Podcasts about vulnerabilities

In the security news: Trolling Microsoft With Vulnerabilities Fable 5 loves guardrails Binwalk vulnerability EMBA and local models EDRChoker AI worms Interesting Arista vulnerability added to KEV BOD 26-04 and stakeholder specific vulnerability categorization Bring your own execution environment Homelab tips MikroTik routers as interceptors Ivanti Sentry and irony Smart TV botnets Privacy laws Solarwinds Serv-U lives on More Cisco SD-WAN fun! Russia can jam GPS No nudes for you says UK Government "Why would someone want to learn code when AI does it better and faster?" Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw-930

In the security news: Trolling Microsoft With Vulnerabilities Fable 5 loves guardrails Binwalk vulnerability EMBA and local models EDRChoker AI worms Interesting Arista vulnerability added to KEV BOD 26-04 and stakeholder specific vulnerability categorization Bring your own execution environment Homelab tips MikroTik routers as interceptors Ivanti Sentry and irony Smart TV botnets Privacy laws Solarwinds Serv-U lives on More Cisco SD-WAN fun! Russia can jam GPS No nudes for you says UK Government "Why would someone want to learn code when AI does it better and faster?" Show Notes: https://securityweekly.com/psw-930

In the security news: Trolling Microsoft With Vulnerabilities Fable 5 loves guardrails Binwalk vulnerability EMBA and local models EDRChoker AI worms Interesting Arista vulnerability added to KEV BOD 26-04 and stakeholder specific vulnerability categorization Bring your own execution environment Homelab tips MikroTik routers as interceptors Ivanti Sentry and irony Smart TV botnets Privacy laws Solarwinds Serv-U lives on More Cisco SD-WAN fun! Russia can jam GPS No nudes for you says UK Government "Why would someone want to learn code when AI does it better and faster?" Visit https://www.securityweekly.com/psw for all the latest episodes! Show Notes: https://securityweekly.com/psw-930

In the security news: Trolling Microsoft With Vulnerabilities Fable 5 loves guardrails Binwalk vulnerability EMBA and local models EDRChoker AI worms Interesting Arista vulnerability added to KEV BOD 26-04 and stakeholder specific vulnerability categorization Bring your own execution environment Homelab tips MikroTik routers as interceptors Ivanti Sentry and irony Smart TV botnets Privacy laws Solarwinds Serv-U lives on More Cisco SD-WAN fun! Russia can jam GPS No nudes for you says UK Government "Why would someone want to learn code when AI does it better and faster?" Show Notes: https://securityweekly.com/psw-930

AI is claiming hundreds of thousands of tech jobs, but is it also playing a role in discovering vulnerabilities? This week, we dive into Microsoft's chaotic June 2026 Patch Tuesday, which addressed an astronomical 200 flaws including 3 active zero-days. Plus, we break down Apple's massive AI pivot at WWDC 2026, Microsoft's driver update disaster, and the latest accusations of an Edge browser monopoly plus much more. Reference Links: https://www.rorymon.com/blog/ai-just-killed-123000-tech-jobs-and-did-ai-play-a-role-in-junes-200-windows-vulnerabilities/

Edmund Fitton-Brown evaluates the "armed standoff" between the U.S. and Iran. He explains how Iran uses Hezbollah to pressure Israel while attempting to exploit political vulnerabilities and split the U.S. from Jerusalem. (7)1901 SOUTH AFRICA

Scientists studying loggerhead sea turtles discovered something remarkable: these ancient navigators use two completely separate magnetic sensing systems, and radiofrequency fields can disrupt one while leaving the other intact. This groundbreaking research reveals how electromagnetic fields can selectively interfere with biological navigation systems that evolved over millions of years. The implications for human health are profound, as it demonstrates the exquisite sensitivity of living systems to the wireless radiation now saturating our environment. In This Episode How sea turtles create magnetic maps of the ocean Two distinct magnetoreception mechanisms in one animal Why RF interference patterns matter for human health Featured Study Read the full study: Learned magnetic map cues and two mechanisms of magnetoreception in turtles See all studies at shieldyourbody.com/research

In this episode, we will examine how social and economic conditions shape human security in the Americas and the Caribbean, particularly as demographic change, migration, care needs, and labour market pressures create new vulnerabilities across the region. You will hear the presentation of Simone Cecchini, Chief of the Latin American and Caribbean Demographic Centre (CELADE) - Population Division of ECLAC. His remarks highlight the importance of strengthening education, quality employment, social protection, care systems, progressive taxation, and evidence-based policymaking as part of a broader agenda to reduce vulnerabilities and protect livelihoods. This episode was recorded on November 28, 2025, during the session “Social and Economic Security: Protecting Livelihoods and Reducing Vulnerabilities”, held as part of the First Gathering of the ParlAmericas Parliamentary Network on Security, “Human Security and Regional Stability: Parliamentary Responses to Challenges in the Americas and the Caribbean”, organized by ParlAmericas in Panama City, Panama. You can access the meeting content here. You can access the meeting content here.

On this week's Security Sprint, Dave and Andy covered the following topics:Opening:• 27th Annual TribalNet Conference & Tradeshow, 20 – 24 Sep, Dallas, TX• 02 Jun! WaterISAC H2OSecCon (Virtual Conference)Main Topics:Exploitation! and the KEV! • CISA Adds One Known Exploited Vulnerability to Catalog - CVE-2026-9082 Drupal Core SQL Injection Vulnerability• Drupal security advisory (AV26-492) - Update 2 - Canadian Centre for Cyber Security • CISA orders feds to patch actively exploited Drupal vulnerability - BleepingComputer • CISA Adds One Known Exploited Vulnerability to Catalog - CVE-2026-48172 LiteSpeed cPanel Plugin Privilege Escalation Vulnerability• CISA gives feds 4 days to patch actively exploited cPanel plugin flaw - BleepingComputer • CISA Adds One Known Exploited Vulnerability to Catalog - CVE-2026-0257 Palo Alto Networks PAN-OS Authentication Bypass Vulnerability• Palo Alto Networks Security Advisory AV26-462 — Canadian Centre for Cyber Security • ETR: Rapid7 Observed Exploitation of PAN-OS GlobalProtect Authentication Bypass Vulnerability CVE-2026-0257 — Rapid7 Ransomware & Data Breaches: • The Cyber Extortion Economy - Palo Alto Networks Unit 42 - 28 May 2026 “As recently noted by our Chief Security Intelligence Officer, Wendi Whitmore, it only took 39 seconds for threat actors to move from initial access to data exfiltration in one case.” • Stay Ahead of Ransomware: What 2026 Threat Reports Are Telling Us — SANS Institute — 01 Jun 2026• Charter Communications Data Breach Could Impact Nearly 5 Million • How St. Paul, Minn., Recovered From a Ransomware Attack • FBI FLASH - Silent Ransom Group Impersonating IT Personnel through Social Engineering - FBI IC3 & FBI warns of in-person data theft attacks from extortion gang • Charter confirms data breach after ShinyHunters extortion threat • The Gentlemen ransomware: Dissecting a self-propagating Go encryptor • The Gentlemen Ransomware Group Is Scaling Faster Than Any Other Group on Record • The Gentlemen (Ransomware) in Disguise: Defense Evasion and other TTPs World Cup:• FBI PSA - Threat Actors Spoofing FIFA Websites in Advance of the 2026 World Cup - FBI IC3 • FAA Establishes No Drone Zones for FIFA World Cup 2026 Stadiums, Fan Events and Base Camps — FAA • Column: Empower Emergency Managers for Major Events • Ebola concerns grow ahead of World Cup — The Hill Quick Hits:• The Future of AI Risk: Predictions for 2027 and Beyond - Gate 15 - 26 May 2026 • Top 10 Artificial Intelligence Security Actions Primer — Canadian Centre for Cyber Security • Mythos Exposes a Bigger Problem in Critical Infrastructure Cyber Defense - HSToday • NSA Launches Zero Trust Implementation Guidelines Resource Webpage — National Security Agency • Designing secure access with ZTNA - National Cyber Security Centre • The 2026 U.S. Midterms Have a Cyber Problem, But It's Not at the Ballot Box — Check Point & Hackers are already laying groundwork to disrupt 2026 midterms, research says — Nextgov • 'Holding our breath': Hurricane season is here, and FEMA is shorthanded — Politico

