Breaking News – Cyber Threats (last 6h)
Generated: 2026-04-08 08:00 PDT
- More Honeypot Fingerprinting Scans, (Wed, Apr 8th)
SANS ISC Diary (full) • 2026-04-08 07:23 • isc.sans.eduOne question that often comes up when I talk about honeypots: Are attackers able to figure out if they are connected to a honeypot? The answer is pretty simple: Yes!
- Is a $30,000 GPU Good at Password Cracking?
BleepingComputer • 2026-04-08 07:00 • www.bleepingcomputer.com
A $30,000 AI GPU doesn’t outperform consumer GPUs at password cracking. Specops explains why attackers don’t need exotic hardware to break weak passwords. […]
https://www.bleepingcomputer.com/news/security/is-a-30-000-gpu-good-at-password-cracking/ - Shrinking the IAM Attack Surface through Identity Visibility and Intelligence Platforms (IVIP)
The Hacker News • 2026-04-08 04:30 • thehackernews.com
The Fragmented State of Modern Enterprise Identity
Enterprise IAM is approaching a breaking point. As organizations scale, identity becomes increasingly fragmented across thousands of applications, decentralized teams, machine identities, and autonomous systems.
The result is Identity Dark Matter: identity activity that sits outside the visibility of centralized IAM and
https://thehackernews.com/2026/04/shrinking-iam-attack-surface-through.html - Python Supply-Chain Compromise
Schneier on Security • 2026-04-08 03:25 • www.schneier.comThis is news:
A malicious supply chain compromise has been identified in the Python Package Index package litellm version 1.82.8. The published wheel contains a malicious .pth file (litellm_init.pth, 34,628 bytes) which is automatically executed by the Python interpreter on every startup, without requiring any explicit import of the litellm module.
There are a lot of really boring things we need to do to help secure all of these critical libraries: …
https://www.schneier.com/blog/archives/2026/04/python-supply-chain-compromise.html - Anthropic's Claude Mythos Finds Thousands of Zero-Day Flaws Across Major Systems
The Hacker News • 2026-04-08 02:16 • thehackernews.com
Artificial Intelligence (AI) company Anthropic announced a new cybersecurity initiative called Project Glasswing that will use a preview version of its new frontier model, Claude Mythos, to find and address security vulnerabilities.
The model will be used by a small set of organizations, including Amazon Web Services, Apple, Broadcom, Cisco, CrowdStrike,&
https://thehackernews.com/2026/04/anthropics-claude-mythos-finds.html - Financial cyberthreats in 2025 and the outlook for 2026
Securelist • 2026-04-08 02:00 • securelist.com
In this report, Kaspersky experts share their insights into the 2025 financial threat landscape, including regional statistics and trends in phishing, PC malware, and infostealers.
https://securelist.com/financial-threat-report-2025/119304/
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
