%term

We let OpenClaw loose on an internal network. Here's what it found

Apr 9, 2026 By Ross McKerchar In Sophos

Following our article on the challenges posed by agentic AI, we gave OpenClaw access to one of our legacy networks In my previous article on OpenClaw I wrote: “Even the most ‘risk-on’ organizations with deep AI and security experience, will likely find it challenging to configure OpenClaw in a way that effectively mitigates the risk of compromise or data loss, while still retaining any productivity value.” The Red Team here at Sophos took that as ‘challenge accepted’, s

Read Post

Sophos

Read more about We let OpenClaw loose on an internal network. Here's what it found

Evil Token: AI-Enabled Device Code Phishing Campaign

Apr 9, 2026 By Kiran Sethumadhavan In Coralogix

On April 6, 2026, Microsoft Defender Security Research published an advisory detailing a large-scale phishing campaign that leverages the OAuth Device Code Authentication flow to compromise Microsoft 365 accounts across organizations globally. This campaign represents a significant evolution from manual social engineering to fully automated, AI-driven attack infrastructure.

Read Post

Coralogix

Read more about Evil Token: AI-Enabled Device Code Phishing Campaign

Adobe Reader zero-day vulnerability in active exploitation

Apr 9, 2026 By Sophos Counter Threat Unit Research Team In Sophos

On April 7, 2026, a security researcher described an Adobe Reader zero-day vulnerability that has been exploited since at least December 2025. The vulnerability allows threat actors to execute privileged Acrobat APIs via specially crafted malicious PDF files that execute obfuscated JavaScript when opened. Exploitation allows attackers to steal sensitive user and system data and to potentially launch additional attacks and remotely execute code.

Read Post

Sophos

Read more about Adobe Reader zero-day vulnerability in active exploitation

Episode 12 - The Agentic SOC: Upleveling Analysts with AI Knowledge Multipliers

Apr 9, 2026 By Corelight In Corelight

Richard Bejtlich sits down with Stan Kiefer, Corelight’s Senior Manager for Data Science, to discuss how AI serves as a vital "abstraction layer" and "knowledge multiplier" for security analysts. Stan explains that while AI can synthesize complex information, it remains untrustworthy without high-fidelity network data at its center to provide verifiable evidence. The episode explores the shift toward an "agentic ecosystem" and a tiered architecture where a central orchestrator manages specialized sub-agents to accelerate detection and investigation.

View Video

Corelight

Read more about Episode 12 - The Agentic SOC: Upleveling Analysts with AI Knowledge Multipliers

Ultra-low Latency Performance | A10 Networks vs Competitors

Apr 9, 2026 By A10 Networks In A10 Networks

In high-frequency trading, staying competitive means matching or beating the speed of the competition. A10's ultra-low latency appliance achieves 1.4µs latency and remains consistent even while enabling FiX-aware routing. See the difference. Please note, performance is based on microseconds but scaled to seconds for visualisation purposes.

View Video

A10 Networks

Security

Read more about Ultra-low Latency Performance | A10 Networks vs Competitors

The Future Is Cyber Risk Intelligence

Apr 9, 2026 By Jake Olcott In BitSight

Risk is expanding faster than most organizations can measure it, communicate it, and act on it. The convergence of AI, an ever-expanding attack surface, and deep, often hidden supply chain risks—extending into third-, fourth-, and fifth-party connections—all pose strategic and material risks to companies. Security leaders are ultimately looking for better ways to identify risk, prioritize action, and support stronger risk decisions across the entire business ecosystem.

Read Post

BitSight

Read more about The Future Is Cyber Risk Intelligence

What Is a Computer Virus? How It Spreads & How to Stop It | Avast

Apr 9, 2026 By Avast In Avast

You use your computer every day to work, shop, stream, and connect with the people and things you care about. But what exactly is a computer virus, and how does it manage to spread so fast? In this video, we explain what a computer virus is, how it attaches to files and programs you trust, and how it activates, copies itself, and spreads to other files and devices—just like a biological virus.

View Video

Avast

Read more about What Is a Computer Virus? How It Spreads & How to Stop It | Avast

AI in the SOC with Joshua Neil

Apr 9, 2026 By LimaCharlie In LimaCharlie

Join us for this week's Defender Fridays as we explore AI in the SOC with Josh Neil, Co-founder of Alpha Level. At Defender Fridays, we delve into the dynamic world of information security, exploring its defensive side with seasoned professionals from across the industry. Our aim is simple yet ambitious: to foster a collaborative space where ideas flow freely, experiences are shared, and knowledge expands.

View Video

LimaCharlie

Read more about AI in the SOC with Joshua Neil

HIPAA Compliance Costs: Complete 2026 Guide

Apr 9, 2026 By VISTA InfoSec In VISTA InfoSec

Rate this post Last Updated on April 9, 2026 by Narendra Sahoo HIPAA compliance costs range from $5,000 for a small medical practice to $150,000+ for a hospital system — and the right budget depends entirely on your organization’s size, security maturity, and data environment.

Read Post

VISTA InfoSec

Read more about HIPAA Compliance Costs: Complete 2026 Guide

The NVD Funding Crisis Was Bigger Than Mythos

Apr 9, 2026 By Scott Kuffer In Nucleus

Everyone is calling Claude Mythos a watershed moment. I’d like to offer a slightly different take. Not because the capability isn’t real, it is. But if Mythos is the moment that finally convinced your organization that rapid vulnerability discovery is an existential threat, you’ve been watching the wrong thing. We saw this coming. Vulnerability Management has been moving in this direction for years, and we built Nucleus with this trajectory in mind. What surprises me is the surprise.

Read Post