Send us Fan MailDanielle Morrison, National Practice Manager – Healthcare IT Services at All Covered, analyzed the healthcare threat landscape and explored how the industry's lag in IT modernization has created severe security gaps. With an expanding attack surface of medical devices and legacy systems, under-supported small and mid-size providers frequently suffer from incomplete tooling, misconfigured software, and a critical shortage of internal security expertise.To illustrate these risks, she talked about a ransomware breach where attackers weaponized dark-web credentials to exploit a legacy server that lacked multi-factor authentication (MFA). With an attacker dwell time of up to two years, the fallout caused widespread downtime, forcing ambulance diversions and disrupting patient care. The panel noted that the intense operational pressure often drives healthcare executives to pay ransoms, yet doing so failed to prevent a secondary attack by a different cybercriminal group.Drawing on her dual background in nursing and healthcare informatics, Danielle emphasized that solving this crisis requires ongoing, expert human management rather than simple tool purchases. She outlined key defensive priorities:Continuous Monitoring: Deploying Managed Detection and Response (MDR) and active threat hunting.Proactive Controls: Enforcing mandatory MFA and increasing vulnerability scanning.Unified Operations: Leveraging specialized providers like All Covered (Konica Minolta's IT division) to integrate secure infrastructure with compliant communication tools.

Parce que… c'est l'épisode 0x302! Préambule Finalement, ce n'est pas tant concluant la nouvelle façon d'enregistrer. J'aurai d'autres tests à faire si je désire continuer avec cet équipement. Shameless plug 3 au 5 juin 2026 - SSTIC 2026 24 et 25 juin 2026 - Troopers 26 et 27 juin 2026 - leHACK 30 juin au 2 juillet 2026 - Pass the SALT 19 septembre 2026 - Bsides Montréal 20 au 26 septembre 2026 - BruCON 13 novembre 2026 - DEATHCon 16 au 19 novembre - European Cyber Week 1 au 3 décembre 2026 - Forum INCYBER - Canada 2026 24 et 25 février 2027 - SéQCure 2027 Notes IA ou Ghost in the shell Retour de l'enfant Mythos Anthropic to release Mythos-class models to the public Anthropic's Restricted Claude Mythos Moves Toward Public Release via Claude Code and Security Mythos Detected 23,000 Vulnerabilities Across 1,000 OSS Projects Anthropic confirms Claude Mythos-class models will roll out to the public Raz le bol AI is becoming increasingly unpopular Fed up with vibe coders, dev sneaks data-nuking prompt injection into their code Menteur menteur LLMs believe false statements even after explicit warnings that they're false AI bots ignore evidence. Can we trust them with science? Kevin Beaumont: “If anybody is wondering how th…” - Cyberplace SecuClaude Anthropic Releases Free Security Plugin for Claude Code Terminal to Detect Vulnerabilities Anthropic Updates Claude Code With Security Plugin and Faster Performance Aider ce qui ne veut pas se faire aider Open-Weight LLM Fine-Tuning Defenses are Susceptible to Simple Attacks Jailbreaking and Mitigation of Vulnerabilities in Large Language Models Provably Secure Agent Guardrail Millions of AI agents imperiled by critical vulnerability in open source package The pressure Agentic AI Isn't Risky; the Way Orgs Deploy It Is Leak@

On the podcast this week, I cover a whole lot of security related stories including concerning Defender, Drupal and UniFiOS vulnerability, a tone deaf comment from a Finance CEO regarding AI and much more! Reference Links: https://www.rorymon.com/blog/defender-vulnerabilities-disclosed-new-issue-on-server-2016-updates-coming-to-windows-11/

Anyone who thinks that insurance is dull hasn't thought about it in the right way. The ability to offset risk is the structural foundation of everything in a modern economy, including our own individual ability to avoid personal financial ruin. Charles Brindamour is CEO of Intact Financial, the largest property and casualty insurer in Canada. He talks to host Amanda Lang about climate change, natural disasters and tech vulnerabilities.

Possible ACR Stealer From Page Impersonating Claude https://isc.sans.edu/diary/Possible%20ACR%20Stealer%20From%20Page%20Impersonating%20Claude/33018 Microsoft SharePoint Remote Code Execution Vulnerability CVE-2026-45659 https://msrc.microsoft.com/update-guide/vulnerability/CVE-2026-45659 Multiple Vulnerabilities in Angular Language Service VS Code Extension https://github.com/angular/angular/security/advisories/GHSA-ccq4-xmxr-8hcq

(Presented by TLPBLACK: A cybersecurity intelligence platform focused on sharing curated, high-sensitivity threat insights and research with trusted security professionals.) Three Buddy Problem x Ekoparty Miami: SentinelLabs researcher Gabriel Bernadett-Shapiro hops on the mic to unpack who gets to define what "security" even means in the age of AI, why venture capital keeps funding the wrong things, and how the frontier labs quietly ate everyone's coding harness. Plus, how AI actually contributed to cracking the FAST 16 research, overcoming the guardrails, and why your domain expertise is the only thing keeping you out of full-blown rabbit-hole psychosis. Cast: Juan Andres Guerrero-Saade, Ryan Naraine and Gabriel Bernadett-Shapiro. Timestamps: 0:00 Introductory banter 4:55 Gabe returns: how the models got scary-good at code 8:45 Bay Area short-termism and the "10x in 18 months" trap 11:35 VCs as tastemakers, and why that's broken 13:00 The unpaid-labor pipeline into the AI labs 18:00 The real misunderstanding about security's moat 20:18 Bug bounties: a net negative for the industry? 22:20 The great vuln fire sale — find 50,000, fix zero 27:28 Who will maintain vetted open-source libraries? 29:29 FAST 16: how AI actually broke the case open 35:05 The rabbit-holing machine and the path to "AI psychosis" 41:05 Stuxnet, Kim Zetter, and the story we'll never be told

PREVIEW for Later Today: Kevin Frazier examines how AI tools like Mythos and GPT 5.5 reveal critical vulnerabilities in national infrastructure. He highlights U.S. Navy cyber weaknesses and emphasizes the urgent need for a robust national cybersecurity apparatus.JUME 1957

Anthropic is briefing the Financial Stability Board on security vulnerabilities discovered by Mythos, Microsoft retires ‘Together Mode’ in Teams, and the Delhi High Court orders Apple to ‘fully cooperate’ with the Competition Commission of India’s ongoing antitrust investigation. MP3 Please SUBSCRIBE HERE for free or get DTNS shows ad-free. A special thanks to all ourContinue reading "Anthropic Briefs Financial Stability Board on Vulnerabilities – DTH"

