers to mass harvest authentication tokens from Microsoft Office users, security experts warned today. The spying…
Russian State-Linked APT28 Exploits SOHO Routers in Global DNS Hijacking Campaign – The Hacker News
The Russia-linked threat actor known as APT28 (aka Forest Blizzard) has been linked to a new campaign that has compromised insecure MikroTik and TP-Link routers and modified their settings to…
Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access – The Hacker News
A high-severity security vulnerability has been disclosed in Docker Engine that could permit an attacker to bypass authorization plugins (AuthZ) under specific circumstances. The vulnerability, tracked as CVE-2026-34040 (CVSS score:…
RSAC 2026: How AI Is Reshaping Cybersecurity Faster Than Ever – Dark Reading
Dark Reading’s Kelly Jackson Higgins shares insights on the past, present, and future of cybersecurity after attending RSAC 2026 Conference. – Read More
Human vs AI: Debates Shape RSAC 2026 Cybersecurity Trends – Dark Reading
As AI dominated RSAC 2026, CISOs and industry leaders debated its role in security, from agentic applications to the challenges of scaling human involvement in decision-making. – Read More
Lies, Damned Lies, and Cybersecurity Metrics – Dark Reading
A panel of five C-suite leaders discuss how cybersecurity success is measured and why it isn’t improving results. – Read More
Inside View: Stewart Crane on Withers’ technology priorities and AI in practice – Legal IT Insider
In the latest episode of Inside View, Caroline Hill, editor of Legal IT Insider, speaks with Stewart Crane, global IT director at Withers, about the UK top 50 law firm’s…
Focusing on the People in Cybersecurity at RSAC 2026 Conference – Dark Reading
AI dominated the RSAC 2026 Conference and showed it’s still humans in cybersecurity who matter most. – Read More
Zero‑click Grafana AI attack can enable enterprise data exfiltration – CSO Online
Indirect prompt injection is possible on AI-powered dashboards, allowing exfiltration of sensitive enterprise data without user authentication. Security researchers are warning about a critical Grafana issue, dubbed GrafanaGhost, that allows…
Over 1,000 Exposed ComfyUI Instances Targeted in Cryptomining Botnet Campaign – The Hacker News
An active campaign has been observed targeting internet-exposed instances running ComfyUI, a popular stable diffusion platform, to enlist them into a cryptocurrency mining and proxy botnet. “A purpose-built Python scanner…
[Webinar] How to Close Identity Gaps in 2026 Before AI Exploits Enterprise Risk – The Hacker News
In the rapid evolution of the 2026 threat landscape, a frustrating paradox has emerged for CISOs and security leaders: Identity programs are maturing, yet the risk is actually increasing. According…