Reading view
BWH Hotels guests warned after reservation data checks out with cybercrooks
Build Application Firewalls Aim to Stop the Next Supply Chain Attack
Rather than scanning code alone, Build Application Firewalls inspect runtime behavior inside the software build pipeline.
The post Build Application Firewalls Aim to Stop the Next Supply Chain Attack appeared first on SecurityWeek.
Why Changing Passwords Doesn’t End an Active Directory Breach
Google: Hackers used AI to develop zero-day exploit for web admin tool
Webinar this week: Prevention alone is not enough against modern attacks
Palantir’s access to identifiable NHS England patient data is ‘dangerous’, MPs say
Health service has given US tech firm ‘unlimited access’ to certain data to build integrated platform, according to reports
MPs have warned that an NHS decision to grant Palantir access to identifiable patient information in its plan to use AI to improve the health service is “dangerous” and will fuel public fears that data privacy is not being prioritised.
NHS England has allowed staff from the US tech firm and other contractors to access patient data before it has been pseudonymised, despite internal fears of a “risk of loss of public confidence”, the Financial Times reported.
Continue reading...
© Photograph: David Levene/The Guardian

© Photograph: David Levene/The Guardian

© Photograph: David Levene/The Guardian
Q1 2026 Ransomware Report: Fewer Groups, Higher Impact

Ransomware activity remained elevated in Q1 2026, continuing the trend established over the past year. According to the State of Ransomware Q1 2026 report from Check Point Research, overall attack volume stayed near historic highs. At the same time, the structure of the ransomware ecosystem changed materially. After two years of increasing fragmentation, activity is consolidating around a smaller number of dominant groups. For organizations, this shift reduces the number of active actors but increases the potential impact of individual incidents. Key Findings: 2,122 organizations were listed on ransomware data leak sites in Q1 2026, making it the second-highest Q1 on record The top […]
The post Q1 2026 Ransomware Report: Fewer Groups, Higher Impact appeared first on Check Point Blog.
Checkmarx Jenkins AST Plugin Compromised in Supply Chain Attack
A malicious version of the plugin was published to the Jenkins Marketplace late last week.
The post Checkmarx Jenkins AST Plugin Compromised in Supply Chain Attack appeared first on SecurityWeek.
TrickMo Android banker adopts TON blockchain for covert comms
Taiwan's train cyber-trauma reveals a global system that’s coming off the tracks
New ‘Dirty Frag’ Linux Vulnerability Possibly Exploited in Attacks
Also called Copy Fail 2 and tracked as CVE-2026-43284 and CVE-2026-43500, the exploit was disclosed before a patch was released.
The post New ‘Dirty Frag’ Linux Vulnerability Possibly Exploited in Attacks appeared first on SecurityWeek.
Hackers abuse Google ads, Claude.ai chats to push Mac malware
Police shut down reboot of Crimenetwork marketplace, arrest admin
Why AI Agents Make API Security a CISO Priority
AI agents are not a future concern. They are already changing how enterprise systems are accessed, automated, and abused.
And the security implication is clear: the more autonomous systems rely on APIs, the more important it becomes to know exactly which APIs exist, how they are being used, and whether they are being misused.
If your organization cannot answer those questions, you have a visibility problem. And in an environment where AI can accelerate both legitimate automation and malicious abuse, visibility is the first step to control.
Risk accelerating
APIs have always been a target because they expose data and business logic. What has changed is pace.
AI can now help attackers discover endpoints faster, test more abuse paths, and automate attacks that once took much more effort. Meanwhile, AI agents inside the enterprise are generating more API traffic, often with broader privileges than anyone intended.
That means security teams are facing a harder problem: not just more traffic, but more uncertainty and adversaries with improved tools.
What CISOs should be worried about
The biggest risks are not always the loudest ones.
Whether it’s an over-permissioned agent, a forgotten or shadow API, or a “legitimate” request abused to enumerate data or chain unauthorized actions, the risk is real. It’s often compounded by API tokens with broad access and long expiration times.
These are the kinds of issues that can lead to evasive data exfiltration, unauthorized payments, compliance violations, and operational surprises that go undetected far too long.
If your API security program cannot spot abnormal behavior early, the business is exposed.
What good looks like
CISOs need a practical model, not more noise.
That model should:
- Continuously discover APIs across the environment.
- Classify which ones are sensitive.
- Establish baselines for normal behavior.
- Detect abnormal or suspicious API activity.
- Support least-privilege access for AI agents.
- Help revoke risky permissions quickly.
This is how security leaders turn AI agent activity from a blind spot into something measurable and governable.
The board conversation has changed
This is no longer just a technical issue for engineering or operations.
Boards care about risk, control, and business impact. They need to know how many AI agent-facing APIs are being monitored, how many anomalous calls have been detected, and how quickly the business can respond when something looks wrong.
That is the real opportunity for CISOs: to move API security into the center of the AI risk conversation.
Download the guide now
For CISOs, security leaders, and executives, this guide explains the new API security realities emerging with AI agents. We created A CISO’s Guide to API Security in the Age of AI Agents to help you navigate the shift with clarity and confidence.
Inside, you will learn:
- Why AI agents are increasing API risk rather than replacing it.
- How to connect API security to business and board-level concerns.
- What to look for in a practical CISO playbook for discovery, visibility, and control.
- How to govern agent-driven access before it becomes business exposure.
AI agents may change how work gets done. But the organizations that understand their APIs first will be the ones best positioned to stay in control.
The post Why AI Agents Make API Security a CISO Priority appeared first on Blog.

JDownloader site hacked to replace installers with Python RAT malware
Fake OpenAI repository on Hugging Face pushes infostealer malware
Worm rubs out competitor's malware, then takes control