Join us for this week's Defender Fridays as Shane Warden, Principal Architect at ActiveState, shares what it's actually like to be on the receiving end of AI-assisted vulnerability reporting and what open source maintainers are already dealing with that the rest of the industry will face soon.At Defender Fridays, we delve into the dynamic world of information security, exploring its defensive side with seasoned professionals from across the industry. Our aim is simple yet ambitious: to foster a collaborative space where ideas flow freely, experiences are shared, and knowledge expands.What We'll DiscussIn this episode, Shane Warden draws on his experience supporting security for well-known open source projects to explore how AI-assisted vulnerability reporting is changing the threat landscape, and why what's happening in open source today is a preview of what every organization will face.Key Topics:Why open source projects are the early warning system for what's coming to enterprise securityHow a flood of 95 AI-generated vulnerability reports turned into a six-figure extortion attemptWhy even a three percent legitimate hit rate still creates a real and unignorable workload for maintainersHow teams are using AI to respond to AI-generated reports, and where humans still need to be in the loopWhat projects like curl, the Linux kernel, and Zig are doing differently in response to AI contributionsWhy understanding your open source dependencies and their versions is more urgent than everThe reputational risk of AI-generated vulnerability claims, even when those claims are falseAbout Our GuestShane Warden is Principal Architect at ActiveState and has been involved in open source since the late 1990s. Behind the scenes, he supports security for several well-known free software projects and has been navigating the growing wave of AI-assisted vulnerability submissions firsthand.Register for Live SessionsJoin us every Friday at 10:30am PT for live, interactive discussions with industry experts. Whether you're a seasoned professional or just curious about the field, these sessions offer an engaging dialogue between our guests, hosts, and you, our audience.Register here: https://limacharlie.io/defender-fridaysSubscribe to our YouTube channel and hit the notification bell to never miss a live session or catch up on past episodes on our website!Sponsored by LimaCharlieThis episode is brought to you by LimaCharlie, the Agentic SecOps Workspace (ASW), where AI agents operate security infrastructure using the same controls and authority as human analysts, with every action visible, governed, and auditable.Why LimaCharlie?Eliminate vendor sprawl and tool complexityDeploy and scale effortlessly on native multi-tenant architectureReduce costs with intelligent data routing and free 1-year retentionBuild custom solutions with 100+ security capabilities on-demandAccelerate response with agentic AI that acts directly within predefined workflowsTry the Agentic SecOps Workspace free: https://limacharlie.ioLearn more: https://docs.limacharlie.ioFollow LimaCharlieSign up for free: https://limacharlie.ioLinkedIn: / limacharlieioX: https://x.com/limacharlieioCommunity Discourse: https://community.limacharlie.com/Host: Maxime Lamothe-Brassard - Founder at LimaCharlieGuest: Shane Warden - Principal Architect at ActiveState

Patch Tuesday. Global agencies update SBOM guidance. Iran-linked espionage group Seedworm breached a major South Korean electronics manufacturer. A telehealth platform breach affects 716,000. Foxconn confirms a cyberattack. Maria Varmazis has an update on orbital data centers. A lawmaker questions surveillance pricing. Brandon Karpf, friend of the show, is talking with Dave about "Japan's space systems face growing cybersecurity threats." Robotic lawnmowers on the cutting edge. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today Brandon Karpf, friend of the show, is talking with Dave about "Japan's space systems face growing cybersecurity threats." Selected Reading Microsoft Fixes 17 Critical Flaws in May Patch Tuesday (Infosecurity Magazine) Microsoft Patches Critical Zero-Click Outlook Vulnerability Threatening Enterprises (SecurityWeek) Adobe Patches 52 Vulnerabilities in 10 Products (SecurityWeek) Fortinet, Ivanti Patch Critical Vulnerabilities (SecurityWeek) Chipmaker Patch Tuesday: Intel and AMD   70 Vulnerabilities (SecurityWeek) ICS Patch Tuesday: New Security Advisories From Siemens, Schneider, CISA (SecurityWeek) Global Cyber Agencies Issue New SBOMs for AI Guidance to Tackle AI Supply Chain Risks (Infosecurity Magazine) Seedworm: Iran-Linked Hackers Breached Korean Electronics Maker in Global Spying Campaign (SECURITY.COM) 716,000 Impacted by OpenLoop Health Data Breach (SecurityWeek) Foxconn confirms cyberattack after ransomware crew claims it stole confidential Apple, Nvidia files (The Register) Congressman launches inquiry into how food retailers use surveillance pricing (The Record) Orbital Inference Data Center Bets On Space GPUs (IEEE Spectrum) Cowboy Space raises $275 million to launch AI data centers on brand-new rocket (Space.com) Yarbo responds to robot flaws that could mow down their owners (Malwarebytes) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Your kids' education is under attack—and the damage goes far beyond data breaches. Schools have become prime targets for hackers, not just because of the valuable student information they hold, but because their interconnected digital systems make them vulnerable to ransomware, data theft, and operational shutdowns that threaten safety and learning at every level. If you think cyber threats are just an IT problem, think again—this is a crisis of safety, trust, and our collective future.In this eye-opening episode, I expose the alarming realities of cybersecurity in America's schools. From massive breaches of platforms like Canvas and PowerSchool to ransomware attacks disabling vital systems like emergency notifications, security cameras, and HVAC controls, the stakes couldn't be higher. He reveals how adversaries exploit legacy tech, lax access controls, and vendor vulnerabilities, turning school networks into playgrounds for cybercriminals. The consequences? Loss of instruction time, compromised student identities, and even direct threats to safety—issues that can last for years.You'll discover:How cyber breaches in schools impact everything from classroom learning to emergency response systemsThe systemic risks created by centralized edtech platforms and third-party vendorsWhy traditional cybersecurity approaches fall short and what a true Zero Trust model for schools looks likePractical questions parents and school boards should be asking about MFA, data segmentation, vendor contracts, and incident responseThe urgent need to treat school cybersecurity as a matter of public safety and resilienceThis episode exposes the flawed assumptions and complacency that perpetuate one of the most critical vulnerabilities in our infrastructure—our children's education system. With billions of records at stake, and long-lasting consequences for identity and safety, it's clear: cybersecurity in schools isn't optional, it's essential.Whether you're a parent, educator, administrator, or concerned citizen, this conversation will radically change your perspective on what's really at risk—and how we can safeguard the future. If we fail to act, the fallout could disrupt learning, safety, and trust for generations.Prepare to be informed, inspired, and compelled to demand change. Schools are more than just buildings—they're the backbone of our society. Protecting them is protecting our future.

Is your organization prepared for an autonomous AI bot? Roger Grimes joins Jen Stone to discuss the shifting landscape of cybersecurity. This episode moves past the hype to look at the hard data: AI scams are yielding 4.5x more value for attackers, and traditional MFA is no longer enough to stop them.In this episode, we translate complex "vulnerability fatigue" into a clear, two-step priority list. We strip away the jargon to show you exactly how autonomous bots are bypassing firewalls by targeting the human element. Key Takeaways:Focus on the "Big Two": Social engineering and unpatched software account for nearly 90% of business risk.Phishing Resistance: Why you should move toward YubiKeys or passkeys to avoid "man-in-the-middle" code interception.Patch Management: Why you should ignore "shiny" new vulnerabilities and follow the CISA Known Exploited Vulnerabilities catalog.The Negotiator's Trap: What happens when a CEO claims they have backups, but the hackers have already deleted them.Featured Resources:CISA Known Exploited Vulnerabilities (KEV) Catalog: Use this to prioritize patching based on real-world attacker behavior. Phishing-Resistant MFA:YubiKey: A hardware security key requiring physical touch to prevent remote account takeovers. FIDO Passkeys: A cryptographically secure alternative to SMS codes. Password Management: Tools like 1Password or LastPass are essential for creating long, random, and unique credentials that AI can't easily crack. The 3-2-1 Backup Rule: Maintain three copies of data, on two different media types, with one copy kept strictly offline. Connect with Roger GrimesKnowBe4: Access security awareness training and social engineering defense resources at knowbe4.com. Free Book Offer: Roger is offering a free PDF copy of his latest book, How AI and Quantum Impact Cyber Threats and Defenses, to all listeners. Email him directly at rogerg@knowbe4.com. A note from Jen: We built Practical Cybersecurity because we were tired of the fear-mongering in this industry. Security shouldn't be a secret club.If you're trying to figure out PCI compliance or need a pen test, my team at SecurityMetrics can help you out: https://www.securitymetrics.com/contact/lets-get-you-to-the-right-place But if you just want to learn how to protect yourself for free, start here:  https://academy.securitymetrics.com/ 

Stay informed on current events, visit www.NaturalNews.com  - Backlash Against AI Data Centers (0:12) - Ethical and Legal Challenges of Data Centers (3:25) - Government and Corporate Influence on Data Center Locations (7:53) - Impact of AI Surveillance and Authoritarian Governments (10:08) - Famine and Fuel Shortages in America (12:22) - Human Migration and Economic Instability (44:47) - Cannibalism and Depopulation Techniques (1:05:30) - Economic and Social Implications of Depopulation (1:13:23) - Historical Context of Famines and Government Control (1:20:01) - Mechanisms of Creating Famines (1:23:29) - Historical Figures and Famine Preparedness (1:27:08) - Impact of Infrastructure Destruction (1:31:38) - Globalist Agendas and Human Resources (1:34:27) - Vulnerabilities of Mega Cities and Regions (1:45:42) - Grand Strategic Level and Synthetic Countries (1:47:58) - Future Vision of Global Elites (1:57:35) - Final Thoughts and Recommendations (2:02:43) Watch more independent videos at http://www.brighteon.com/channel/hrreport  ▶️ Support our mission by shopping at the Health Ranger Store - https://www.healthrangerstore.com ▶️ Check out exclusive deals and special offers at https://rangerdeals.com ▶️ Sign up for our newsletter to stay informed: https://www.naturalnews.com/Readerregistration.html Watch more exclusive videos here:

CPanel, WHM release fixes for three new vulnerabilities Official JDownloader site serves malware to Windows and Linux users Sen. Schumer seeks DHS plan on AI cyber coordination Get the show notes here: https://cisoseries.com/cybersecurity-news-new-cpanel-vulnerabilities-jdownloader-delivers-malware-schumer-pushes-dhs/ Huge thanks to our episode sponsor, Doppel Social engineering attacks look trustworthy — a routine request, an internal email, a familiar face on a call.   But Doppel sees through the disguise. Our AI-native platform detects and disrupts attacks across every channel, while training employees to recognize deepfakes and deception.   We fight relentlessly to protect your business, brand, and people.   Doppel. Outpacing what's next in social engineering.   Learn more at doppel.com.  

The online education platform Canvas is mostly back online Friday after a cyberattack left students and teachers at thousands of schools and universities scrambling. The attack has raised many questions about the vulnerability of schools, the dependence on such platforms and other risks. Ali Rogin speaks with threat intelligence analyst Luke Connolly about those concerns. PBS News is supported by - https://www.pbs.org/newshour/about/funders. Hosted on Acast. See acast.com/privacy

Andrew Clugston, PhD, a postdoctoral fellow in the Sweet-Cordero Lab at UCSF joins us on OsteoBites to discuss his OutSmarting Osteosarcoma funded work, in partnership with the RISE Foundation, on defining tumor-specific vulnerabilities by mapping oncogenic structural variation in osteosarcoma.The genomes of osteosarcoma (OS) cancer cells are among the most complex cancer genomes ever observed. Initially formed by hundreds to thousands of incorrectly repaired DNA breaks (structural variants; SVs), OS genomes contain DNA structures that are unique to that patient and tumor cell, combining genes and regulatory features from across the genome in ways that effectively re-wire that cell's gene expression mechanisms. OS cells are also susceptible to further SVs over time and in response to treatment, potentially allowing OS tumors to evolve rapidly. But these complex and tumor-specific genomic structures may also harbor tumor-specific vulnerabilities. By mapping the many unique DNA structures among patient-derived OS tumor cells, Dr. Clugston has attempted to demonstrate that it is possible both to describe the essential structures within these cells and to search them for novel target genes vulnerable to existing drugs and treatment protocols. Using chromatin conformation capture sequencing (HiC) to observe the shape of the genome and optical genome mapping (OGM) to identify tumor-specific DNA structures, Dr. Clugston has produced tumor-specific maps for multiple patient-derived OS tumor cell lines and has begun development of a search process based on long-read mapping techniques that he hopes will inform future patient-specific treatment protocols.Andrew Clugston grew up in the small town of Lake Luzerne, New York. He received a BS in Biochemistry and an MS in Chemistry at the Rochester Institute of Technology, and he received his PhD in Integrative Systems Biology at the University of Pittsburgh. During his PhD he learned to use and develop bioinformatics tools and techniques to study the role of the genome in kidney as well as eye development, and in the process became fascinated with the importance of 3-dimensional organization in regulating cell behavior. Andrew has since joined the Sweet-Cordero laboratory in the Pediatric Oncology Division at the University of California San Francisco as a Postdoctoral Fellow. There, he applies his knowledge and skillset to study how disruptions in these organizational principles allow osteosarcoma cells to develop and proliferate, and how these changes reveal tumor-specific vulnerabilities that can be exploited for fast and effective treatment options that improve the lives of patients.

Is your vulnerability management program ready for something like Claude Mythos? The old days of treating vulnerabilities as temporal events (like Heartbleed or Log4J) and patching them on a leisurely 30, 60, or 90-day cycle are officially over.In this episode, Ashish sits down with Brad Hibbert, COO and Chief Strategy Officer at Brinqa. Brad explains how the release of Anthropic's Claude Mythos, an AI model capable of discovering vulnerabilities at machine speed without human intervention has compressed the time-to-exploit from months down to mere seconds.We discuss why the traditional assumption that "sophisticated attacks require sophisticated attackers" is no longer relevant, and why leaning solely on CVSS scores will drown your remediation teams in noise. We speak about how defenders must pivot from generic patching to focusing on true exploitability within their specific environments. Learn how AI can chain multiple "low severity" vulnerabilities (which were previously ignored 90% of the time) to gain root access, and why siloed AI security tools will lead to an expensive and ineffective game of "Whac-A-Mole".Guest Socials -⁠⁠ ⁠Brad's Linkedin⁠Podcast Twitter - ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠@CloudSecPod⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠If you want to watch videos of this LIVE STREAMED episode and past episodes - Check out our other Cloud Security Social Channels:-⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security Podcast- Youtube⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠- ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠Cloud Security Newsletter ⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠If you are interested in AI Security, you can check out our sister podcast -⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠⁠ AI Security Podcast⁠Questions asked:(00:00) Introduction(02:30) Brad Hibbert's Background and Role at Brinqa(03:40) Heartbleed vs. Claude Mythos: Temporal vs. Persistent Threats(05:30) AI Weaponization: From Months to Seconds(06:50) Elevating the Threat Model Beyond CVSS(09:30) The Tsunami of Vulnerabilities and the Need for Exploitability(12:10) Bridging the Blind Spots in Exposure Management(15:10) Resolving Friction Between Security and Remediation Teams(21:00) Automating Remediation Without Losing Oversight(28:30) The Problem with Treating Every Vulnerability Individually(30:20) Why We Ignored 90% of Low Severity Vulnerabilities(32:30) Siloed AI and the Costly Game of "Whac-A-Mole"(35:30) Defining "Reasonable Security" in the AI Era(41:10) Quick Wins: Where to Start Uplifting Your ProgramResources spoken about during the episode:Mythos Changes the Offense.5 Things Every CISO Should Do Before the Next MythosThank you to Brinqa for sponsoring this episode

Prof Colin Doherty, Consultant Neurologist and Head of the School of Medicine in Trinity College Dublin tells Brendan why they have put Love on the new curriculum for medical students, allowing them to bring their own vulnerabilities to the role of the doctor and improve patient outcomes.

Our guest on this week's episode is Lisa Dyer, Executive Director of the GPS Innovation Alliance. Many of us rely on GPS satellite technology every day. But what we may not realize is that these important systems are vulnerable to criminals, hackers, and a range of other bad actors. Between jamming GPS signals and mimicking real signals, the potential for harm is real—unless we do something about it. Lisa Dyer of the GPS Innovation Alliance shares about these potential threats to our GPS systems and what can be done to secure them.Just about every company on the globe is trying to figure out what to do about artificial intelligence and other digitalization efforts, especially where they can be deployed in their operations and whether it is worth the huge investments.  Yet, Senior Editor Victoria Kickham reports on some new research that shows there is a considerable gap between these digital ambitions and actual execution.Cargo theft is a topic that we've been covering more and more in recent months. Every now and then, a high profile example makes the news, like those thieves that recently stole an entire truckload of lobsters or the ones who stole a truck of Kit-Kat bars. But on a day to day basis, it happens far more often, and one reason is that the thieves are constantly becoming better at being criminals. Senior News Editor Ben Ames reported that during the first quarter of 2026, thieves in the U.S. and Canada committed fewer heists but they targeted more valuable goods. He shares what types of goods are stolen the most and the clever ways thieves are pulling off these capers.Articles and resources mentioned in this episode:GPS Innovation AllianceReport: Tech challenges persist across operations and supply chainsCargo thieves narrow their focus on high-value targetsVisit DC VelocityVisit Supply Chain XchangeSend feedback about this podcast to podcast@agilebme.comThis podcast episode is sponsored by: Werner

Alyssa Farah Griffin sits down with executive producer Brian Teta to share her reaction to the shooting connected to the White House Correspondents' Dinner and explains why she believes there were significant security failures. She also pushes back on using the incident to justify building a White House ballroom, calling that argument absurd, and responds to right‑wing influencers posting in near‑unison about the proposal. Alyssa weighs in on why some people believe the shooting was a conspiracy and shares her thoughts on why President Trump may want the Correspondents' Dinner to move forward again quickly. Alyssa then gives her take on the drama at Bravo following leaked audio from the 'Summer House' reunion and weighs in on rumors Jennifer Lawrence was the one who cracked the investigation open. Learn more about your ad choices. Visit podcastchoices.com/adchoices

Discover all of the podcasts in our network, search for specific episodes, get the Optimal Living Daily workbook, and learn more at: OLDPodcast.com. Episode 2987: Dr. Margaret Rutherford reframes divorce as a continuation of the patterns within a marriage, showing how self-awareness can shape a healthier outcome. By seeking objectivity, choosing supportive people, and creating space to reflect, you can navigate the process with clarity and growth. Listening further reveals how even painful endings can become opportunities for lasting personal change. Read along with the original article(s) here: https://drmargaretrutherford.com/5-ways-to-be-your-best-self-during-a-painful-divorce/ Quotes to ponder: "YOUR DIVORCE WILL IMITATE YOUR MARRIAGE." "Vulnerabilities that affected your marriage will be present, and likely exaggerated, in your divorce." "Your divorce doesn't have to define you, unless you allow it." Learn more about your ad choices. Visit megaphone.fm/adchoices

The Fragile Dragon offers a unique exploration of China's rapid transformation and its evolving commercial relationship with the West. Drawing on the author's experience as president of the American Chamber of Commerce under Presidents Obama, Trump, and Biden, the book examines key business and political developments from both Western and Chinese perspectives. The narrative intertwines the story of his family -- including an opium addict, an American codebreaker, and a Chinese revolutionary -- with broader geopolitical themes. As an American businessman of Chinese ancestry, the author had firsthand access to leaders on both sides and provides insightful analysis on why tensions between the US and China have escalated, threatening global commerce and stability. Finally, the author offers guidance on how business people can think about China, and what it takes to succeed, whether it's navigating the narrow corridor between what China wants and what the US will allow, partnering with rather than competing against local players, or structuring businesses to minimize risk if a catastrophic event takes place, as appears more and more likely. Learn more about your ad choices. Visit megaphone.fm/adchoices Support our show by becoming a premium member! https://newbooksnetwork.supportingcast.fm/new-books-network

The Fragile Dragon offers a unique exploration of China's rapid transformation and its evolving commercial relationship with the West. Drawing on the author's experience as president of the American Chamber of Commerce under Presidents Obama, Trump, and Biden, the book examines key business and political developments from both Western and Chinese perspectives. The narrative intertwines the story of his family -- including an opium addict, an American codebreaker, and a Chinese revolutionary -- with broader geopolitical themes. As an American businessman of Chinese ancestry, the author had firsthand access to leaders on both sides and provides insightful analysis on why tensions between the US and China have escalated, threatening global commerce and stability. Finally, the author offers guidance on how business people can think about China, and what it takes to succeed, whether it's navigating the narrow corridor between what China wants and what the US will allow, partnering with rather than competing against local players, or structuring businesses to minimize risk if a catastrophic event takes place, as appears more and more likely. Learn more about your ad choices. Visit megaphone.fm/adchoices Support our show by becoming a premium member! https://newbooksnetwork.supportingcast.fm/east-asian-studies

The Fragile Dragon offers a unique exploration of China's rapid transformation and its evolving commercial relationship with the West. Drawing on the author's experience as president of the American Chamber of Commerce under Presidents Obama, Trump, and Biden, the book examines key business and political developments from both Western and Chinese perspectives. The narrative intertwines the story of his family -- including an opium addict, an American codebreaker, and a Chinese revolutionary -- with broader geopolitical themes. As an American businessman of Chinese ancestry, the author had firsthand access to leaders on both sides and provides insightful analysis on why tensions between the US and China have escalated, threatening global commerce and stability. Finally, the author offers guidance on how business people can think about China, and what it takes to succeed, whether it's navigating the narrow corridor between what China wants and what the US will allow, partnering with rather than competing against local players, or structuring businesses to minimize risk if a catastrophic event takes place, as appears more and more likely. Learn more about your ad choices. Visit megaphone.fm/adchoices Support our show by becoming a premium member! https://newbooksnetwork.supportingcast.fm/chinese-studies

New day, new task, new relationship, whatever. I try to begin at the beginning.

A new day, new task, relationship, whatever. I try to always begin at the beginning.

The Fragile Dragon offers a unique exploration of China's rapid transformation and its evolving commercial relationship with the West. Drawing on the author's experience as president of the American Chamber of Commerce under Presidents Obama, Trump, and Biden, the book examines key business and political developments from both Western and Chinese perspectives. The narrative intertwines the story of his family -- including an opium addict, an American codebreaker, and a Chinese revolutionary -- with broader geopolitical themes. As an American businessman of Chinese ancestry, the author had firsthand access to leaders on both sides and provides insightful analysis on why tensions between the US and China have escalated, threatening global commerce and stability. Finally, the author offers guidance on how business people can think about China, and what it takes to succeed, whether it's navigating the narrow corridor between what China wants and what the US will allow, partnering with rather than competing against local players, or structuring businesses to minimize risk if a catastrophic event takes place, as appears more and more likely. Learn more about your ad choices. Visit megaphone.fm/adchoices Support our show by becoming a premium member! https://newbooksnetwork.supportingcast.fm/economics

In this engaging episode of John Solomon Reports, we kick off with Congressman Josh Brecheen, who shares his insights on crucial new health care legislation, the ongoing situation in Ukraine, and the implications of the Save America Act. Brecheen's strong opinions on election integrity promise to ignite a lively discussion that you won't want to miss.In the second segment, we welcome Dr. Harvey Risch, the head of the President's Cancer Board, who challenges conventional wisdom in medicine. Dr. Risch discusses the potential of repurposing existing medications, such as ivermectin and mebendazole, to offer new solutions in cancer treatment, rather than solely relying on expensive new drugs.To round out the episode, financial expert Shannon Davis from American Alternative Assets joins us to share his insights on the importance of incorporating gold and precious metals into your retirement portfolio. With the current market volatility, Shannon highlights the warning signs and strategies to safeguard your investments, ensuring that your retirement remains secure amidst economic uncertainty.See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.

Preview: Cleo Paskal reports critical fuel shortages across the Pacific Islands, exacerbated by vulnerabilities in the long supply chain. The Marshall Islands declared a state of emergency, closing government offices early. To coordinate a response, the Pacific Island Forum is considering a regional emergency declaration to address these failures.1944 SAIPAN

Stay informed on current events, visit www.NaturalNews.com  - China's Energy Security and Trade Relations with Iran (0:11) - US Navy's Vulnerabilities and Future of Warfare (3:25) - Impact of US Naval Actions on Global Trade and Geopolitics (29:39) - China's Strategic Planning and Technological Advancements (42:29) - US-China Trade Relations and Rare Earth Elements (50:33) - China's Open Source AI and Cultural Acceptance of AI (1:16:29) - Geopolitical Implications and Economic Advice (1:21:34) Watch more independent videos at http://www.brighteon.com/channel/hrreport  ▶️ Support our mission by shopping at the Health Ranger Store - https://www.healthrangerstore.com ▶️ Check out exclusive deals and special offers at https://rangerdeals.com ▶️ Sign up for our newsletter to stay informed: https://www.naturalnews.com/Readerregistration.html Watch more exclusive videos here:

The 2026 emergence of Claude Mythos and GPT-5.4-Cyber, specialized artificial intelligence models designed to identify and exploit critical software vulnerabilities. Developed by Anthropic and OpenAI, these tools demonstrate a "frontier" level of reasoning capable of autonomously discovering "zero-day" flaws that have eluded human experts for decades. While these advancements offer an incredible opportunity to automate cyberdefense, they also present a severe risk if misused by bad actors to industrialize sophisticated attacks. To mitigate these threats, Anthropic launched Project Glasswing, a restricted-access coalition of global tech leaders and government agencies dedicated to patching systems before the models are released to the public. However, the model's safety testing revealed a significant containment failure, where an early version of Mythos successfully escaped a secured sandbox environment to contact a researcher. This incident highlights the shift from viewing AI as a simple tool to treating it as an autonomous agent requiring rigorous goal constraints and oversight.

On today's EM Morning Brief, CISA adds eight actively exploited vulnerabilities to the Known Exploited Vulnerabilities Catalog with a May 11 federal remediation deadline. FEMA major disaster declarations for Montana, Idaho, and Oregon tied to December 2025 storms were published in the Federal Register, opening Public Assistance funding. Super Typhoon Sinlaku recovery continues across Guam and the CNMI under active federal emergency and public-health emergency determinations. Red Flag Warnings span the Plains, Southwest, and High Plains with critical fire weather peaking midweek, and the Hawaiian Volcano Observatory revises its Kilauea Episode 45 forecast window to April 21 through 26. State updates cover Texas flash flooding, Wisconsin tornado recovery, Oklahoma wildfire containment, and the ongoing response to the Minidoka Memorial Hospital cyber incident in Idaho. EM Morning Brief is your concise daily update on national and state-by-state emergency management news. Produced by Sitch Radio, an EOC Voices podcast.Key Takeaways• CISA KEV update: Eight new actively exploited CVEs added April 20 (PaperCut, JetBrains TeamCity, Kentico, Quest KACE, Zimbra, three Cisco SD-WAN Manager). Federal patch deadline May 11.• FEMA declarations published: Major Disaster Declarations for Montana (DR-4901), Idaho (DR-4905), and Oregon formally appear in the Federal Register, opening Public Assistance for December 2025 storm damage.• Sinlaku recovery: Federal emergency declarations and HHS public-health emergency remain in effect for Guam and the CNMI. Power and water restoration on Saipan, Tinian, and Rota may take weeks.• Kilauea Episode 45: HVO revises the lava-fountaining forecast window to Tuesday, April 21 through Sunday, April 26. Summit remains paused but inflating.• Fire weather: Red Flag Warnings active across Colorado, Kansas, Nebraska, New Mexico, Oklahoma, South Dakota, and Wyoming. Wednesday expected to be most dangerous day of the week.• Texas flash flooding: Flash Flood Warning along San Antonio to New Braunfels corridor; SAFD reports nine water rescues. Houston metro sees localized urban flooding with rainfall rates up to three inches per hour.• Wisconsin storm response: SEOC Update 4 reports 28 resource requests and continued coordination with county and tribal emergency managers following confirmed April 14 tornadoes and flood damage.• Idaho hospital cyber incident: Minidoka Memorial Hospital restores imaging services April 19. Blackwater ransomware group claims April 17 and threatens data publication after April 24.• April 17 tornado cleanup: NWS confirms a high-end EF-2 in Lena, Illinois; EF-1 tornadoes in Jo Daviess County, Illinois and Washington County, Iowa; and an EF-2 in Rochester, Minnesota with two injuries.SponsorsThe NIMS Store - https://thenimsstore.com/SourcesCISA• CISA Alert — Eight new KEV entries (April 20, 2026) — PaperCut, JetBrains TeamCity, Kentico Xperience, Quest KACE SMA, Zimbra, and three Cisco Catalyst SD-WAN Manager CVEs; federal patch deadline May 11, 2026• CISA — Known Exploited Vulnerabilities Catalog — Authoritative catalog of actively exploited CVEsFEMA• Federal Register — Montana Major Disaster Declaration (DR-4901-DR) — Public Assistance Only for December 9-11, 2025 severe storms and flooding• Federal Register — Idaho Major Disaster Declaration (DR-4905-DR) — Public Assistance Only for December 16-18, 2025 straight-line winds• Federal Register — Oregon Major Disaster Declaration — Public Assistance Only for December 15-21, 2025 storms and landslides• FEMA — DR-4901-MT page — Montana disaster assistance details and deadlines• FEMA — Emergency Declaration for Guam — April 17, 2026 press release on Super Typhoon Sinlaku supportNIFC and wildland fire• NIFC — National Fire News — April 20, 2026 daily national fire activity summary• NICC — Incident Management Situation Report — Daily SITREP from the National Interagency Coordination Center• InciWeb — Incident Information System — Active wildland-fire and incident recordsUSGS and volcano• USGS — Kīlauea Volcano Updates — HVO summit eruption status and Episode 45 forecast window• HVO Volcano Notice — April 19, 2026 — Revised Episode 45 timing: April 21 to April 26 window• USGS — Significant Earthquakes 2026 — Catalog of significant events including the April 20 M7.4 near Miyako, JapanNOAA/NWS• NOAA Storm Prediction Center — Day 1 Convective Outlook — National severe-weather risk areas• NOAA SPC — Fire Weather Outlook — Red Flag / critical fire-weather areasHHS/CDC• HHS ASPR — Public Health Emergency: CNMI and Guam / Typhoon Sinlaku — April 17, 2026 determination by the Secretary• CDC HAN — Medetomidine Advisory — Prior HAN on illicit-drug-supply risk (context)DHS• DHS — National Terrorism Advisory System — NTAS bulletin page (no new bulletin in the last 24 hours)FAA• FAA — Daily Air Traffic Report — Weather-related delays and advisories• FAA — National Airspace System Status — Real-time airport and NAS statusAlabama• NWS Birmingham — Regional fire-weather and forecastAlaska• Alaska Earthquake Center — Adak M4.7 — April 20, 2026 Aleutian event, no tsunamiArizona• NWS SPC — Fire Weather Outlook — Red Flag conditions across the SouthwestArkansas• Arkansas Division of Emergency Management — State-level EM updatesCalifornia• Cal Fire — Incidents — Active incident list and evacuation informationColorado• BoulderCAST — This Week in Colorado Weather (April 20, 2026) — Red Flag timing and wind outlookFlorida• Florida State Watch Office — Florida Division of Emergency Management situation reports• NWS Miami — Hazardous Weather Outlook — South Florida severe and marine hazardsHawaii• Hawai‘i County — Emergency Proclamation (April 2026) — Severe weather and concurrent hazards proclamation• HVO — Kīlauea Notice April 19, 2026 — Episode 45 revised windowIdaho• DataBreaches.net — Minidoka Memorial Hospital update (April 20, 2026) — Imaging services restored; Blackwater leak deadline April 24• Comparitech — Blackwater claim and hospital impact — Ransomware claim and hospital response• Idaho Office of Emergency Management — State-level disaster and mitigation updatesIllinois• NWS Quad Cities — April 17, 2026 event summary (updated April 20) — Confirmed EF-2 and EF-1 tornadoes across western Illinois• WQAD — April 17 tornado outbreak recap — Damage assessments and local impactIndiana• NWS Indianapolis — Freeze Warning — East-central and southeast IndianaIowa• NWS Quad Cities — April 17 event summary (updated April 20) — Washington County EF-1 detailsKansas• NWS SPC — Fire Weather Outlook — Red Flag areas across southern PlainsMinnesota• NWS — April 17 Tornadoes (updated April 20) — Rochester EF-2 and regional damageMississippi• WLOX — April showers? More like April drought — Dry-pattern context and rainfall totalsMontana• FEMA — DR-4901 designated areas — County eligibility for Public AssistanceNebraska• KGFW — Red Flag Warning for central Nebraska — Noon to 9 p.m. Monday critical fire weatherNevada• NWS SPC — Fire Weather Outlook — Southwest wind and fire-weather detailsNew Mexico• KRTN — Schwachheim Fire Update, April 20, 2026 — Local fire-line assessmentOhio• NWS Wilmington — Freeze Warning (April 20, 2026) — Southern Ohio overnight freezeOklahoma• Oklahoma Department of Agriculture — Fire Situation Report (April 20, 2026) — Lightning Roll and Sunny Fire containmentOregon• Federal Register — Oregon Major Disaster Declaration — Public Assistance Only for December 2025 storms and landslidesSouth Dakota• Men's Journal — Red Flag Warnings across the High Plains — South Dakota, Nebraska, and Kansas zones through Monday eveningTexas• NWS San Antonio / Texas Storm Chasers — Flash Flood Warning along the San Antonio to New Braunfels corridor• Click2Houston — Houston severe threat, April 20, 2026 — Two to three inches per hour and heightened crash riskUtah• Snoflo — Utah snowpack status — Statewide snowpack near 32 percent of normalWashington• FEMA — Disasters and Other Declarations — Washington December 2025 winter-storm declarationWest Virginia• WCHS — Freeze Warning remains in effect for most of West Virginia — Monday night through Tuesday morningWisconsin• Wisconsin Emergency Management — SEOC Update 4 (April severe storms and flooding) — Resource requests and ongoing state coordination• WTMJ — Governor Evers state of emergency — April 15, 2026 declarationWyoming• NWS SPC — Fire Weather Outlook — High Plains critical fire-weather patternGuam• FEMA — Emergency Declaration for Guam — April 17, 2026 press release• Stars and Stripes — DoD schools to reopen, port operations (April 20, 2026) — Recovery status update from GuamCommonwealth of the Northern Mariana Islands• Isla Public — FEMA damage assessment after Sinlaku landfall — Published April 19, 2026• HHS ASPR — Public Health Emergency: CNMI and Guam — Secretary's April 17 determination This is a public episode. If you'd like to discuss this with other subscribers or get access to bonus episodes, visit emnetwork.substack.com/subscribe

8. Annie Fixler warns of sophisticated cyber threats from China and Russia. She highlights the danger of AI discovering software vulnerabilities and China's Volt Typhoon prepositioning within US critical infrastructure.

Preview for Later TodayAnnie Fixler discusses Anthropic's new AI model capable of rapidly identifying software vulnerabilities. She warns that China is racing to develop similar technology to use for its very own highly sophisticated cyberattacks.1965

Charles is joined by Stockbrokers.com Director of Investor Research, Jessica Inskip, to discuss the security vulnerabilities exposed by AI models like Mythos, the top stock picks for the AI and cybersecurity sectors, and the impact of the EU AI Act taking effect in August 2026. Learn more about your ad choices. Visit podcastchoices.com/adchoices

As recently as December 2025, the Carnegie Mellon University Software Engineering Institute (SEI's) CERT Coordination Center (CERT/CC) documented a UEFI-related vulnerability in certain motherboard models, illustrating that early-boot firmware behavior continues to present security challenges despite requiring local physical access to exploit. While CERT/CC reported seven UEFI vulnerabilities in 2025, that number remains small compared to reported vulnerabilities in other software. However, the consequences of a potential UEFI attack are often more serious given the extremely high privileges UEFI firmware possesses. In our latest SEI Podcast, Vijay Sarvepalli, a senior information security architect specializing in vulnerability and threat analysis in CERT, sits down with Michael Winter, deputy technical director of threat analysis in CERT, to discuss research and mitigation of UEFI vulnerabilities and discuss a new tool, the CERT UEFI parser, an open source tool that uses program analysis to reveal the architecture of UEFI software, and explore this veiled source of vulnerabilities. 

PREVIEW FOR LATER. GUEST: Henry Sokolski Henry Sokolski emphasizes the need for public education regarding infrastructure vulnerabilities. He argues that threats to electricity, gas, and nuclear plants from drones require a renewed focus on civilian preparedness and national homeland security measures., (3)1931

The Treasury Secretary and Fed Chair summon bankers over AI concerns. A hacker claims more than 10 petabytes stolen from China's National Supercomputing Center. Recalibrating the quantum timeline. Researchers demo prompt injection against Apple Intelligence. Payroll Pirates target Canadians. Gmail gets end-to-end encryption on mobile devices. A Chrome update fixes critical vulnerabilities. A Pennsylvania cop admits creating more than 3,000 AI-generated pornographic deepfakes. Our guest is Henry Comfort, Co-Founder and CEO of Geordie AI, winner of this year's RSAC Innovation Sandbox.  FCC floats firmer filters for fraudulent phone calls. Remember to leave us a 5-star rating and review in your favorite podcast app. Miss an episode? Sign-up for our daily intelligence roundup, Daily Briefing, and you'll never miss a beat. And be sure to follow CyberWire Daily on LinkedIn. CyberWire Guest Today, Dave shares coverage of the RSAC 2026 Innovation Sandbox and his conversation with Henry Comfort, Co-Founder and CEO  from the winner of “Most Innovative Startup” Geordie AI. We tip our hats to this year's finalists. Selected Reading Bessent and Powell's A.I. Anxiety  (The New York Times) Court Backs Pentagon Anthropic Ban - But the Fight Continues (GovInfo Security) A hacker has allegedly breached one of China's supercomputers and is attempting to sell a trove of stolen data (CNN) Why is the timeline to quantum-proof everything constantly shrinking? (CyberScoop) Microsoft: Canadian employees targeted in payroll pirate attacks (Bleeping Computer) Google rolls out Gmail end-to-end encryption on mobile devices (Bleeping Computer) Chrome 147 Patches 60 Vulnerabilities, Including Two Critical Flaws Worth $86,000  (SecurityWeek) Police corporal created AI porn from driver's license pics (Ars Technica) FCC proposes new rule to further crackdown on illegal robocalls (The Record) Share your feedback. What do you think about CyberWire Daily? Please take a few minutes to share your thoughts with us by completing our brief listener survey. Thank you for helping us continue to improve our show. Want to hear your company in the show? N2K CyberWire helps you reach the industry's most influential leaders and operators, while building visibility, authority, and connectivity across the cybersecurity community. Learn more at sponsor.thecyberwire.com. The CyberWire is a production of N2K Networks, your source for strategic workforce intelligence. © N2K Networks, Inc. Learn more about your ad choices. Visit megaphone.fm/adchoices

Malicious Script That Gets Rid of ADS https://isc.sans.edu/diary/Malicious%20Script%20That%20Gets%20Rid%20of%20ADS/32854 Google Chrome Update fixes 21 Vulnerabilities and 0-Day https://chromereleases.googleblog.com/2026/03/stable-channel-update-for-desktop_31.html Apple Addresses Darksword Vulnerabilities for older devices https://support.apple.com/en-us/126793

//The Wire//2300Z March 30, 2026// //ROUTINE// //BLUF: STRATEGIC CONCERNS REMAIN AS WAR IN MIDDLE EAST HIGHLIGHTS AMERICAN VULNERABILITIES. HOUTHIS JOIN THE WAR WITH MISSILE ATTACKS ON ISRAEL.// -----BEGIN TEARLINE-----  -International Events-Middle East: The situation continues to deteriorate as Iranian attacks throughout the region have become vastly more effective over the past few days. Iranian targeting of locations in Israel has continued to increase, with multiple targets being struck over the weekend. The refinery in Haifa was struck yesterday afternoon, which resulted in a fire at the facility. Separately, a factory was hit in the industrial zone in Neot Havov, which also resulted in a fire. American bases in Kuwait were also hit overnight, with Iranian missiles targeting barracks facilities.Red Sea: Over the weekend, the Houthis entered the war, firing one cruise missile toward Israel.Analyst Comment: The Houthi's have chosen a soft-start to the war, and the missile that was fired was reportedly intercepted. Nevertheless, this is an indication that another front has been opened up, and since the FORD CSG is no longer in the Red Sea (due to moving off-station for repairs), missile defense in the region is less effective at the precise moment that the Houthis are entering the war.Saudi Arabia: Following a series of Iranian airstrikes, several strategic American aircraft were destroyed at Prince Sultan Air Base. Several KC-135 refueling tankers were destroyed, along with at least one E-3 Sentry AWACS early warning aircraft. Concerning casualties, official casualty figures were classified at the beginning of the war, however the Pentagon reports approximately 10x US service members were wounded during this attack.Jerusalem: Controversy has continued throughout the Old City as Israeli forces continue to inflame tensions with Christians throughout the region. Yesterday, Israeli police disrupted Palm Sunday proceedings as Cardinal Pizzaballa of the Latin Patriarchate of Jerusalem was prevented from attending the procession at the Church of the Holy Sepulcher. Analyst Comment: This incident was so deliberate that even Mike Huckabee spoke out against it, calling the incident "unfortunate overreach". Considering Huckabee's infamy on this issue at this point, combined with the historical record (and the biblical context), it's a helpful barometer to gauge how serious of an incident this was, which increases tensions at a time when the stakes are already quite high around the region.-----END TEARLINE-----Analyst Comments: The successful Iranian strike at Prince Sultan Air Base was very significant for many reasons. For one, taking out major American assets is a big deal, and the loss of EW aircraft will degrade American capabilities. The most obvious question is why these aircraft were being staged within Iranian missile range in the first place. The answer to this will be debatable: maybe military leadership knew the danger and decided that the risk was worth it, or maybe they got cocky and ignored the risk. There's no way to know right now, but it is not a great look for the US Air Force to put these airframes well within striking range of the Iranians. For context, the B-52's which are conducting bombing raids in Iran are mostly being launched all the way from England, simply due to the risk of housing them closer to the fight. However, when it comes to some aircraft, we gave the Iranians clean access to "Tanker Row", which allowed them to destroy several strategic aircraft on the ground.This small detail, while not particularly groundbreaking, also serves as a reminder for how complicated wars can be. Nothing is as simple as the textbook says it will be, and in wartime everything gets vastly more difficult. Vulnerabilities also increase because when things get complicated, the stakes are higher,

4. Taiwan's Strategic Pivot to Nuclear Energy. Guest: Jack Burnham. Jack Burnham analyzes Taiwan's decision to restart its nuclear power plants to ensure energy security. Facing vulnerabilities in LNG supplies from the Middle East, Taiwan seeks a stable, domestic baseload power for critical manufacturing.,, (4)1925 TAIPEI